Privacy Policy

Depending on how you use the Service, we may collect the following categories of personal data:

• Identity data: full name, date of birth, nationality, and government-issued identification (where required for verification).
• Contact data: email address, telephone number, and postal address.
• Financial data: bank account details, payment method information, contribution amounts, transaction history, and fees.
• Account data: account settings, Contribution Rules, preferences, and support interactions.
• Technical and usage data: IP address, device identifiers, browser type, operating system, app version, logs, and usage telemetry.
• Communications: messages you send to us and our responses, including support tickets and emails.

We collect personal data in several ways, including when you:

• Create an account or use the Service.
• Set up or manage a Contribution Rule.
• Connect a payment method or complete identity verification.
• Communicate with us or request support.
• Use our website or app (via cookies and similar technologies).

We may also receive data from third parties, such as identity verification providers, payment processors, analytics providers, and compliance partners.

We use your personal data to:

• Provide, operate, and maintain the Service.
• Set up and run your automated Bitcoin savings.
• Verify your identity and meet regulatory obligations (KYC/AML).
• Process payments and manage failed, reversed, or disputed transactions.
• Prevent fraud, misuse, and unauthorised access.
• Communicate with you about your account and service updates.
• Improve, secure, and develop our products and features.
• Comply with legal, regulatory, and reporting requirements.

We process your personal data only where permitted by law. Our legal bases include:

• Contract: processing is necessary to provide the Service you request.
• Legal obligation: processing is required to comply with laws and regulations.
• Legitimate interests: such as preventing fraud, securing the Service, and improving our offerings, where these interests are not overridden by your rights.
• Consent: where required, for example for certain marketing communications.

We do not sell your personal data. We may share it with trusted third parties only where necessary, including:

• Payment processors and banking partners.
• Identity verification and compliance providers.
• Crypto execution or custody partners.
• Cloud hosting, analytics, and security providers.
• Regulators, courts, or authorities where legally required.

All partners are required to protect your data and use it only for the agreed purposes.

We retain personal data only for as long as necessary for the purposes described in this policy, including to meet legal, regulatory, tax, and accounting requirements.

When data is no longer required, we securely delete or anonymise it.

You have rights under data protection law, including the right to:

• Access the personal data we hold about you.
• Request correction of inaccurate or incomplete data.
• Request deletion of your data, where applicable.
• Restrict or object to certain processing.
• Withdraw consent at any time (where processing is based on consent).
• Request data portability.

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO) or your local data protection authority.