Privacy Policy
THE AJOAPP PRIVACY POLICY
- Introduction
TheAjoApp is an online platform assisting users achieve individual and collective savings and financials goals. Our service, referred to as ‘Service’ in this privacy notice, is detailed on our website. We do not knowingly attempt to collect or process the personal data of children.
We care for the protection of your personal data, and we do not take that lightly. This privacy notice provides a description of TheAjoApp’s policies and practices regarding the collection and use of your personal data, while also highlighting the data protection rights guaranteed you under applicable data protection Laws.
- What Personal Data we collect
TheAjoApp collects and processes personal data of users of its service. The personal data we collect include the following:
– Name
– Address
– Date of birth
– Phone number
– Email address
– Bank details (Bank name, account number and sort code)
– Biometric data
- How we use (process) personal data
We may use your personal data for any of the following purposes:
– To provide and maintain our Service, including to monitor the usage of our Service.
– To manage your Account: to manage your registration as a user of the Service we provide. The personal data you provide can give you access to different functionalities of the Service available to you as a registered user.
– To contact you: To contact you by email, telephone calls, SMS, or other equivalent forms of electronic communication, such as a mobile application’s push notifications regarding updates or informative communications related to the functionalities, products or contracted services, including the security updates, when necessary or reasonable for their implementation.
– To provide you with news, special offers and general information about other goods, services, and events which we offer similar to those that you already purchased or enquired about, unless you have opted not to receive such information.
– To manage your requests: To attend and manage your requests to us.
– For other purposes: We may use your information for other purposes, such as data analysis, identifying usage trends, determining the effectiveness of our promotional campaigns and to evaluate and improve our products, service, marketing and your experience.
We do not sell personal information to anyone and only share it with third parties facilitating the delivery of our service. The third-parties we share personal data with include:
Stripe, for processing payments, which Privacy Notice is available here.
Google Azure provides us hosting service. Privacy Notice is available here.
- Use the ajoapp.com Website
As is the case with websites, the Ajoapp’s website collects certain information automatically and stores it in log files. The information may include internet protocol (IP) addresses, the region or general location where your computer or device is accessing the internet, browser type, operating system, and other usage information about the use of the Ajoapp’s website, including a history of the pages you view. We use this information to help us design our site to better suit our users’ needs. We may also use your IP address to help diagnose problems with our server and to administer our website, analyse trends, track visitor movements, and gather broad demographic information that assists us in identifying visitor preferences.
- Lawful Bases for processing personal data
We are required to process your data on at least one of these lawful bases, as specified under the relevant data protection law:
– Legitimate interest: Processing your data is necessary for our legitimate interests or the legitimate interests of a third party, provided your rights and interests do not outweigh those interests.
– Consent: You have given explicit consent for us to process your data for a specific purpose.
– Contract: If the data processing is necessary for a contract with us or because we have asked you to take specific steps before entering into that contract.
– Legal obligation: If the processing of your data is necessary where there is a statutory obligation on us.
- Data subject rights
The Data Protection Act, 2018 and the UK General Data Protection Regulation and other applicable data protection legislations vests you with certain rights as a data subject. They include the right to:
- access personal data we hold about you by requesting a copy of the personal data we hold about you;
- rectify such information where you believe it to be inaccurate;
iii. restrict the processing of your data in certain circumstances;
- object to the processing of your data where we intend to process such data for marketing purposes;
- where feasible, receive all personal data you have provided to us—in a structured, commonly used, and machine-readable format—and transmit the information to another data controller;
- request the erasure of your data (also known as the right to be forgotten);
vii. withdraw your consent to the processing of your data; and
viii. lodge a complaint with the relevant authority where you have reason to believe that we have violated the term(s) of this Policy. (You may complain or seek redress from us within 30 days from when you first detect the alleged violation.)
You may seek to exercise any of the above rights at any time by contacting us at compliance@theajoapp.com.
- Retention of your data
We are not hoarders and we do not hold your personal data in perpetuity. The personal data we process will be stored for the duration of your relationship with us. After processing has been fulfilled, we will also retain personal data per the relevant provisions of applicable laws to resolve disputes, prevent fraud and abuse, and/or enforce our legal agreements and policies. In addition, we delete your data for targeted marketing purposes once you unsubscribe from our marketing communications.
Please note that your data may be retained for a longer period, notwithstanding your request to remove it, where there is a legal requirement to do so.
- How your data is stored and secured
We store and process your data in our database on the cloud. We deploy reasonable and appropriate technical and organisational measures to keep your data safe. However, we cannot completely guarantee the security of any information you transmit, as the internet is not an entirely secure place. Nevertheless, we are committed to doing the utmost to protect you.
We protect your data using physical, technical, and administrative security measures to reduce the risks of loss, misuse, unauthorised access, disclosure and alteration. Some safeguards we use are data encryption, secure data transmission protocols, data backup, security patching and updates, security audits and monitoring, data classification and access controls.
Where there is an actual or suspected data breach capable of causing high risk to your rights and freedoms, we will notify you without undue delay and use our best effort to remedy the breach promptly.
- International transfer of data
In our operations, in certain instances we transfer personal data outside the United Kingdom. In doing this, we ensure any cross-border data transfers adhere to all necessary data protection regulations. This means that before transferring personal data, we either confirm that the recipient country has robust data protection laws or, if not, employ specific contractual terms and other appropriate safeguards to protect the data. In cases where the destination country might not meet stringent data protection standards applicable in our country of operation, we will leverage the International Data Transfer Agreement and any other relevant data transfer mechanism, seek authorisation from the regulator, obtain your consent before proceeding, and inform you of any risks. Should you wish to learn more about how we ensure data protection during these transfers, details will be provided upon request.
- Marketing and communications
We only send marketing communications to you with your consent. You can unsubscribe from our marketing messages or object to further processing by contacting us via email at compliance@theajoapp.com and requesting to discontinue receiving marketing messages.
- Complaints
If you have any inquiries or complaints, contact our Data Protection Officer (DPO) at compliance@theajoapp.com. Our DPO will examine your concerns and update you on the resolution process. If after contacting us with your complaint, you remain dissatisfied, you can lodge a complaint with the Information Commissioner’s Office through their website.
- Changes to this Notice
We recognize that data protection is an ongoing responsibility, and so we will from time to time update our privacy notice. We will notify our users when we make a change, and visitors will know this by checking the last date of the update on our website whenever they visit the Privacy Notice page.
- Contact Us
If you have any questions relating to this Notice or your rights under this Notice or are not satisfied with how we manage your personal data, kindly reach out to our Data Protection Officer at compliance@theajoapp.com.