Privacy policy


The purpose of this Privacy Policy is to explain why and how the Royal Mail Statutory Pension Scheme use your personal information, your rights regarding this information and how we comply with data protection law. 

In this notice, we explain some things about the personal information RMSPS holds, and your rights regarding this information. It’s important that you read it carefully.


  1. Overview of Data Protection Legislation
  2. The RMSPS arrangements 
  3. Why we use your personal information
  4. How we use your personal information
  5. What personal information we use
  6. How long we keep your personal information for
  7. Sharing your personal information with third parties
  8. Security and safe storage of your personal information
  9. Your rights in relation to the personal information we hold about you
  10. Personal data breaches
  11. Further information, contact details and concerns

1. Overview of Data Protection Legislation

All EU (including UK) organisations must comply with the General Data Protection Regulations (GDPR) from 25 May 2018. Prior to this date, UK organisations were governed by the Data Protection Act (DPA). The GDPR builds on the existing DPA in order to respond to advances in technology, making accountabilities for Data Protection clearer, provide greater rights to ‘data subjects’ (individuals who organisations hold personal information for) and increase the size of fines that can be levied in the event of a personal information breach.

Legislation sets out the data protection principles. These are that personal information shall be:
- Processed lawfully, fairly and in a transparent manner;
- Collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes;
- Adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed;
- Accurate and, where necessary, kept up to date; 
- Kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal information is processed; and
- Processed in a manner that ensures appropriate security of the personal information, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures.

The Information Commissioner’s Office (ICO) is the UK's independent body set up to uphold information rights in the public interest, promoting openness by public bodies and data privacy for individuals.

2. The Royal Mail Statutory Pension Scheme

The Cabinet Office is the scheme manager responsible for the RMSPS. This means, they are the ‘data controller’ for the personal information collected to provide the arrangements to you. 

From 1 October 2018 Capita Employee Solutions is the pension administrator for the scheme covered by this policy and is known as the ‘data processor’. The data controller (Cabinet Office) sets out what and how the data processor can use your personal information. 

3. Why we use your personal information

As the scheme manager, Cabinet Office has legal obligations set out in scheme legislation, the Postal Services Act 2011, to provide pensions and other benefits to eligible members, as well as complying with other legal requirements affecting the scheme. This is the lawful basis for processing your personal information required under data protection legislation. 

We use your personal information for the following purposes:

a. Administration of  RMSPS benefits

We use your personal information to:

  • Administer your RMSPS Pension; 
  • Pay any benefits due to you;
  • Communicate and interact with you. This can be by phone, email or post;
  • Provide services and information you request from us;
  • Inform you about changes to the schemes;
  • Improve our service offering, including through collection and responding to feedback.

As pensions are long term, the reason for processing your personal information is likely to change over time as your circumstances change, for example:

  • If you are a deferred member, meaning you were an active employee, have left the scheme but have not retired and taken any benefits from the scheme, then we need to hold your personal details collected during employment, so we can pay your deferred benefits at a later date;
  • If you are a pensioner member, you are being paid benefits from the scheme, then we need to hold your personal details in order to pay you your benefits. 

b. Use of your personal information based on consent

The lawful basis for processing your personal information is that we have a legal obligation to do so under legislation. Therefore, we do not require your consent in order to process your personal information.

There is an exception to this, which is, if you apply for payment of your benefits on the grounds of ill health under the RMSPS. Health details are classed as a “special category” of personal information under legislation. You will be asked for your consent to sharing the information with relevant parties, for example a relevant party would be the Scheme Medical Advisor if you applied for early payment of pension on ill health grounds.

c. Use of your personal information for legal or public interest reasons

There may be cases where due to legal reasons or public interest, the RMSPS can or are required to use your personal information, for example, to defend its legal rights and to prevent and detect crimes such as fraudulent activities.

4. How we use your personal information

a. Receiving information from you

You may provide us with your personal information, for example you will need to inform us of your Death Benefit Nominee(s), spouse, Civil Partner or any other dependents. 

As a deferred or pensioner member you need to inform the scheme administrator, Capita Employee Solutions, of any such changes directly. 

Any postal, email or phone communications you have with Capita Employee Benefits are also classed as personal information. These communications are retained in order to protect your interests and those of the schemes. Email and any postal communications are stored electronically and phone calls are recorded. 

b. Storing your personal information securely

The security of your personal information is very important to us. The information security management systems operated by the scheme administrator and our IT managed services providers are all independently certified to the ISO 27001:2013 standard. This provides the assurance that our systems and processes are suitably robust and secure to protect your information from cyber attack.

5. What personal information we use

Personal information is defined as any information relating to an identified or identifiable living person. An identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, a unique identification number (for example your National Insurance Number), location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, economic, cultural or social identity of that person.

In the context of the RMSPS we can require the following information to administer the schemes:

a. Your personal details:

These are required to ensure we can communicate with you and can satisfy our regulatory obligations, such as informing HMRC of any tax due. With the exception of a member number, which is allocated by the administrator, we received this information from your employer at the time of employment:

  • Name and title;
  • Date of birth;
  • Gender;
  • Marital status;
  • Address;
  • National Insurance Number (NINo);
  • Member number;

b. Your direction of death benefit or death benefit nominee details:

These are required in the event of your death so that we can pay any death benefits due. We receive this information from you:

  • Nominee name(s);
  • Nominee address(es).
  • Relationship to scheme member
Important Note: the RMSPS does not notify your chosen nominees of the fact that you have nominated them for any benefits that may be due upon your death. This is because it is your right to choose who may benefit, you may not wish the beneficiary to know and you may change your mind in the future. Our first contact with your Death Benefit Nominee(s) will be in the event of your death. We do request though that if you nominate a child and you do not have parental responsibility for that child then you seek consent from a parent or legal guardian before making that nomination. 

c. Your employment details:

These are required to calculate your pension benefits or if you wish to transfer benefits to a different pension scheme. We received this information from your employer during employment.

  • Salary details including any bonus or allowances;
  • Employment (service) history, including any breaks in service, or where service has been transferred in, in order to calculate your ‘reckonable service’ (this is the amount of time worked that is used to calculate your pension benefits). Note that any days where you have been on strike are recorded as these days do not count towards your reckonable service. This may suggest, but not categorically confirm that you are a member of a Trade Union which the GDPR classes as more sensitive information;
  • Pension contribution history.
  • Career Salary Defined Benefit information

d. Your previous pension benefits:

You may have transferred benefits into the RMSPS from another pension provider in line with the scheme rules. We received this information from your previous pension provider and from you directly.

e. Information required to pay/administer benefits:

The RMSPS may pay benefits to you, your spouse, your dependants and your nominees over the period of your membership of the scheme arrangements. In some instances we may require official documentation to verify your personal circumstances or the identity of others in order to pay those benefits. This information will be provided by either yourself or others and include:

  • Identification documents;
  • Legal certificates (for example birth certificates, marriage/civil partnership certificates, death certificates);Pension sharing orders;
  • Information relating to your entitlement to benefits (on grounds of loss to the employer/scheme, or arising from criminal, negligent or fraudulent activity).

f. Information relating to your satisfaction with the service provided:

The RMSPS operate a continuous improvement approach and as such may request feedback from you, either by the phone or written/electronic. We also progress any complaints you may have in order that we can make improvements to our service. We receive this information from you. 

g. Information relating to using our website:

If you use our website be informed of the presence of cookies which are used to collect information relating to how you use the website. The cookies cannot identify you, as the information collected is anonymous, and therefore cannot be classed as personal. 

We intend to continue improving the content and function of our Website. For this reason, we may monitor customer traffic patterns and site usage to help us improve the design and layout of our site and provide content of interest to you.

For more information on our cookie policy, please click here

6. How long we keep your personal information for

The RMSPS will retain information in line with our Data Retention Policy. This is under regular review and may change, however as pensions are long term, it is normal for us to retain your personal information for a long time, including after your death. This is because benefits may still be payable to others following your death. 

7. Sharing your personal information with third parties

The RMSPS use a number of approved third party providers who we may share your personal information with in order to deliver the service or to comply with legislation placed upon us. These include:

a. For scheme administration purposes

The scheme administrator Capita Employee Solutions is the processor of your personal information. Capita Employee Solutions uses sub-processors to provide operational, system and infrastructure support to administer your benefits (for example IT providers, letter printing, postal services, identity checking services, banks etc.). 

We do not share your personal information outside of the European Economic Area (EEA). The only exception is if you were to request in writing for us to pay your benefits into a bank account that is outside of the EEA.  

If you transfer to another pension scheme we’ll need to share your personal information with the relevant pension provider.

For members who have benefits in the RMPP as well as the RMSPS, a data sharing agreement has been set up between the Trustee’s of the RMPP and Cabinet Office as Scheme Manager of the RMSPS. This is a mechanism to allow personal information to be shared. The purpose of this is to ensure that both parties are able to pay benefits in line with the scheme rules. 

b. For compliance purposes

Statutory Bodies such as; The Pensions Regulator, the Pensions Ombudsman, the Department for Work and Pensions and Her Majesty’s Revenue and Customs, in accordance with our legal obligations.

In order to comply with our legal, regulatory and statutory obligations, sometimes we also need to pass your personal information to 3rd parties, such as Her Majesty’s Courts, law enforcement agencies, auditors, and our professional advisers such as legal advisors and actuaries.

c. For research purposes

In order to continually meet the needs of members, and intermediaries, the RMSPS may need to conduct research and surveys. Some of those activities may require us to use your personal information.  

When conducting such activities, we may need to share your personal information with other government bodies or departments, as well as with third party research partners. Wherever possible, we’ll use aggregated datasets, anonymisation or pseudonymisation techniques to limit personal information use to what is strictly necessary for the purpose of each activity.

d. General notes relating to sharing of your information

Your personal information is not processed or stored outside of the EEA, unless you specifically request to be paid your pension into a non EEA bank account;

Where third parties are in receipt of your personal information, RMSPS require sufficient guarantees that appropriate technical and organisational measures are in place to maintain the required standard of security. Prior to a new supplier being appointed a Data Protection Impact Assessment is conducted to ensure that appropriate measures and controls are in place.

8. Security and safe storage of your personal information

The security of your personal information is very important to us and we take this matter very seriously. We use appropriate procedures and security features and have in place a robust framework to ensure the security of your personal information.

The information security management systems operated by our administrators and our IT managed services providers are all independently certified to the ISO 27001:2013 standard. This gives us assurance that our systems and processes are robust, and helps protect members’ personal information.

In addition, the scheme administrators operate a Privacy by Design Policy, which means that a structured assessment of personal information risks is conducted at the point that any new or amended data processing systems or infrastructure are considered. This ensures that data protection is built in and compliant with the data protection law for any changes or new initiatives.

9. Your rights in relation to the personal information we hold about you

Data protection legislation provides individuals with a number of rights with respect to your personal information. These are not always applicable because in some cases the lawful basis for processing overrides that right. The table below shows which rights are applicable and which are not, and there is more information regarding each right following the table:

 Personal information Rights  Applicable to RMSPS
 The right to be informed  Y
 The right of access  Y
 The right to rectification  Y
 The right to erasure  N
 The right to restrict processing  N
 The right to data portability  N*
 The right to object  N
 Rights in relation to automated decision
making and profiling

* Note that whilst the right to data portability is not applicable under data protection legislation for the RMSPS, however, the scheme rules allow for your pensions to be transferred to another provider, as explained below.

a. The right to be informed

You have a right to understand how we process your personal information and your rights relating to it. This Privacy Policy provides this information.

b. The right of access

You have a right to access your personal information. We routinely provide access to a summary of your information, as explained below:

  • If you are a deferred member (i.e. you have a RMSPS pension that you have not yet taken you will receive a Current Value statement of benefits. You can request additional statement of your deferred benefits but there may be a charge
  • If you are a pensioner member (i.e. you are receiving your RMSPS Pension), then you will be sent a P60 after the end of each tax year. This will contain some of your personal information (e.g. name, address, NINO, pension).

The provision of Current Value Statements or P60’s (as applicable) does not prevent you from requesting access to specific items or all of your personal information that the RMSPS hold. 

A request for your information will be free of charge, with the exception that a reasonable fee can be charged when a request is manifestly unfounded or excessive, particularly if it is repetitive. Any fees charged will be based on the administrative cost of providing the information. Where we have identified that a charge is applicable, we will notify you in advance so that you can decide whether to continue or not. 

Information will be provided within one month of receipt, however we are able to extend this by a further two months where requests are complex or numerous. If this is the case, we will inform you within one month of the receipt of the request and explain why the extension is necessary. 

Where requests are manifestly unfounded or excessive, in particular because they are repetitive, we can either charge the reasonable fee or refuse to respond. Where we refuse to respond to a request, we will explain the reason why and inform you of your right to complain to the supervisory authority and to a judicial remedy within one month.

Please contact us if you would like access to your personal information. Please be as specific as you can in relation to the personal information you would like to have access to.

c. The right to rectification (correction of data)

You have a right to have personal information rectified (corrected) if it is inaccurate or incomplete. 

The common changes of personal details (e.g. name, address, bank details (pensioners only) can be done by contacting Capita Employee Solutions either by phone or email. 

Where we have shared your information with others and it is subsequently rectified, we will share the corrected information with those parties.

d. The right to erasure

The right to erasure is also known as ‘the right to be forgotten’. The broad principle underpinning this right is to enable you to request the deletion or removal of personal information where there is no compelling reason for its continued processing. 

In the case of pension information, there are very few circumstances where the right to erasure can be invoked as the maintenance of your pension information is required in order to pay your benefits either now or in the future. 

If you consider that there is no compelling reason for the scheme to continue to hold your personal information then please contact us. Note, that if you have benefits in the scheme either in payment or deferred, then we will refuse your request as it would prevent you from receiving the benefits that you are entitled to. 

e. The right to restrict processing

This right does not apply as the scheme will be required to continue processing your personal information in order for the scheme to administer your benefits and for any data rectification of personal information to be received and applied to your record. If you are concerned about the accuracy of personal information then your right to rectification can be invoked.

f. The right to data portability

This right does not apply as it is only relevant when the reason for processing is based upon your consent, which for the RMSPS is not the case. However, the scheme rules allow for transfer of pension benefits to other schemes, in certain circumstances.

g. The right to object

This right does not apply due to the legal grounds for us to process your information, namely that we need your personal information in order to administer your pension to ensure you receive the scheme benefits that you are entitled to.

Please note that the RMSPS do not perform any direct marketing activities and we do not sell or otherwise provide your personal information to any third parties for the purposes of marketing. Your personal information is used solely for the purposes of administrating your benefits under the RMSPS

h. Rights in relation to automated decision making and profiling
This right prevents decisions being taken based solely on automated processing, including profiling. The RMSPS do not perform solely automated decision making and therefore this right is not applicable.

10. Personal Data Breaches

A personal data breach is defined as a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal information transmitted, stored or otherwise processed.

All organisations have a duty to report certain types of personal data breach to the relevant supervisory authority (the Information Commissioners Office) within 72 hours of becoming aware of the breach, where feasible.

If the breach is likely to result in a high risk of adversely affecting your individual rights and freedoms, we must also inform you without undue delay.

We operate robust breach detection, investigation and internal reporting procedures to facilitate decision-making about whether or not we need to notify the relevant supervisory authority and you.
We maintain a record of any personal data breaches, regardless of whether they were notified to the ICO or to you.

If you believe your Personal Data has been compromised, then please contact us using the contact details provided below.

11. Further information, Contact Details and Concerns

a. Further information

The information provided in this privacy policy is in addition to any other privacy information we may give you on this website or via other means as outlined throughout this policy. 

You may also wish to view your previous employers Privacy policy that will explain how they collected and provided your personal information to the scheme. 

If you are a member who has benefits in both the RMSPS and the Royal Mail Pension Plan (RMPP) you may also wish to view the Royal Mail Pension Plan’s privacy notice explain how they collected your Personal data.

b. Contact us

If you wish, you can contact the Scheme Administrator, Capita Employee Solutions at:

Telephone: 0333 222 0078
Address: Royal Mail Statutory Pension Scheme
11b Lingfield Point
United Kingdom

You may also contact either the Scheme Manager (Cabinet Office) or Scheme Administrator’s) Data Protection Officers (DPO) using the following details: 

 Scheme Manager (Cabinet Office) DPO Scheme Manager (Cabinet Office) DPO 

Steve Jones
Cabinet Office
1 Horse guards Road


Jenny Coombs
Data Protection Officer
30 Berners Street


c. Complaints

If you have concerns about the way we handle your personal information then we would like you to raise it to us so that we have the opportunity to put it right.

If you think that we haven’t dealt with your concerns fully and appropriately, you can contact the Information Commissioner’s Office to report your concerns. We will work cooperatively with the ICO in order to resolve your concerns. They can be contacted by:

  • Phone on +44 303 123 1113;
  • Post to Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, SK9 5AF;
  • Their website at

Any complaint to the Information Commissioner is without prejudice to your right to seek an effective judicial remedy against a legally binding decision of the Supervisory Authority. You have the right to appoint a representative to act upon your behalf.