How we handle your data.

We use your data to operate the service, verify provider applications, respond to enquiries, and maintain editorial accuracy across the directory.

We never share user search queries, enquiries, or contact details with listed providers unless you explicitly ask us to.

We share data only with processors who help us run the service — our hosting provider, email delivery service, and error-monitoring tools. These processors are contractually bound to protect your data and use it only for the purpose we specify.

We do not sell, rent or trade personal data with third parties for marketing.

Where GDPR applies, we rely on the following bases:

• Contract — when you create an account or apply for a listing.
• Legitimate interests — when we maintain the editorial integrity of the directory.
• Consent — for optional analytics and marketing, which you can withdraw at any time.

You can request access to, correction of, or deletion of your personal data at any time. You can also object to processing, request portability, or lodge a complaint with your local data protection authority.

To exercise any of these rights, email privacy@elysiansearch.com.

We keep account data for as long as you keep your account active. Contact messages are retained for 24 months. Analytics data is retained in aggregate form only.

We encrypt data in transit, restrict access to staff on a need-to-know basis, and perform regular security reviews. No system is perfectly secure; if a breach affecting your data occurs, we will notify you and the relevant authority within 72 hours.

We may update this policy to reflect operational, legal or regulatory changes. Material changes will be communicated via the site and, if we have your email, by direct notice.