Privacy Policy

• Purpose: The policy explains how the company collects, uses, stores, and transfers personal information.
• Legal Basis: It often references relevant data protection laws (e.g., GDPR, local financial regulations) that the company complies with.
• Relationship with Terms & Conditions: It clarifies that the privacy policy should be read in conjunction with the company's website terms and conditions.

Financial companies collect various types of personal information to provide their services, fulfil legal obligations, and for business operations. This typically includes:

• Direct Interactions: Information provided directly by the user through forms, phone calls, emails, or when registering for services.
• Automated Technologies: Data collected automatically through website usage, cookies, and other tracking technologies.
• Third Parties/Public Sources: Information received from business partners (e.g., payment services, analytics providers, credit reference agencies) or publicly available sources.

• Service Provision: To operate, maintain, and provide financial products and services (e.g., processing transactions, managing accounts, offering loans/advances).
• Identity Verification & Compliance: To fulfill legal and regulatory obligations such as Know Your Customer (KYC), anti-money laundering (AML), fraud prevention, and sanctions checks.
• Business Operations: For internal administration, accounting, improving services, and conducting data analytics and research.
• Customer Relationship Management: To respond to inquiries, complaints, and manage the customer relationship.
• Marketing: To offer products and services that may be of interest to the user (with opt-out options usually provided).

• Affiliates and Group Companies: For everyday business purposes and to provide integrated services.
• Trusted Business Partners and Service Providers: Companies that perform services on the financial company's behalf (e.g., IT services, payment processing, customer service). These partners are typically authorized to use personal information only as necessary to provide their services.
• Regulatory Authorities and Law Enforcement: When required by law, court order, or to cooperate with legal investigations and prevent criminal activity.
• Credit Bureaus and Identity Verification Services: For assessing creditworthiness and verifying identity.

• We employ physical, electronic, and procedural safeguards to protect personal information from unauthorized access, use, alteration, disclosure, and destruction.
• Measures include encryption for sensitive information, secured files and buildings, and employee training on privacy obligations.
• We regularly review and update our security practices to address new threats and vulnerabilities.

• Personal information is retained only for as long as necessary to fulfill the purposes for which it was collected, including satisfying legal, accounting, or reporting requirements.
• Retention periods vary depending on the type of data and legal obligations.
• When data is no longer needed, we securely delete or anonymize it.

• The right to access their personal data.
• The right to request correction of inaccurate data.
• The right to object to the processing of personal data (e.g., for direct marketing).
• The right to withdraw consent (where consent is the legal basis for processing).