1. Introduction
This Privacy Policy explains how Riz Remit Ltd ("we", "us", "our") collects, uses, stores, and protects your personal data when you use our services.
We are committed to processing personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
We primarily process your personal data for:
- Anti-Money Laundering (AML)
- Counter-Terrorism Financing (CTF)
- Counter-Proliferation Financing (CPF)
- Providing regulated money transfer services
2. Data Controller
Riz Remit Limited is the data controller responsible for your personal data.
3. Data Protection Officer (DPO)
We have appointed a Data Protection Officer (DPO):
Name: Mahesh Hariharan Pillai
Email: mahesh@rizremit.com
Phone: +44 (0) 7833 808922
For any data protection queries or to exercise your rights, contact us at:
support@rizremit.com
4. Personal Data We Collect
We may collect and process the following categories of personal data:
4.1 Identity & Contact Data
- Full name
- Date of birth
- Residential address
- Email address
- Phone number
- Job title
4.2 Verification Data (KYC/AML)
- Government-issued ID (passport, driving licence)
- Photograph/selfie verification
- Proof of address
- National identifiers (where required by law)
- Financial information (bank statements, payslips, source of funds)
4.3 Transaction Data
- Payment details
- Transaction history
- Purpose of transfer
4.4 Recipient Data
- Recipient name, address, phone number
- Bank or wallet details
4.5 Technical & Usage Data
- IP address
- Browser type and device information
- Operating system
- Website/app usage data
- Cookies and tracking data
4.6 Communications & User Content
- Customer support communications
- Feedback, reviews, surveys
- Social media interactions
4.7 Audio/Visual Data
- Call recordings
- Images or documents submitted
4.8 Derived Data (Inferences)
- Risk profiles
- Fraud indicators
- Behavioural analytics
5. Lawful Basis for Processing
We process personal data under the following lawful bases:
5.1 Legal Obligation
Compliance with AML, CTF, sanctions, and regulatory requirements
5.2 Contractual Necessity
- To provide and manage our services
- Process transactions and maintain accounts
5.3 Legitimate Interests
- Fraud prevention and risk assessment
- Improving services and security
- Internal analytics
5.4 Consent
- Marketing communications
- Optional services and features
You may withdraw consent at any time.
6. How We Use Your Data
We use your personal data to:
- Provide money transfer services
- Verify identity (KYC checks)
- Prevent fraud and financial crime
- Communicate with you
- Improve our services
- Conduct internal research and analytics
- Comply with legal obligations
- Enforce our terms and conditions
7. Marketing
We may send marketing communications where:
- You have consented; or
- We have a legitimate interest (soft opt-in)
You can opt out at any time via email unsubscribe link or by contacting us.
8. Sharing Your Data
We may share your personal data with:
8.1 Service Providers
- Payment processors
- Identity verification providers
- IT and cloud providers
- Customer support providers
8.2 Financial Institutions
Banks and payment networks involved in your transactions
8.3 Corporate Group
Affiliates and subsidiaries for operational purposes
8.4 Regulators & Authorities
- Financial regulators
- Law enforcement agencies
- Courts and legal bodies
8.5 Business Transfers
In case of merger, acquisition, or sale
We do not sell your personal data.
9. International Transfers
Your data may be transferred outside the UK/EEA. Where this occurs, we ensure appropriate safeguards are in place, such as:
- UK-approved Standard Contractual Clauses (SCCs)
- Adequacy decisions
- Binding corporate rules
10. Data Retention
We retain personal data:
- For the duration of your relationship with us; and
- Up to 5 years after (or longer where required by law, e.g. AML regulations)
11. Data Security
We implement appropriate security measures, including:
- Encryption (in transit and at rest)
- Secure servers
- Access controls
- Monitoring and incident response procedures
However, no system is completely secure, and transmission over the internet carries some risk.
12. Your Rights (UK GDPR)
You have the following rights:
- Right of access – obtain a copy of your data
- Right to rectification – correct inaccurate data
- Right to erasure – request deletion (where applicable)
- Right to restrict processing
- Right to data portability
- Right to object (especially to marketing)
- Right to withdraw consent
To exercise your rights, contact:
📧 support@rizremit.com
13. Data Breach Notification
In the event of a personal data breach:
- We will notify the Information Commissioner's Office (ICO) where required
- Affected individuals will be informed without undue delay where there is high risk
14. Children's Data
Our services are not intended for individuals under 18 years of age.
We do not knowingly collect data from minors. Any such data will be deleted immediately upon discovery.
15. Cookies and Tracking
We use cookies and similar technologies to:
- Improve site functionality
- Analyse usage
- Deliver relevant advertising
You can manage cookies through your browser settings.
16. Complaints
If you are not satisfied, you may lodge a complaint with:
Information Commissioner's Office (ICO)
Website: https://www.ico.org.uk
17. Changes to This Policy
We may update this Privacy Policy periodically. Updates will be posted on our website with a revised effective date.
18. Contact Us
For questions about this policy:
support@rizremit.com
Saxon House, 27 Duke Street, Chelmsford, Essex, England, CM1 1HT
