Privacy Policy

What Data We Collect

We collect only the information necessary to provide our comparison and deposit services:

• Identification and contact details – name, email, phone, country of residence.
• Request details – deposit amount, currency, desired term, product preferences.
• KYC information – nationality, tax status, source of funds (only when required by partner banks).
• Technical and analytics data – IP address, browser type, device, cookies, and usage logs.

Data is collected directly from you and through secure technical systems. We do not purchase data from third parties.

Purpose and Legal Basis

We process your data strictly for legitimate purposes, in compliance with GDPR/UK GDPR:

• Providing and managing services – deposit comparison and forwarding of your inquiry to banks (Contract Art.6(1)(b)).
• Communication and support – responding to messages and inquiries (Legitimate interest or consent).
• Security and fraud prevention – logging, IP protection, incident response (Legitimate interest).
• Legal compliance – keeping minimal records for audit and regulatory duties (Legal obligation).
• Marketing and newsletters – only with your explicit consent (Consent Art.6(1)(a)).

FINAVERO LTD acts as an independent data controller. Partner banks receiving your request become separate controllers under their own privacy policies.

Storage, Transfers and Retention

• Retention: basic account data and communications up to 3 years; inquiries to banks up to 18 months; security logs 12 months; marketing data until consent withdrawal.
• International transfers: processed in the UK/EU; if services outside UK/EU are used, Standard Contractual Clauses (SCC) and UK IDTA apply.
• Recipients: partner banks (at your request), hosting, CRM, analytics, email/SMS providers – all under strict data processing agreements.

Applicable law: EU GDPR (Reg.2016/679), UK GDPR & Data Protection Act 2018, ePrivacy Directive, UK PECR, and AML regulations where applicable.

Your Rights

• Access – receive a copy of your data.
• Rectification – correct inaccurate or incomplete information.
• Erasure – request deletion when no longer necessary or consent is withdrawn.
• Portability – obtain data in structured format or transfer to another controller.
• Objection – restrict or object to processing based on legitimate interest or direct marketing.

Data Security

We apply advanced technical and organizational measures: encryption in transit and at rest, strict access controls (RBAC), pseudonymisation, backups, audits, and security testing. All processors are bound by confidentiality and DPAs.

Cookies and Tracking

We use necessary cookies for operation and optional analytics/marketing cookies:

• Necessary – session, security, anti-fraud.
• Analytics – anonymous usage metrics, only with consent.
• Marketing – remarketing or attribution, only with consent.

Manage your preferences anytime under “Cookie Settings”.

Contact & Complaints

For any request, contact our DPO team at dpo@finvero.io. You can also lodge a complaint with the ICO (UK) or your national data authority in the EU.

Last updated: 28 October 2025.