801
0
Privacy Policy - RegTechPRO
RegTechPRO

Privacy Policy

How we collect, use, and protect your personal data

Effective: 1 January 2025

Contents

  • 1 Who We Are
  • 2 Information We Collect
  • 3 How We Use It
  • 4 Legal Basis
  • 5 Sharing Your Data
  • 6 Data Retention
  • 7 Data Security
  • 8 Your Rights
  • 9 International Transfers
  • 10 Cookies
  • 11 Changes
  • 12 Contact & Complaints

This Privacy Policy explains how RegTechPRO Limited collects, uses, stores, and protects your personal data when you use our compliance workflow management platform. We are committed to protecting your privacy and handling your data in an open and transparent way.

1

Who We Are

RegTechPRO Limited operates this compliance workflow management platform to assist FCA-regulated firms in meeting their regulatory compliance obligations.

For the purposes of applicable data protection legislation (including UK GDPR and the Data Protection Act 2018), RegTechPRO Limited is the "data controller" of your personal data, meaning we determine how and why your data is processed.

Our Contact Details
RegTechPRO Limited
Company No. 10707766
2 Wood Ridge Crescent, St. Neots, England, PE19 6BG
Email: info@regtechpro.co.uk
2

Information We Collect

We collect and process various types of personal data to deliver and improve our services. This includes:

Information You Provide to Us

Account Information
When registering an account, we collect your name, email address, contact details, job title, and company information.
Payment Information
When subscribing to our services, we collect payment information (such as card details) to process payments securely through our payment provider.
Communications
Any data you provide when contacting us via email or through the platform, including feedback, support requests, and correspondence.

Information We Collect Automatically

Usage Data
Information about your interaction with our platform, including IP addresses, browser type, operating system, pages visited, features used, and links clicked.
Cookies & Tracking
We use cookies and similar tracking technologies to monitor activity on our website and platform. See our Cookies section for more details.

Information from Third Parties

Third-Party Integrations
If you integrate third-party services with our platform, we may receive data from those services, such as user authentication details.
Public Sources
We may collect information from public databases or the FCA register to verify your identity or enhance the accuracy of our records.
3

How We Use Your Information

To Provide Our Services

  • To create and manage your account on the RegTechPRO platform
  • To process payments and manage billing
  • To provide customer support and respond to inquiries
  • To deliver the compliance tools and features you have subscribed to

For Platform Improvement

  • To monitor usage patterns and improve our platform's functionality
  • To analyse trends and user behaviour to enhance user experience
  • To conduct research and development for new features and services
  • To ensure the security and integrity of our platform

Marketing and Communication

  • To send you newsletters, product updates, and promotional content (with your consent)
  • To notify you about changes to our platform, services, or policies
  • To inform you of regulatory changes that may affect your compliance obligations

Compliance with Legal Obligations

  • To fulfil legal and regulatory requirements, including data protection and financial regulations
  • To prevent, detect, and investigate security breaches, fraud, or other criminal activities
  • To respond to lawful requests from regulatory authorities or law enforcement
4

Legal Basis for Processing

Under UK GDPR, we rely on the following legal bases to process your personal data:

Consent Where you have provided explicit consent for specific processing activities, such as receiving marketing communications. You can withdraw consent at any time.
Contract We process your data where necessary to fulfil our contractual obligations to you, such as providing the services you have subscribed to.
Legal Obligation We process your data where required to comply with applicable legal obligations, such as financial record-keeping and reporting requirements.
Legitimate Interests We may process your data where necessary for our legitimate business interests, such as improving our platform, preventing fraud, or ensuring security, provided these interests do not override your rights.
5

Sharing Your Information

We do not sell or rent your personal data to third parties. Your data is only shared in the limited circumstances described below.

Service Providers

We may share your data with trusted third-party service providers who perform functions on our behalf, such as:

  • Payment processors (to handle subscription payments securely)
  • Cloud hosting providers (to store and process data)
  • IT support and security services
  • Email service providers (for transactional communications)

These service providers are bound by confidentiality agreements and are required to process your data only in accordance with our instructions and this Privacy Policy.

Legal and Regulatory Authorities

We may disclose your data to regulatory authorities, law enforcement agencies, or other governmental bodies if required by law, in response to valid legal processes, or to protect our rights and the safety of others.

Business Transfers

In the event of a merger, acquisition, or sale of all or part of our assets, your data may be transferred to the new entity as part of the transaction. We will notify you of any such changes and ensure your data remains protected under equivalent safeguards.

6

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements.

Account Information
Retained for the duration of your account, plus 6 years after account closure to comply with legal obligations (such as financial records and potential claims).
Payment Data
Retained as long as necessary to process payments and comply with tax, audit, and financial reporting requirements (typically 6 years).
Communication Data
Retained for a reasonable period to respond to your inquiries, provide support, and maintain records of our interactions.
Usage Data
Retained in anonymised or aggregated form for analytics purposes. Identifiable usage data is deleted or anonymised within 2 years.

When we no longer require your data for these purposes, we will securely delete or anonymise it in accordance with our data retention schedule.

7

Data Security

We take the security of your personal data seriously and implement appropriate technical and organisational measures to protect it against unauthorised access, alteration, disclosure, or destruction.

Security Measures

  • Encryption: We use industry-standard encryption (TLS/SSL) to protect personal data in transit and at rest
  • Access Controls: Access to personal data is restricted to authorised personnel who need it for legitimate business purposes
  • Secure Infrastructure: Our platform is hosted on secure, UK-based cloud infrastructure with multiple layers of protection
  • Regular Audits: We regularly review and update our security measures to address emerging threats
  • Employee Training: Our staff receive regular training on data protection and security best practices

While we strive to protect your data using commercially reasonable measures, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security, but we are committed to maintaining the highest standards of data protection.

8

Your Rights

Under UK GDPR and the Data Protection Act 2018, you have the following rights regarding your personal data:

Right to Access
Request a copy of the personal data we hold about you and information about how we process it.
Right to Rectification
Request correction of inaccurate or incomplete personal data we hold about you.
Right to Erasure
Request deletion of your data in certain circumstances, such as when it's no longer needed or you withdraw consent.
Right to Restrict Processing
Request that we limit processing of your data in certain situations, such as while we verify its accuracy.
Right to Data Portability
Request your data in a structured, machine-readable format to transfer to another service provider.
Right to Object
Object to processing based on legitimate interests or for direct marketing purposes. We will cease processing unless we have compelling grounds.
Right to Withdraw Consent
Where processing is based on consent, you can withdraw it at any time. This doesn't affect lawfulness of prior processing.
Automated Decision-Making
Right not to be subject to decisions based solely on automated processing that significantly affect you. We don't currently use such processing.

To exercise any of these rights, please email us at info@regtechpro.co.uk. We will respond to your request within one month, although we may extend this period by up to two months for complex requests.

9

International Data Transfers

Your data is primarily stored and processed within the United Kingdom. However, some of our service providers may process data in countries outside the UK or the European Economic Area (EEA).

When we transfer personal data outside the UK/EEA, we ensure appropriate safeguards are in place to protect your data, including:

  • UK International Data Transfer Agreement (IDTA) or EU Standard Contractual Clauses with our service providers
  • Transfers to countries with an adequacy decision from the UK government or European Commission
  • Other appropriate safeguards as permitted under UK GDPR

You can request more information about the safeguards we use for international transfers by contacting us at info@regtechpro.co.uk.

10

Cookies

We use cookies and similar tracking technologies to collect information about your browsing activities and to distinguish you from other users of our platform.

Types of Cookies We Use

  • Essential Cookies: Required for the platform to function properly, including authentication and security
  • Functional Cookies: Remember your preferences and settings to enhance your experience
  • Analytics Cookies: Help us understand how visitors use our platform so we can improve it
  • Marketing Cookies: Used to deliver relevant advertisements (only with your consent)

Managing Cookies

You can manage your cookie preferences through our cookie consent banner when you first visit our site. You can also control cookies through your browser settings. Please note that disabling certain cookies may affect the functionality of our platform.

11

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our data processing practices, legal requirements, or business operations.

We will notify you of any significant changes via email or through a notice on our platform. The "Effective Date" at the top of this policy indicates when it was last updated.

We encourage you to review this Privacy Policy periodically. Your continued use of the platform following any changes constitutes acceptance of the updated policy.

12

Contact Us & Complaints

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us. We are committed to addressing your concerns and providing clear responses about how we handle your data.

Get in Touch

RegTechPRO Limited

Email: info@regtechpro.co.uk

Address:
2 Wood Ridge Crescent
St. Neots, England
PE19 6BG

Company No: 10707766

Information Commissioner's Office

If you are dissatisfied with our handling of your data or believe we have not complied with data protection laws, you have the right to lodge a complaint with the ICO.

Website: ico.org.uk

Phone: 0303 123 1113

Address:
Wycliffe House, Water Lane
Wilmslow, Cheshire, SK9 5AF

© 2025 RegTechPRO Limited. Company No. 10707766. Registered in England and Wales.
2 Wood Ridge Crescent, St. Neots, England, PE19 6BG

www.regtechpro.co.uk · info@regtechpro.co.uk

0