Our customer’s privacy is extremely important to us and we take protection of your data very seriously. We only use your personal information for providing our Services and improving the Website.
The data controller of the personal information collected via our Website is Deductic Ltd (“Deductic”) which has its registered offices at 85 Great Portland Street, First Floor, London, England, W1W 7LT, United Kingdom. Our registration number with the Information Commissioner’s Office UK (“ICO”) is ZB286458.
We will collect and process the following data about you:
We will only process a limited amount of sensitive data to carry out verification of identity documents containing biometric data in order to comply with anti-money laundering regulations. This is also covered under the substantial public interest condition (condition 14) of Part 2, Schedule 1, Data Protection Act 2018.
Our Website and Services are designed for use by adults aged 18 years and above. Our Website is not intended for, and should not be used by, Children. Therefore we do not knowingly collect Children’s data, unless in specific instances with the parent’s consent due to their need to report such information as part of our Services. If any data is unknowingly collected from a child without verification of parental consent, it would be deleted.
We have multiple physical, electronic, and procedural safeguards to keep your personal information safe and secure as it is of paramount importance to us.
There may be instances where we disclose your personal information with selected third parties. Most relevant to our Services is that we disclose your information to HMRC when you e-file your tax return through us as part of the contractual necessity for us to provide our Services to you. In other cases, we may do so to enable third parties (e.g. affiliates, suppliers, sub-contractors) to perform and execute a contract we have with them or you, to allow advertising networks to select and serve relevant advertisements to you with your consent, if we are under a legal duty to disclose or share your personal data, to prevent and detect fraud or illegal activity, or to develop customer relationships and services.
Our Website is hosted by DO on servers in the United Kingdom (“UK”) and therefore your personal data is kept in the UK. We may transfer and store your data at a destination outside the UK.
It may also be processed by staff operating outside the UK who work for us or for one of our suppliers. Such staff may be engaged in the operation of the Website to provide the Services (e.g. providing support services) or the processing of your payment details. By providing us with your personal information, you agree to this transfer, storage, and processing. It may also be the case that your data is transferred to third parties (see above) based outside of the UK and in such cases both ourselves and our third party partners take adequate and appropriate security measures to protect your data.
We use small text files (cookies) to operate our website and to see how you use our website. We put them on your computer, tablet, or mobile device when you visit our website and use them to recognise you and store information or settings in between visits. By accessing this website, you agree that we can set such cookies on your device when you visit our website, although it is entirely your choice as to whether you consent or not (note that blocking cookies may reduce the quality of your experience on our website). For further information on cookies that we use, see our Cookies Policy.
We store your personal information only for the length needed under the law. We only access your data internally on a need to know basis and only if it is absolutely necessary. We always delete data that is no longer required to fulfil our obligations to you or under the law.
Subject to applicable laws, you may have the right to access, correct, and/or erase information we hold about you. Your rights of access, correction, and erasure can be exercised in accordance with the Data Protection Act 2018. This includes requesting the deletion of any personal information that is no longer necessary (subject to any legal obligations we may have to retain this).
Your exercise of these rights is subject to certain exemptions to safeguard the public interest (e.g. the prevention or detection of crime) and our interests (e.g. the maintenance of trade secrets and legal privilege).
If you exercise your rights and it is a non-frivolous request, we will endeavour to respond within a month. Be aware there are a number of limitations to these rights, and so circumstances may arise where we are not able to comply with your request or need to charge a small fee in order to comply with certain requests.
Where you are not happy with how we have addressed your questions or you believe your data protection rights have been violated in any way, you can complain to the UK’s ICO via the following link https://ico.org.uk/global/contact-us.