<img src="https://secure.tray0bury.com/193769.png" alt="" style="display:none;">
Skip to content
Close
Sign in
Contact us
Sign in
Contact us

Solutions

Applications

Resources

hero-background

Privacy notice:
Platform users

Last updated: 2 December 2024
TABLE OF CONTENTS
loading...

Who you are

This information is relevant to you if you’re an authorised user of our platform.

Who we are

For the purposes of data protection law, the ‘controller’ of your personal data will be Shieldpay Limited, a company registered in England and Wales under number 10061792 and registered as a controller with the ICO under number ZA197669.

What personal data we collect about you

Picture 8.png-1

Account credentials data includes username, email address and mobile number (for two-factor authentication)

Picture 8.png-2

Audit trail data includes details of the actions taken by a user when logged into the platform including the time and date of such actions

ID badge

Biographical and contact data includes your name and role and any communications we have with you or about you

Badge with tick

Compliance data depending on your level of access within the platform, includes identity verification documents and check results, the results of any politically exposed persons, sanctions and adverse media checks, and internal written communications considering the risk associated with providing our services

Badge with tick

Customer support data includes correspondence relating to any customer support queries submitted to us

Where we get your personal data from

We'll generally get your personal data from your employer or directly from you.

What we use your personal data for

We'll use your personal data for the purposes listed below. Against each of these purposes, we've identified which categories of personal data listed above are required and the legal ground relied on by us in line with data protection law.

Purpose Categories of personal data Legal ground
Verifying the identity of authorised users Picture 1.png-1Picture 1.png-3

 

 Complying with our legal obligations under anti-money laundering, terrorist financing, sanctions and other financial crime laws
Ensuring the security and stability of our platform Picture 1.png-1Picture 8.png-1Picture 8.png-2

 

 Our legitimate interests in maintaining the security of our platform, infrastructure and data
Monitoring the use of our platform Picture 1.png-1Picture 8.png-2

 

 Complying with our legal obligations under anti-money laundering, terrorist financing, sanctions and other financial crime laws and our legitimate interests in understanding how our platform is used for service improvement purposes
Providing customer support Picture 1.png-1Picture 1.png-4

 

 Our legitimate interests in providing a positive customer experience and dealing with any questions relating to use of the platform and the execution of payment transactions using it

We may also use your personal data for purposes that are compatible with the above purposes. In doing so, we'll take into account various factors including the link between the original purpose and the purposes of the intended further processing, the nature of our relationship, the nature of the personal data, the potential consequences for you and any additional safeguards that we can put in place.

Who we share your personal data with

Depending on which of the purposes listed above applies, we may share your personal data with:

  • Technical service providers as necessary for us to operate our platform and effectively conduct our business operations
  • Regulatory bodies such as the Financial Conduct Authority and Financial Ombudsman Service
  • Law enforcement agencies such as the police, National Crime Agency and Action Fraud
  • Data service providers such as identify verification, politically exposed persons, sanctions and adverse media screening providers

How long we keep your personal data for

We'll only keep your personal data for as long as necessary in connection with the purposes for which we collected it. We maintain a data retention schedule for each category of personal data we hold.

Accounts credentials data will be deleted once a user account has been deleted and customer support data will be deleted 12 months after the corresponding support ticket has been closed. All other data will be retained for a period of five years from the date of the last payment to be executed through the account to which you were provided access, in line with the Payment Service Regulations 2017 and guidance from the Financial Conduct Authority.