Alpha This is a new service – your feedback will help us to improve it.

Menu Search

Digital Moneybox Limited

The information on this page is from the privacy notice published by Digital Moneybox Limited.

You can use this page to learn about how this organisation uses personal data and find out how to make a request related to the data they hold about you.

Make a request

Organisation information

Description

Investment Provider

Registration country

United Kingdom

Registration number

09597755

Data Protection Officer

Organisations that use special categories of data, are public bodies, or do large scale processing must appoint a Data Protection Officer.

Email address

dpo@moneyboxapp.com

Postal address

Data Protection Officer, Moneybox, Suite 1.07, 1-2 Hatfields, London, SE1 9PG

Data categories collected

Organisations must give details about what categories of data are stored and processed.

  • Bank account details

  • Bank transactions

  • Date of birth

  • Device information

  • Email address

  • Gender

  • Identity documents

  • Income

  • Location

  • Names

  • Nationality

  • Personal preferences

  • Postal address

  • Social security number

  • Telephone number

Unusual processing purposes

Organisations must provide information about what they do with data. This section highlights less common uses of data.

This privacy notice does not appear to mention any unusual processing purposes.

Third parties

Organisations must give details about other parties that personal data is shared with.

List of third parties

  • Quai Administration Services Ltd

  • Yodlee Inc.

  • GoCardless Ltd

  • Onfido Ltd

  • Intercom R&D

  • Linktexting

  • Google

Observations

Not limited to just these providers.

Retention rules

Organisations must give details about how long data is kept.

Summary

As long as necessary.

Observations

Not specified.

How specific is this information?

  • Retention rules are given without mentioning specific categories of data

  • Unspecific times for how long data is kept

Lawful bases

Organisations must justify collection and use of data under six lawful bases and provide information about their decisions

  • Consent

    * To process and deliver your selected products and services, including managing payments, fees and charges and HMRC reporting. (in the case of Transaction Data, as required by regulation)

  • Contract

    * To register you as a customer
    * To process and deliver your
    selected products and services,
    including managing payments,
    fees and charges and HMRC reporting.
    * To manage our relationship with you, including notifying you about changes to terms & conditions and this privacy notice
    * To enable you to participate in a prize draw, competition or complete a survey

  • Legal obligation

    * To manage our relationship with you, including notifying you about changes to terms & conditions and this privacy notice
    * To administer and protect our business, App and website), including, security, troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting

  • Legitimate interests

    * To make suggestions and recommendations to you about products or services that may be of interest to you, via electronic means or otherwise such as email, SMS, pop ups or push notifications, targeted social media and our in-App secure notification centre (to develop our products and services, and grow our business)
    * To de-identify your data (anonymise or aggregate) (to increase data security and protection, to grow our business)
    * To use data analytics to improve our App, website, products, services, marketing, customer relationships and experiences (to define types of customers for our products and services, to keep our website and App updated and relevant, to develop our business and to inform our marketing strategy)
    * To deliver relevant App and website content and advertisements to you and measure or understand the effectiveness of the advertising we serve to you (to study how customers use our products and services, to develop them, to grow our business, and to inform our marketing strategy)
    * To manage our relationship with you, including notifying you about changes to terms & conditions and this privacy notice (to keep our records up dated and to study how customers use our products and services)
    * To process and deliver your selected products and services, including managing payments, fees and charges and HMRC reporting. (to recover debts due to us)
    * To administer and protect our business, App and website), including, security, troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting (for running our business, provision of administration and IT services, network security, to prevent fraud, and in the context of any business reorganisation).

Observations

Some duplicated purposes across lawful bases.

Security standards

Organisations must ensure that data is stored and processed securely.

Observations

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and are subject to a duty of confidentiality.

We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where legally required to do so.

Where we have given you, or where you have chosen, a password or personal identification number (PIN) which enables you to access certain parts of our website or App, you are responsible for keeping this password or PIN confidential. We ask you not to share this password or PIN with anyone.

How specific is this information?

This organisation provides general details about how they secure data

Data processing addendum

Some organisations offer a data processing addendum that gives data adequate protections when it leaves the EEA.

Automated decision making

Organisations must give details about how data is used to make decisions without human involvement.

This privacy notice does not appear to have this information.

Complaint information

Organisations must give details about how to make a complaint with a data protection authority.

This privacy notice does not contain information about to make a complaint to a data protection regulator.

Design recommendations

Organisations are required to provide privacy information in a transparent way. The Article 29 Working Party has provided recommendations on how to do this.

Assessment

This privacy notice:

  • Has language that is easy to understand

  • Is designed in a way that makes it easy to find information

  • Can be easily found on the organisation's website

Last updated 2018-10-19 at 11:10:16 • Download as JSONAPI documentationView on GitHubView on OpenCorporates