Information We Collect

When you use naverilostiq's financial platform, we collect various types of information to provide you with personalised services and maintain the security of your account. The information we gather falls into several categories, each serving specific purposes for your financial management experience.

How We Use Your Information

Your information serves multiple purposes within our platform, all designed to enhance your financial management experience while maintaining the highest standards of privacy and security. We process your data lawfully and transparently.

• Providing core financial management services including budgeting tools, expense tracking, and financial insights
• Verifying your identity and preventing fraudulent activities on your account
• Communicating with you about account updates, service changes, and educational content
• Improving our platform through analysis of usage patterns and user feedback
• Complying with UK financial regulations and legal requirements
• Providing customer support and technical assistance when needed

Data Storage and Security

naverilostiq employs robust security measures to protect your personal and financial information. Our data storage systems use industry-standard encryption both in transit and at rest. We regularly update our security protocols to address emerging threats and maintain compliance with UK data protection standards.

All sensitive financial data is encrypted using AES-256 encryption standards. Our servers are hosted in secure UK data centres that meet strict physical security requirements. We conduct regular security audits and penetration testing to identify and address potential vulnerabilities.

Your Rights Under UK Data Protection Law

As a UK resident, you have specific rights regarding your personal data under the Data Protection Act 2018 and UK GDPR. These rights give you control over how your information is processed and ensure transparency in our data handling practices.

• Right of Access: Request a copy of all personal data we hold about you, including details about how it's processed
• Right to Rectification: Correct any inaccurate or incomplete personal information in your account
• Right to Erasure: Request deletion of your personal data when it's no longer necessary for our services
• Right to Portability: Receive your personal data in a structured, machine-readable format for transfer to another service
• Right to Object: Opt out of certain types of data processing, particularly for marketing purposes
• Right to Restrict Processing: Limit how we use your data in specific circumstances

To exercise any of these rights, contact our Data Protection Officer using the details provided below. We'll respond to your request within one month, though complex requests may take up to three months with prior notification.

Cookies and Tracking Technologies

naverilostiq uses cookies and similar technologies to enhance your browsing experience and provide personalised services. These small data files help us remember your preferences, maintain your login session, and analyse how you use our platform.

Third-Party Integrations

To provide comprehensive financial services, naverilostiq integrates with carefully selected third-party providers. These integrations enable features like bank account connections, payment processing, and enhanced security measures. We maintain strict data sharing agreements with all partners.

Bank connectivity services help you link accounts from major UK financial institutions, allowing automatic transaction importing and balance updates. These connections use read-only access and are secured through Open Banking protocols regulated by the Financial Conduct Authority.

Payment processors handle subscription payments and premium feature purchases. These providers receive only the minimum information necessary to complete transactions and are bound by PCI DSS compliance requirements.

International Data Transfers

While naverilostiq primarily processes data within the UK, some technical services may involve transfers to other countries. Any international transfers comply with UK data protection requirements and include appropriate safeguards to protect your information.

When transfers occur, we use Standard Contractual Clauses approved by UK authorities or transfer data only to countries recognised as providing adequate protection levels. You'll be informed of any significant changes to our data transfer practices.

Marketing Communications

naverilostiq may send you educational content about financial management, platform updates, and information about new features that could benefit your financial goals. All marketing communications are opt-in, and you maintain complete control over what you receive.

We personalise content based on your platform usage and stated interests, but never share your information with external marketing companies. You can adjust communication preferences or unsubscribe entirely through your account settings or any email communication.

Educational content includes budgeting tips, market insights relevant to UK residents, and guidance on using platform features effectively. These communications aim to support your financial literacy rather than promote external products or services.

Data Breach Procedures

In the unlikely event of a data breach affecting your personal information, naverilostiq has comprehensive response procedures to minimise impact and ensure transparent communication. We'll notify affected users within 72 hours of discovering any breach that poses risks to your rights and freedoms.

Our incident response team includes cybersecurity specialists, legal advisors, and communications experts who coordinate our response to security incidents. We maintain detailed logs of all security events and conduct thorough post-incident reviews to prevent future occurrences.

Serious breaches are reported to the Information Commissioner's Office as required by UK law. We'll provide clear information about what happened, what information was involved, and what steps we're taking to address the situation.

Children's Privacy

naverilostiq's services are designed for adults aged 18 and over. We don't knowingly collect personal information from children under 18 without appropriate parental consent. If you're a parent or guardian who believes your child has provided us with personal information, please contact us immediately.

When we become aware that personal information from someone under 18 has been collected without proper consent, we take immediate steps to delete that information from our systems. Educational content about financial literacy may be suitable for younger audiences, but account creation requires age verification.

Changes to This Policy

This privacy policy may be updated periodically to reflect changes in our services, legal requirements, or privacy practices. We'll notify you of significant changes through email or prominent notices on our platform at least 30 days before they take effect.

Minor clarifications or updates that don't affect your rights may be implemented immediately with appropriate notice on our website. We encourage you to review this policy regularly to stay informed about how we protect your privacy.

If you disagree with policy changes, you can close your account before the changes take effect. Continued use of our services after policy updates indicates your acceptance of the revised terms.