Alpha This is a new service – your feedback will help us to improve it.

Menu Search

Atom Bank

The information on this page is from the privacy notice published by Atom Bank.

You can use this page to learn about how this organisation uses personal data and find out how to make a request related to the data they hold about you.

Make a request

Organisation information

Registration country

United Kingdom

Registration number


Data Protection Officer

Organisations that use special categories of data, are public bodies, or do large scale processing must appoint a Data Protection Officer.

Email address

Postal address

FAO The Data Protection Officer, Atom Bank, The Rivergreen Centre, Aykley Heads, Durham, DH1 5TS

Data categories collected

Organisations must give details about what categories of data are stored and processed.


Very detailed and organised under categories

Unusual processing purposes

Organisations must provide information about what they do with data. This section highlights less common uses of data.

This privacy notice does not appear to mention any unusual processing purposes.

Third parties

Organisations must give details about other parties that personal data is shared with.

List of third parties

  • Fraud prevention

  • Anti-money laundering

  • Credit reference agencies

  • Law enforcement

  • Regulators

  • Government departments like HMRC

  • Sales or servicing platforms

How specific is this information?

Third parties are listed as groups

Retention rules

Organisations must give details about how long data is kept.


Atom will not retain your personal information for longer than is necessary for the practices described in this policy.

Regulatory requirements, for seven years, but longer in certain circumstances.

Marketing data is retained until notified by a user.

How specific is this information?

  • Retention rules are given for specific categories of data

  • Specific times are given for how long data is kept

Lawful bases

Organisations must justify collection and use of data under six lawful bases and provide information about their decisions

This privacy notice does not appear to have this information.

Security standards

Organisations must ensure that data is stored and processed securely.


Uses data encryption, digital signatures, firewalls, intrusion detection, physical security, background checks for staff, strong security procedures across service operations

How specific is this information?

This organisation provides specific details about how they secure data

Data processing addendum

Some organisations offer a data processing addendum that gives data adequate protections when it leaves the EEA.

This privacy notice does not appear to have this information.

Automated decision making

Organisations must give details about how data is used to make decisions without human involvement.

This privacy notice does not appear to have this information.

Complaint information

Organisations must give details about how to make a complaint with a data protection authority.


This privacy notice contains information about to make a complaint to a data protection regulator


Mentions and has a link to the Information Commissioner's Office

How specific is this information?

This privacy notice contains specific contact details for a data protection regulator

Design recommendations

Organisations are required to provide privacy information in a transparent way. The Article 29 Working Party has provided recommendations on how to do this.


This privacy notice:

  • Has language that is easy to understand

  • Is designed in a way that makes it easy to find information

  • Can be easily found on the organisation's website

Last updated 2018-06-29 at 08:06:10 • Download as JSONAPI documentationView on GitHubView on OpenCorporates