Information We Collect
Personal Information
When you register for our financial platform, we collect essential information to provide our services effectively. This includes your full name, email address, phone number, and postal address. We also require date of birth for age verification and regulatory compliance purposes.
For enhanced security and to comply with financial regulations, we may request additional verification documents such as government-issued identification, proof of address, and employment information. This data helps us maintain the integrity of our platform and protect all users.
Financial Information
To provide comprehensive financial services, we collect and process various types of financial data. This includes bank account details for transactions, payment history, investment preferences, and risk assessment information. We also track your financial goals and progress within our platform.
- Account registration details and profile information
- Payment methods and transaction history
- Financial goals and investment preferences
- Device information and IP addresses for security
- Communication preferences and interaction data
Technical Information
Our systems automatically collect technical information to ensure optimal platform performance and security. This includes your IP address, browser type, device characteristics, and usage patterns. We analyze this data to improve our services and detect potential security threats.
How We Use Your Data
Your personal information serves multiple purposes within our financial platform. Primary usage includes account management, transaction processing, and providing personalized financial insights. We use your data to help you achieve your financial goals through tailored recommendations and educational content.
We process your personal data based on legitimate interests, contractual necessity, and legal compliance. When required by UK data protection laws, we obtain explicit consent before processing sensitive financial information.
Service Provision
Your information enables us to deliver core financial services including account management, payment processing, and financial planning tools. We use your data to generate personalized reports, track progress toward financial goals, and provide relevant educational content about financial management.
Communication and Support
We use your contact information to send important account notifications, security alerts, and educational content. This includes updates about new features, changes to our terms, and relevant financial insights. You maintain control over communication preferences through your account settings.
| Purpose | Legal Basis | Data Types |
|---|---|---|
| Account Management | Contract Performance | Personal details, contact information |
| Financial Services | Legitimate Interest | Financial data, transaction history |
| Security Monitoring | Legitimate Interest | Technical data, usage patterns |
| Regulatory Compliance | Legal Obligation | Identity verification, transaction records |
Information Sharing and Disclosure
We maintain strict controls over data sharing and only share your information when necessary for service delivery or legal compliance. Our approach prioritizes your privacy while ensuring we can provide comprehensive financial services through trusted partnerships.
Service Partners
We work with carefully selected financial institutions, payment processors, and technology providers to deliver our services. These partners operate under strict contractual agreements that require them to protect your data and use it only for specified purposes. All partnerships undergo rigorous security and privacy assessments.
- Payment processors for transaction handling and security
- Banking partners for account services and fund transfers
- Identity verification services for regulatory compliance
- Cloud infrastructure providers for secure data storage
- Analytics platforms for service improvement insights
Legal Requirements
UK financial regulations and legal obligations sometimes require us to share information with regulatory bodies, law enforcement, or other authorities. We only disclose the minimum necessary information and ensure all requests meet legal standards before releasing any data.
We never sell your personal information to third parties for marketing purposes. Any data sharing occurs strictly within the bounds of service delivery, legal compliance, or with your explicit consent.
Data Security and Protection
Protecting your financial information requires comprehensive security measures across technical, physical, and administrative domains. Our security framework incorporates industry-leading practices and continuously evolves to address emerging threats in the financial technology landscape.
Technical Safeguards
We employ multiple layers of technical protection including end-to-end encryption for data transmission, advanced encryption standards for data storage, and secure access controls for all systems. Our infrastructure includes intrusion detection systems, regular security monitoring, and automated threat response mechanisms.
All sensitive financial data undergoes encryption both in transit and at rest using industry-standard protocols. We implement multi-factor authentication, secure session management, and regular security audits to maintain the highest protection levels for your information.
Access Controls
Access to your personal information is strictly limited to authorized personnel who require it for legitimate business purposes. We maintain detailed access logs, implement role-based permissions, and conduct regular reviews of data access patterns to prevent unauthorized use.
- 256-bit SSL encryption for all data transmissions
- Advanced encryption standards for database storage
- Multi-factor authentication for account access
- Regular penetration testing and vulnerability assessments
- 24/7 security monitoring and incident response
Your Privacy Rights
Under UK data protection laws, including the Data Protection Act 2018 and retained EU GDPR provisions, you have significant rights regarding your personal information. We've designed our systems and processes to make exercising these rights straightforward and efficient.
Access and Portability Rights
You have the right to request copies of all personal information we hold about you. This includes transaction histories, profile data, communication records, and any automated decision-making information. We provide this data in commonly used formats and can facilitate direct transfers to other service providers when technically feasible.
Correction and Deletion Rights
When your personal information is inaccurate or incomplete, you can request corrections through your account dashboard or by contacting our privacy team. You also have the right to request deletion of your personal information, though some data may need to be retained for legal compliance or legitimate business purposes.
To exercise any of these rights, contact our Data Protection Officer at privacy@florentavexia.com. We respond to all requests within 30 days and provide clear explanations if we cannot fulfill specific requests due to legal obligations.
Processing Restrictions
You can request restrictions on how we process your personal information in specific circumstances, such as when you dispute the accuracy of data or object to processing based on legitimate interests. We'll honor these restrictions while maintaining essential service functionality and legal compliance.
Data Retention Policies
We retain your personal information only as long as necessary for the purposes outlined in this policy, legal requirements, or legitimate business needs. Our retention periods are based on the nature of the information, applicable regulations, and the purposes for which we collected the data.
Account Information
Active account information is retained throughout your relationship with us and for seven years after account closure to comply with financial record-keeping requirements. This includes transaction histories, identity verification documents, and communication records related to your account.
Automated Deletion
We've implemented automated systems to delete personal information that exceeds our retention periods. Non-essential data like temporary session information is deleted immediately after use, while marketing preferences are removed within 30 days of opt-out requests.
- Active account data: Retained during service relationship plus 7 years
- Transaction records: 7 years from transaction date for regulatory compliance
- Marketing communications: Until opt-out or 3 years of inactivity
- Technical logs: 12 months for security and performance analysis
- Customer support records: 3 years from last interaction
International Data Transfers
Some of our service providers and technical infrastructure operate outside the UK. When we transfer your personal information internationally, we ensure appropriate safeguards are in place to protect your data according to UK data protection standards.
Transfer Safeguards
All international transfers are protected through adequacy decisions, standard contractual clauses, or other approved transfer mechanisms. We conduct due diligence on all international partners and ensure they provide equivalent protection to UK data protection laws.
Primary data processing occurs within the UK. International transfers are limited to essential services like cloud infrastructure backup systems and fraud prevention services, all of which operate under strict contractual protections.
Privacy Inquiries and Contact Information
For questions about this privacy policy, data protection concerns, or to exercise your privacy rights, contact our Data Protection Officer:
florentavexia Data Protection Officer
Pavillion 3, 99 Berkeley St.
Glasgow G3 7HR, United Kingdom
Email: privacy@florentavexia.com
Phone: +447495920879
We respond to all privacy inquiries within 30 days and provide regular updates on complex requests.