Paytru | Privacy Policy

1. Introduction

This Privacy Policy explains how **Paytru** ("we", "us", or "the Platform") collects, uses, and protects your Personal Data. **Paytru** is a **UK-based** digital financial platform allowing users to send money, pay bills, receive rewards on payments, make withdrawals, and receive payments from others. By using our services, you agree to the terms outlined in this policy. We are committed to protecting the privacy and security of your personal information in compliance with **GDPR (General Data Protection Regulation)** and other applicable UK laws.

2. Data We Collect

We collect several types of information for various purposes to provide and improve our services to you:

Personal Identification Data

**Name**, Address, and **Date of Birth**
**Email Address** and Phone Number
National ID / Passport Number (for KYC and verification)

Financial & Transactional Data

**Account Balances** and Payment Details
Detailed history of **Money Sending**, **Bill Payments**, **Payment Receipts**, and **Withdrawals**
Information related to **Rewards** earned on payments
Encrypted Bank Card Information or linked payment method details

Usage and Device Data

**IP Address** and Device Information (Model, OS)
Application Activity (time spent, features used, e.g., Bill Pay function)
Geolocation Data (if permission is granted, primarily for security and fraud prevention)

3. How We Use Your Data

Your Personal Data is used for the following core purposes, enabling us to deliver secure and efficient financial services:

Service Provision: To operate your account, process your **Money Sending, Bill Payments, Withdrawals**, and facilitate **Payment Receipts**. (Essential for contract)
Rewards Program: To calculate and credit **rewards** received on payments and manage your loyalty status.
Security & Fraud Prevention: To authenticate your identity, monitor for unauthorized access, and protect against financial crime in compliance with **AML** regulations.
Legal Compliance: To comply with UK legal obligations, regulatory requirements, and tax reporting requirements.

4. Data Security

We implement robust security measures to safeguard your personal data against unauthorized access, alteration, disclosure, or destruction. We treat your financial security as our highest priority.

Encryption Standard

Financial and login data is protected using industry-standard **SSL/TLS encryption** during transmission and **AES-256 encryption** at rest.

Strict Access Control

Strict control protocols limit data access only to authorized personnel who require it to perform their official duties (Need-to-Know basis).

5. Disclosure and Sharing

We do not sell or rent your personal data for marketing purposes. We may share your data in the following essential circumstances:

Transaction Processing: With necessary third parties (e.g., payment networks) to complete your requested transactions, including **Money Transfers** and **Bill Payments**.
Service Providers: With trusted external service providers who assist us in operating our business, and are bound by strict confidentiality agreements.
Legal Requirements: To comply with a subpoena, court order, or when strictly required by UK regulatory bodies (e.g., FCA, HMRC).