araquionexis Logo
araquionexis
Digital Banking Security

Privacy Policy

Your privacy matters to us. Here's how we collect, use, and protect your personal information when you use araquionexis's digital banking security services.

Information We Collect

When you use araquionexis's digital banking security platform, we collect several types of information to provide you with secure, personalised services. This includes information you provide directly, data we collect automatically, and information from third parties when necessary for security verification.

Personal Information You Provide

  • Contact details including name, email address, phone number, and postal address
  • Account information such as username, encrypted passwords, and security preferences
  • Financial information including bank account details and transaction history
  • Identity verification documents such as passport or driver's licence details
  • Communication records including support tickets, emails, and chat transcripts
  • Security settings and preferences for two-factor authentication and notifications

Automatically Collected Data

Our systems automatically collect technical information to maintain security and improve our services. This includes your IP address, browser type, device information, operating system details, and usage patterns. We also track security events such as login attempts, failed authentication, and suspicious activity patterns to protect your account.

Location data may be collected when you access our services to verify legitimate access and detect potential fraud. This helps us identify unusual account activity and protect your financial information from unauthorised access.

How We Use Your Information

We use your personal information solely for legitimate business purposes related to providing secure digital banking services. Our primary focus is maintaining the security of your financial data whilst delivering personalised banking experiences.

Security & Fraud Prevention

We analyse usage patterns, monitor transactions, and verify identity to prevent unauthorised access and protect against financial fraud.

Service Delivery

Personal information enables us to provide account management, process transactions, and deliver banking services tailored to your needs.

Communication

We use contact details to send security alerts, account notifications, service updates, and respond to your support enquiries.

Legal Compliance

We process information to comply with financial regulations, anti-money laundering requirements, and other legal obligations.

Data Sharing & Third Parties

We maintain strict controls over who can access your personal information. araquionexis does not sell your data to marketers or advertisers. We only share information with trusted partners and service providers who help us deliver secure banking services.

Authorised Third Parties

We work with carefully selected partners including payment processors, security verification services, cloud hosting providers, and technical support vendors. These partners operate under strict confidentiality agreements and can only use your information for specified purposes related to our services.

Important: We conduct regular security audits of all third-party partners to ensure they maintain the same high standards of data protection that we require internally.

Legal Disclosure Requirements

  • Court orders, legal proceedings, or regulatory investigations
  • Suspected fraud or money laundering activities requiring law enforcement involvement
  • Financial conduct authority requests or banking regulatory compliance
  • Protection of our legal rights or prevention of illegal activities
  • Emergency situations involving immediate threats to personal safety

Your Privacy Rights

Under UK data protection legislation, you have comprehensive rights regarding your personal information. We've designed our systems to make exercising these rights straightforward and efficient.

Access Your Data

Request a complete copy of all personal information we hold about you, including how it's being used and who it's shared with.

Correct Inaccuracies

Update or correct any personal information that is inaccurate, incomplete, or outdated through your account settings or by contacting us.

Delete Information

Request deletion of your personal data, subject to legal and regulatory requirements for financial record-keeping.

Restrict Processing

Limit how we use your information whilst maintaining essential security and legal compliance functions.

Data Portability

Receive your personal information in a structured, commonly used format to transfer to another service provider.

Object to Processing

Object to specific uses of your information, particularly for marketing purposes or automated decision-making.

Exercising Your Rights

To exercise any of these rights, contact our privacy team using the details provided below. We'll verify your identity and respond within 30 days. For complex requests, we may extend this period by up to 60 additional days and will explain any delays.

Please note that some rights may be limited by legal requirements for financial institutions. For example, we must retain certain transaction records for regulatory compliance even if you request deletion.

Data Security Measures

Protecting your financial information is our highest priority. We employ multiple layers of security including advanced encryption, secure data centres, regular security audits, and strict access controls.

Technical Safeguards

All sensitive data is encrypted using industry-standard AES-256 encryption both in transit and at rest. Our systems use secure communication protocols, multi-factor authentication, and continuous monitoring to detect and prevent unauthorised access attempts.

We maintain secure data centres with physical security measures, environmental controls, and backup power systems. Regular penetration testing and vulnerability assessments help us identify and address potential security risks before they affect your data.

Operational Security

  • Employee background checks and mandatory security training programmes
  • Principle of least privilege access controls limiting data access to authorised personnel
  • Regular security awareness training and phishing simulation exercises
  • Incident response procedures for rapid containment of any security breaches
  • Third-party security certifications and compliance with financial industry standards

Data Retention & Deletion

We retain your personal information only as long as necessary for legitimate business purposes or legal requirements. Different types of information have varying retention periods based on regulatory obligations and business needs.

Retention Periods

Financial transaction records are typically retained for seven years to comply with UK financial regulations. Account information and identity verification documents are kept for the duration of your relationship with us plus five years. Marketing preferences and communication logs are retained for three years unless you request earlier deletion.

Technical logs and security monitoring data are usually retained for 12 months to maintain system security and detect fraud patterns. Some anonymised data may be retained longer for statistical analysis and service improvement purposes.

When retention periods expire, we securely delete or anonymise personal information using industry-standard data destruction techniques that prevent recovery or reconstruction.

International Data Transfers

While we primarily store and process your data within the United Kingdom, some of our trusted service providers may be located in other countries. When international transfers are necessary, we ensure appropriate safeguards are in place to protect your information.

Transfer Safeguards

For transfers to countries outside the UK, we use standard contractual clauses approved by the UK Information Commissioner's Office. These contracts require recipients to maintain equivalent levels of data protection and provide you with enforceable rights regarding your personal information.

We regularly review the security and privacy practices of international partners to ensure ongoing compliance with UK data protection standards. Any changes to transfer arrangements will be communicated through updates to this privacy policy.

Changes to This Policy

We may update this privacy policy periodically to reflect changes in our practices, technology, legal requirements, or business operations. Material changes will be communicated through email notifications and prominent notices within our platform.

We encourage you to review this policy regularly to stay informed about how we protect your information. The effective date at the top of this policy indicates when the latest version was published.

Contact Our Privacy Team

Address: Felixstowe Court, Stoke Gifford, Bristol BS16 1YN, United Kingdom

Phone: +44 7741 278763

Email: info@araquionexis.com

Privacy Enquiries: privacy@araquionexis.com

Last updated: January 2025 | Effective from: January 1, 2025