Summary

This privacy policy explains how Britain Payment Services ("we", "us", or "our") collects, uses, and protects your personal information when you use our payment processing services and visit our website. We are committed to protecting your privacy and complying with all applicable UK data protection laws.

Who We Are

Britain Payment Services is a payment service provider authorised and regulated by the Financial Conduct Authority (FCA). We provide secure payment processing solutions for businesses across the United Kingdom.

Data Controller Details:

  • Company: Britain Payment Services Ltd
  • Address: 117 Montpelier Rd, Nottingham NG7 2JY, United Kingdom
  • Phone: +447966805555
  • Email: [email protected]
  • Data Protection Officer: [email protected]

Information We Collect

We collect different types of information depending on how you interact with our services:

Personal Information You Provide

  • Contact Information: Name, email address, phone number, postal address
  • Business Information: Company name, business address, industry type, VAT number
  • Financial Information: Bank account details, transaction history, payment preferences
  • Identity Verification: Government-issued ID, proof of address, beneficial ownership information
  • Communication Data: Messages, support tickets, feedback, and survey responses

Information Collected Automatically

  • Technical Data: IP address, browser type, device information, operating system
  • Usage Data: Pages visited, time spent on site, click-through rates, access times
  • Transaction Data: Payment amounts, currencies, merchant details, processing times
  • Security Data: Login attempts, security events, fraud indicators

Information from Third Parties

  • Credit Reference Agencies: Credit checks and risk assessments
  • Identity Verification Services: Document verification and anti-fraud checks
  • Banks and Financial Institutions: Account verification and transaction data
  • Regulatory Bodies: Sanctions lists and regulatory notifications

How We Use Your Information

We use your personal information for the following purposes, based on legitimate legal grounds:

Service Provision

Legal Basis: Contract performance and legitimate interests

  • Processing payment transactions
  • Account setup and management
  • Customer support and communication
  • Service improvement and development

Legal and Regulatory Compliance

Legal Basis: Legal obligation and legitimate interests

  • Identity verification and Know Your Customer (KYC) checks
  • Anti-money laundering (AML) monitoring
  • Fraud prevention and detection
  • Regulatory reporting and compliance
  • Sanctions screening

Security and Risk Management

Legal Basis: Legitimate interests

  • Transaction monitoring and risk assessment
  • Fraud prevention and security measures
  • System security and access control
  • Incident investigation and response

Marketing and Communications

Legal Basis: Consent and legitimate interests

  • Newsletter and promotional communications (with consent)
  • Product updates and service announcements
  • Market research and surveys
  • Website personalisation and analytics

Information Sharing and Disclosure

We may share your personal information with the following categories of recipients:

Service Providers and Business Partners

  • Payment Networks: Visa, Mastercard, and other card schemes
  • Banking Partners: Acquiring banks and financial institutions
  • Technology Providers: Cloud hosting, software, and security services
  • Professional Services: Legal, accounting, and consulting firms

Regulatory and Legal Requirements

  • Regulatory Bodies: FCA, HM Revenue & Customs, Financial Intelligence Unit
  • Law Enforcement: Police, National Crime Agency, and other authorities
  • Courts and Tribunals: As required by legal proceedings
  • Government Agencies: For sanctions and security purposes

Business Transfers

In the event of a merger, acquisition, or sale of assets, your personal information may be transferred to the new entity, subject to the same privacy protections.

International Transfers

Some of our service providers may be located outside the United Kingdom. When we transfer your personal information internationally, we ensure appropriate safeguards are in place:

  • Adequacy Decisions: Transfers to countries with adequate data protection laws
  • Standard Contractual Clauses: EU-approved data transfer agreements
  • Binding Corporate Rules: Internal data protection standards for multinational companies
  • Certification Schemes: Recognised international data protection certifications

Data Retention

We retain your personal information for as long as necessary to fulfil the purposes outlined in this policy, comply with legal obligations, and protect our legitimate interests:

Customer Account Data

Duration of relationship plus 6 years after account closure

Transaction Records

7 years from transaction date (regulatory requirement)

Identity Verification Data

6 years after relationship ends (AML requirement)

Marketing Communications

Until consent is withdrawn or suppression request is made

Website Analytics

26 months from collection date

CCTV and Security Logs

30 days unless incident investigation required

Your Rights

Under UK data protection law, you have the following rights regarding your personal information:

Right to Information

Transparent information about how we process your data

Right of Access

Request copies of your personal data we hold

Right to Rectification

Correct inaccurate or incomplete personal data

Right to Erasure

Request deletion of your personal data in certain circumstances

Right to Restrict Processing

Limit how we use your personal data

Right to Data Portability

Receive your data in a structured, machine-readable format

Right to Object

Object to processing based on legitimate interests or direct marketing

Rights Related to Automated Decision-Making

Protection against purely automated decisions with legal effects

Limitations on Rights

Your rights may be limited in certain circumstances, such as:

  • Legal or regulatory obligations requiring data retention
  • Legitimate interests that override your rights
  • Fraud prevention and detection activities
  • Legal proceedings and dispute resolution

Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your website experience and analyse usage patterns. For detailed information about our cookie practices, please see our Cookie Policy.

Types of Cookies We Use

  • Essential Cookies: Necessary for website functionality and security
  • Performance Cookies: Help us analyse website usage and improve performance
  • Functional Cookies: Remember your preferences and personalise your experience
  • Marketing Cookies: Track visits across websites for advertising purposes (with consent)

Data Security

We implement robust technical and organisational measures to protect your personal information:

Technical Safeguards

  • End-to-end encryption for data transmission
  • AES-256 encryption for data at rest
  • Multi-factor authentication systems
  • Regular security assessments and penetration testing
  • Intrusion detection and prevention systems

Organisational Controls

  • Staff security training and awareness programmes
  • Role-based access controls and least privilege principles
  • Regular security policy reviews and updates
  • Incident response and business continuity plans
  • Third-party security assessments

Security Certifications

  • PCI DSS Level 1: Payment card industry compliance
  • ISO 27001: Information security management
  • SOC 2 Type II: Security and availability controls
  • Cyber Essentials Plus: UK government cybersecurity scheme

Children's Privacy

Our services are not intended for children under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child without parental consent, we will take steps to delete that information promptly.

Changes to This Policy

We may update this privacy policy periodically to reflect changes in our practices, technology, legal requirements, or business operations. We will notify you of material changes through:

  • Prominent notice on our website
  • Email notification to registered users
  • In-app notifications for service users
  • Direct communication for significant changes

We encourage you to review this policy regularly to stay informed about how we protect your privacy.

Contact Us

If you have questions about this privacy policy or our data practices, or if you wish to exercise your rights, please contact us:

Email

[email protected]

Phone

+447966805555

Post

Data Protection Officer
Britain Payment Services Ltd
117 Montpelier Rd
Nottingham NG7 2JY
United Kingdom

Right to Complain

If you are not satisfied with our response to your privacy concerns, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

  • Website: ico.org.uk
  • Phone: 0303 123 1113
  • Post: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF