We're committed to protecting your personal information in full compliance with UK GDPR and Data Protection Act 2018
Our commitment to protecting your personal information
Nani Fintech Plus Ltd (βweβ, βourβ, or βusβ) is the data controller responsible for processing your personal information.
Clear information about data collection and use
You decide how your data is used
Bank-level protection for your information
Full adherence to UK GDPR and DPA 2018
Nani Fintech Plus Limited
Registered in England and Wales
Company Number: 16630423
Registered Office: 203-205 The Vale Business Center, The Vale, Acton ,W3 7QS.
We are the data controller responsible for your personal information collected through our services.
Types of personal data we process
Information that identifies you personally, collected for account creation and KYC compliance:
Information needed to communicate with you and provide our services:
Financial information necessary for providing our digital banking and investment services:
Technical information collected automatically when you use our services:
Purposes for processing your personal data
Why we're allowed to process your data under UK GDPR
We process your data to perform our contract with you and provide the services you've requested:
We're required by law to process certain data for regulatory compliance:
We process data for legitimate business purposes, balanced against your rights:
For certain activities, we ask for your explicit consent:
When and with whom we share your information
We do not sell, rent, or trade your personal information to third parties for marketing purposes. Your data is only shared when necessary for service provision or legal compliance.
Licensed institutions that help us provide services:
Authorities that require data for compliance:
Trusted partners supporting our platform:
Advisors and service providers:
How long we keep your information
We only keep your personal data for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, and protect our legitimate interests.
While your account is active, we retain all necessary data to provide our services and maintain account security.
After account closure, we retain financial records for 6 years as required by UK financial regulations and tax law.
Identity verification documents are kept for 5 years after the business relationship ends, as required by AML regulations.
Marketing preferences and communication data are retained for 2 years after last interaction or consent withdrawal.
System logs and technical data are typically retained for 1 year for security and troubleshooting purposes.
When retention periods expire, we securely delete your data using industry-standard methods to ensure it cannot be recovered or reconstructed.
Control how your personal data is used
Under UK GDPR and Data Protection Act 2018, you have several rights regarding your personal data. We're committed to helping you exercise these rights.
Request a copy of the personal data we hold about you, including how it's used and who it's shared with.
Correct any inaccurate or incomplete personal data we hold about you.
Request deletion of your personal data where there's no compelling reason to continue processing.
Limit how we process your data in certain circumstances while maintaining your account.
Receive your data in a structured format to transfer to another service provider.
Object to processing based on legitimate interests or for direct marketing purposes.
How we protect your personal information
We implement comprehensive security measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction.
Information Security Management System certification
Payment Card Industry Data Security Standard compliance
Service Organization Control 2 Type II certification
How we protect your data when transferred abroad
When we transfer your personal data outside the UK or European Economic Area (EEA), we ensure it receives the same level of protection through appropriate safeguards.
We transfer data to countries with adequacy decisions from the UK government:
For other countries, we use approved contractual safeguards:
Before any international transfer, we conduct a Transfer Impact Assessment to ensure your data will be adequately protected in the destination country, considering local laws and practices.
Questions about your privacy rights or how we handle your data?
Email: dpo@nanifintechplus.com
Phone: 075 8781 2000
Post: Data Protection Officer
Nani Fintech Plus Limited
203-205 The Vale Business Center, The Vale, Acton ,W3 7QS.
Response Time: Within 30 days
Email: info@nanifintechplus.com
Phone:075 8781 2000
Languages: English, Arabic, Somali, Swahili
Secure Portal: Available in your account
If you're not satisfied with our response to your privacy concerns, you have the right to complain to the UK's data protection regulator:
Organisation Name: NANI FINTECH PLUS LTD
Reference: ZC029795
You can view our registration certificate by visiting: ico.org.uk/register, click on 'Search the Register', and enter the above reference number to DOWNLOAD our registration certificate.