Privacy Policy

1. Introduction

This Privacy Policy explains how we collect, use, store, disclose, and protect personal data when you interact with our website, products, and services. We are committed to safeguarding personal information and processing data in a lawful, fair, and transparent manner in accordance with applicable data protection laws, including the UK General Data Protection Regulation (UK GDPR), the EU GDPR, and other relevant international data protection frameworks.

By using our services or accessing our website, you acknowledge that your personal data may be processed in accordance with this Privacy Policy.

2. Information We Collect

We may collect and process the following categories of personal data:

• Identification information (such as name, date of birth, nationality)

• Contact details (such as email address, telephone number, and postal address)

• Financial information (such as account details, transaction data, and payment information)

• Technical data (including IP address, device information, browser type, and usage data)

• Regulatory and compliance information (including KYC, AML, and due diligence documentation)

• Communications and correspondence with us

The specific data collected depends on the nature of your relationship with us and the services you use.

3. How We Use Personal Data

We process personal data for legitimate business and regulatory purposes, including:

• Providing and administering banking products and services

• Verifying identity and conducting regulatory checks

• Complying with legal and regulatory obligations

• Managing risk, fraud prevention, and security monitoring

• Improving our services, systems, and customer experience

• Communicating with clients regarding accounts, services, and updates

Personal data is processed only where there is a lawful basis to do so.

4. Legal Basis for Processing

We process personal data under one or more of the following legal bases:

• Performance of a contract or steps prior to entering into a contract

• Compliance with legal and regulatory obligations

• Legitimate interests pursued by the institution, provided such interests do not override individual rights

• Consent, where required by law

Where consent is relied upon, it may be withdrawn at any time, subject to legal and contractual restrictions.

5. Data Sharing and Disclosure

We may share personal data with:

• Regulatory authorities, supervisory bodies, and law enforcement agencies

• Service providers and professional advisers acting on our behalf

• Financial institutions, payment processors, and clearing systems

• Third parties where required by law or necessary to provide services

All third parties are required to maintain appropriate confidentiality, security, and data protection standards.

6. International Data Transfers

Personal data may be transferred to, stored in, or accessed from jurisdictions outside the UK or European Economic Area. Where such transfers occur, we implement appropriate safeguards, including contractual protections and recognised transfer mechanisms, to ensure an adequate level of data protection.

7. Data Security

We implement technical, organisational, and administrative security measures designed to protect personal data against unauthorised access, loss, misuse, or disclosure. These measures include encryption, access controls, monitoring, and regular security reviews.

Despite these measures, no system can guarantee absolute security.

8. Data Retention

Personal data is retained only for as long as necessary to fulfil the purposes for which it was collected, including to meet legal, regulatory, and operational requirements. Retention periods vary depending on the nature of the data and applicable laws.

9. Individual Rights

Subject to applicable laws, individuals may have the right to:

• Access their personal data

• Request correction of inaccurate or incomplete data

• Request erasure of personal data

• Restrict or object to certain processing activities

• Request data portability

• Lodge a complaint with a relevant data protection authority

Requests may be subject to identity verification and legal limitations.

10. Cookies and Tracking Technologies

Our website may use cookies and similar technologies to enhance functionality, analyse usage, and improve performance. Further details are provided in our Cookie Policy.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in legal requirements, regulatory guidance, or our data processing practices. Updated versions will be made available on our website.

12. Contact Information

For questions or requests relating to this Privacy Policy or the processing of personal data, please contact us through the official contact channels provided on our website.

Regulatory Notice

This Privacy Policy is provided for informational purposes only and does not constitute legal advice. Terms and conditions apply to all products and services.