Privacy Policy

Introduction

TIARA Fintech Solutions Limited ("we", "us", "our") is committed to protecting and respecting your privacy. This privacy policy explains how we use any personal information we collect about you when you use this website.

Who We Are
TIARA Fintech Solutions Limited is a company registered in England with registered number 06847212 and registered office at 46 Park Place, Leeds, LS1 2RY.

What Information We Collect
We may collect and process the following personal information:
1. Name and job title
2. Company or organization
3. Contact information, including email address and telephone number(s)
4. Demographic information such as postcode, preferences, and interests
5. Other information relevant to customer surveys and/or offers
6. Information pertinent to fulfilling our services on an individual’s or organization’s behalf
7. Date of birth (if provided)
8. Family/next of kin/friend details (if relevant)
9. Employment details (if relevant)

Legal Basis for Processing
Under the General Data Protection Regulation (GDPR), we rely on the following legal bases to process your personal data:
1. Consent
o We will process your personal data where you have given us clear consent to do so for a specific purpose.
o Example: When you subscribe to our newsletter, we process your email address based on your consent to receive marketing communications. You can withdraw your consent at any time by clicking the "unsubscribe" link in any email you receive from us.
2. Performance of a Contract
o We process your personal data to perform a contract we have entered into with you or to take steps at your request before entering into such a contract.
o Example: When you purchase a service from us, we process your contact and payment information to fulfil your order and provide you with the service.
3. Compliance with a Legal Obligation
o We process your personal data to comply with a legal obligation to which we are subject.
o Example: We retain certain transaction records to comply with tax, accounting, and financial reporting obligations.
4. Protection of Vital Interests
o We process your personal data where it is necessary to protect your vital interests or those of another person.
o Example: If there is an urgent financial matter, such as a security threat to your accounts, we may process your data to address and mitigate the threat.
5. Performance of a Task Carried Out in the Public Interest
o We process your personal data where it is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in us.
o Example: We may need to process your data to comply with requests from financial or tax authorities during an investigation.
6. Legitimate Interests
o We process your personal data where it is necessary for our legitimate interests or those of a third party, provided your interests and fundamental rights do not override those interests.
o Example: We may process your data to improve our services, manage our business, or conduct market research. We always consider and balance any potential impact on you and your rights before we process your personal data for our legitimate interests.

How We Use Your Information
We require this information for the following purposes:
• Internal record keeping
• Providing and managing your access to our website and services
• Personalizing and tailoring your experience on our website
• Responding to communications from you
• Market research purposes
• Sending promotional marketingemails about new products, special offers, or other information we think you may find interesting (with your consent)
• Processing and fulfilling any requests or orders you place with us
• Improving our products and services

Cookies
We use cookies to understand how you use our website and to improve your experience. Cookies are small files placed on your computer's hard drive. They help us analyse web traffic and tailor our website operations to your needs. You can manage your cookie preferences through your browser settings.

Data Retention
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including satisfying any legal, accounting, or reporting requirements. The retention periods for different types of personal data are as follows:
1. Customer Information
o Example: We retain your contact information and account details for 7 years after the end of our business relationship to comply with legal and regulatory requirements and to be able to respond to any inquiries or disputes.
2. Transaction Records
o Example: Financial transaction records are kept for 7 years to comply with tax, accounting, and financial reporting obligations.
3. Marketing Data
o Example: We retain data related to marketing communications until you unsubscribe or withdraw your consent, after which it will be securely deleted or anonymized within 30 days.
4. Job Applications
o Example: Unsuccessful job applicant data is retained for 6 months after the decision has been communicated, to address any follow-up inquiries or legal obligations.
5. Legal Obligations
o Example: Data required for compliance with specific legal obligations, such as anti-money laundering regulations, may be retained for as long as mandated by law, which can exceed the standard retention periods.

Security
We are committed to ensuring that your information is secure. We have implemented appropriate technical and organizational measures to safeguard and secure the personal information we collect online.

International Data Transfers
Personal data we collect may be transferred to, and stored at, a destination outside the European Economic Area (EEA) if required to process any order or services contracted to us. Where we transfer your data outside the EEA, we will ensure it is protected by appropriate safeguards, such as standard contractual clauses approved by the European Commission, binding corporate rules and/or adequacy decisions.

Third-Party Sharing
We share your personal data with third parties only when necessary and in accordance with GDPR requirements. The types of third parties we share data with and the purposes for sharing include:
1. Service Providers
o Example: We share your data with IT and system administration service providers to ensure the smooth operation of our website and services. These providers are contractually obligated to protect your data and use it only for the purpose of providing services to us.
2. Professional Advisers
o Example: We may share data with our legal, accounting, and business advisers to obtain professional advice and ensure compliance with legal and regulatory requirements.
3. Financial and Tax Authorities
o Example: If required, we share data with financial and tax authorities to comply with legal obligations, such as tax reporting or financial audits.
4. Marketing Partners
o Example: With your consent, we may share your contact information with marketing partners who assist us in conducting market research and promotional activities. You can opt-out of such sharing at any time by contacting us.
5. Business Transfers
o Example: In the event of a merger, acquisition, or sale of all or part of our business, your personal data may be transferred to the new owner. We will notify you of any such change and outline your rights regarding your data.
6. Regulatory and Law Enforcement Agencies
o Example: We may disclose personal data to regulatory and law enforcement agencies if required by law, to comply with legal processes, or to protect the rights, property, or safety of our company, our customers, or others.

Your Rights
Under GDPR, you have the following rights:
• Right to be informed about how your data is used
• Right of access to the personal data we hold about you
• Right to rectification of inaccurate or incomplete data
• Right to erasure (right to be forgotten)
• Right to restrict processing of your data
• Right to data portability
• Right to object to processing of your data
• Rights related to automated decision-making including profiling
You can exercise these rights by contacting our Data Protection Officer (DPO) at helpdesk@tiara.tech.

Changes to This Policy We may update this policy from time to time. We will notify you of any significant changes by posting the new policy on our website and, where appropriate, by email. It is important to check this page periodically to ensure you are happy with any changes.

Contact Us If you have any questions about this policy or our data protection practices, please contact: Karrie Tilburn, Data Protection Officer Email: helpdesk@tiara.tech

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO) if you believe we have not handled your personal data in accordance with the law. For more information, please visit www.ico.org.uk.