UK GDPR-aligned, ICO-registered.

We process personal data on the lawful bases of contract performance (to provide the remittance service requested), legal obligation (compliance with anti-money laundering, sanctions, and tax law), and legitimate interest (fraud prevention, service improvement).

Identification data, contact details, transactional data, financial data, and device-level metadata necessary for fraud prevention. We do not knowingly collect special-category data unless it is volunteered by a customer in support of an enquiry.

Records are retained for the periods required by the Money Laundering Regulations 2017 and the Payment Services Regulations 2017 — typically five years from the end of the customer relationship — and then securely deleted or anonymised.

You have the right to access, rectify, port, restrict the processing of, and (subject to our legal obligations) erase your personal data. You may also lodge a complaint with the Information Commissioner's Office. Requests should be directed to our Data Protection contact via the contact page.