Unlock new possibilities in finance with a reliable partner by your side.
We work with 100’s of global regulated financial service providers, giving them access to major payment service rails in GBP, EUR and more.
Personal Data Processing Notice
DEFINITIONS
Clear Junction means Clear Junction Limited.
Client means any private person who uses, has used or has expressed a wish to use or is in other way related to any of the services provided by Clear Junction.
Person (Data Subject) is a private person whose Personal Data is being Processed.
Personal Data means any information directly or indirectly related to a Data Subject.
Processing means any operation carried out with Personal Data (incl. collection, recording, storing, alteration, grant of access to, making enquiries, transfer, etc.).
1. PURPOSE
1.1 The Personal Data Processing Policy aims to ensure the following objectives:
- to maintain the high quality of Personal Data Processing and to ensure its protection in accordance with the requirements of the law;
- to maintain and increase protection of personal data of Clients of Clear Junction;
- to ensure a transparent and understandable method of Personal Data Processing;
- to prevent the risk of Personal Data breaches and to regulate the Clear Junction actions in cases where such breaches are detected.
2. GENERAL PROVISIONS
2.1 The Personal Data Processing Policy applies if a Client uses, has used or has expressed an intention to use or is in any other way related to any of the services provided by Clear Junction, including to the relationship with the Client established before these principles entered into force.
2.2 The Personal Data Processing Policy describes how Clear Junction Processes Personal Data on a general level. Specific details are also described in agreements and related documents.
2.3 Clear Junction may use authorised processors for Processing Personal Data. In such cases, Clear Junction performs actions to ensure that such data processors Process Personal Data under the instructions of Clear Junction and in compliance with applicable law, and requires adequate security measures.
2.4 Clear Junction does not request from a Person and does not process more information than is necessary to achieve the certain purpose, thus observing the so-called principle of data minimisation.
2.5 Personal Data will be processed no longer than necessary. The retention period may be based on agreements with the Client, the legitimate interest of Clear Junction or applicable law (such as laws related to bookkeeping, anti-money laundering, statute of limitations, etc.).
2.6 Clear Junction is entitled to unilaterally amend the principles at any time, in compliance with the applicable law, by notifying the Client of any amendments at Clear Junction offices, via the website of Clear Junction, by post, via e-mail or in another manner not later than one month prior to the amendments entering into force.
2.7 If a Personal Data breach occurs and it poses or may pose a high risk to the rights and freedoms of a Person, Clear Junction informs the Person and the Information Commissioner’s Office without undue delay, and not later than 72 hours after the breach was detected.
3. PERSONAL DATA
3.1 Personal Data may be obtained from the Client, from the Client’s use of the services and from external sources such as various registers or other third parties.
3.2 Examples of Personal Data processed by Clear Junction include, but are not limited to:
- General information (name, surname, date of birth, personal identity number, passport or identity card data, citizenship);
- Contact information (phone number, e-mail, address, communication language);
- Financial data (income, financial liabilities, source of income);
- Information necessary for the performance of financial services (current account number of a Person at a financial institution, payment card information, payment history);
- Reputational and due diligence information (payment behaviour, information necessary to perform due diligence measures regarding money laundering and terrorist financing prevention and to ensure compliance with international sanctions, including whether the Client is a politically exposed person);
- Professional information (CV, recommendations, diplomas);
- IT information (cookies, IP address);
- Information about family members and associated persons;
- Communication information (visual and/or audio recordings, e-mail, messages and other communication mechanisms such as social media, data related to visits and messages on websites or other web channels of Clear Junction);
- Information arising from lawful obligations (data resulting from enquiries made by investigative bodies, notaries, tax administrators, courts and bailiffs; remarks, historical remarks and debt balances);
- Information about usage of services (performance of agreements or failure thereof, executed transactions, concluded and expired agreements, submitted applications, requests and complaints, interest and service fees).
4. LEGAL BASIS FOR PROCESSING OF PERSONAL DATA
4.1 Clear Junction may initiate Processing of Personal Data only if the Processing has a certain purpose and if the Processing has an appropriate legal basis.
4.2 The legal basis for Processing of Personal Data includes, but is not limited to, the following:
- Managing Client relations in general, providing and administrating access to products and services;
- Performing risk assessments;
- Executing transactions via the payment system;
- Complying with legal obligations and verifying identity;
- Preventing misuse of services and ensuring adequate provision of services;
- Establishing, exercising and defending legal claims;
- Protecting the interests of the Client and/or Clear Junction;
- Providing additional services, performing customer surveys, market analyses and statistics;
- Complying with public interest or exercise of official authority;
- Complying with legal obligations.
5. RECIPIENTS OF PERSONAL DATA
5.1 Personal Data may be shared with other recipients, such as:
- Authorities (such as law enforcement authorities, bailiffs, notary offices, tax authorities, supervisory authorities and financial intelligence units);
- Auditors, legal and financial consultants, or any other processor authorised by Clear Junction;
- Third parties maintaining registers (such as governmental registers, population registers, commercial registers or other registers holding or intermediating Personal Data);
- Debt collectors upon assignment of claims, courts, out-of-court dispute resolution bodies and bankruptcy or insolvency administrators;
- Rating agencies;
- Other persons who guarantee due discharge of the Client’s obligations to Clear Junction (such as sureties, guarantors and owners of collaterals);
- Participants and/or parties related to domestic, European and international payment systems, such as SEPA or SWIFT;
- Other credit institutions, financial institutions, payment card companies and financial services intermediaries;
- Other persons related to the provision of services by Clear Junction, such as providers of archiving, postal services and providers of services rendered to the Client.
5.2 As a general rule the Personal Data is Processed within the European Union/European Economic Area (EU/EEA), but in some cases it is transferred to and Processed in countries outside the EU/EEA.
5.3 Transfer and Processing of Personal Data outside the EU/EEA can take place provided there is a legal ground (i.e. legal requirement, conclusion or performance of an agreement, or Client’s consent) and appropriate safeguards are in place, such as:
- There is an agreement in place including the EU Standard Contractual Clauses or other approved clauses, codes of conduct, certifications etc., approved in accordance with the General Data Protection Regulation;
- The country outside the EU/EEA where the recipient is located has an adequate level of data protection as decided by the EU Commission;
- The recipient is individually certified.
5.4 Upon request, the Client can receive further details on Personal Data transfers to countries outside the EU/EEA.
5.5 Before transferring Personal Data to a third person, Clear Junction shall conclude an agreement detailing the manner in which the partner will Process and protect the Personal Data. During the cooperation, only information required for the certain purpose will be transferred to the partner.
5.6 Clear Junction will only enter into a contract with a third party in cases where the transfer of the relevant data is regulated by the applicable regulatory enactments of the United Kingdom and the EU.
6. RIGHTS OF A PERSON
6.1 A Person has the following rights regarding the Processing of his or her Personal Data:
- To receive information on the type, purpose and legal basis of their data Processing;
- To access their data and obtain approval for their data Processing;
- To correct their data if it is incorrect or inaccurate;
- To erase their data, or “right to be forgotten”, for example, if the data is no longer necessary in relation to the purposes for which it was collected, or if the Person has withdrawn his or her consent on which the Processing is based;
- To restrict data Processing;
- Right to data portability or transfer in order to store or to enable the reuse of data, for example, by transferring to another service provider.
6.2 The Person has the right to ask any questions related to Processing of Personal Data directly to the Data Protection Officer of Clear Junction by e-mail at dpo@clearjunction.com.
6.3 Clear Junction shall accept Persons’ requests without undue delay and provide the answer within a month. Clear Junction may extend the period of answering claims for another two months on a reasonable basis.
6.4 Clear Junction responds to Persons’ applications, as well as any other activities related to the implementation of Person requests, free of charge. However, when providing a response to a request or executing a request, Clear Junction may charge a reasonable fee for additional costs incurred.