Privacy Policy

Last updated: August 2026

1. Introduction

Finstruct is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our fintech advisory services or visit our website.

We process personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR), UK Data Protection Act, and other relevant privacy legislation in our operating jurisdictions.

2. Data Controller Information

Finstruct acts as the data controller for personal data we collect and process. We operate across multiple jurisdictions including the United Kingdom, United Arab Emirates, Cyprus, and India. For specific inquiries about data processing in your jurisdiction, please contact our team.

3. Personal Data We Collect

We collect and process the following categories of personal data:

Contact Information: Name, email address, phone number, job title, company name
Professional Information: Business requirements, project details, industry sector, company size
Communication Data: Records of our communications, meeting notes, consultation details
Website Data: IP address, browser type, pages visited, time spent on site
Technical Data: Device information, cookies, usage analytics

4. How We Collect Personal Data

We collect personal data through:

Contact forms and consultation requests on our website
Email communications and phone calls
Business meetings and consultations
Professional networking events and conferences
Cookies and website analytics tools
Third-party introductions and referrals

5. Legal Basis for Processing

We process personal data based on the following legal grounds:

Legitimate Interests: To provide advisory services, business development, and relationship management
Contract Performance: To deliver consulting services under signed agreements
Consent: For marketing communications where you have opted in
Legal Obligation: To comply with regulatory requirements in financial services

6. How We Use Personal Data

We use your personal data to:

Provide fintech advisory and consulting services
Respond to inquiries and consultation requests
Manage client relationships and project delivery
Improve our services and website functionality
Send relevant industry updates and service information (with consent)
Comply with legal and regulatory obligations
Prevent fraud and ensure business security

7. Data Sharing and Disclosure

We may share personal data with:

Service Providers: Cloud hosting, email services, analytics providers (under strict data processing agreements)
Professional Partners: External specialists supporting client projects (with appropriate confidentiality protections)
Regulatory Bodies: When required by law in financial services compliance
Legal Authorities: If required by law or to protect our legitimate interests

We never sell personal data to third parties for marketing purposes.

8. International Data Transfers

Given our global operations, personal data may be transferred between our offices in the UK, UAE, Cyprus, and India. We ensure appropriate safeguards are in place:

Adequacy decisions from relevant data protection authorities
Standard contractual clauses approved by the European Commission
Binding corporate rules for intra-group transfers
Appropriate technical and organizational security measures

9. Data Security

We implement robust security measures to protect personal data:

Encryption of data in transit and at rest
Multi-factor authentication for system access
Regular security assessments and penetration testing
Staff training on data protection and security
Incident response procedures for data breaches
Physical and logical access controls

10. Data Retention

We retain personal data for as long as necessary to fulfill the purposes outlined in this policy:

Client Data: Duration of engagement plus 7 years (regulatory requirement)
Prospect Data: 3 years from last meaningful contact
Website Analytics: 26 months maximum
Marketing Data: Until consent is withdrawn or 2 years of inactivity

11. Your Rights

Under applicable data protection laws, you have the right to:

Access: Request copies of your personal data
Rectification: Correct inaccurate or incomplete data
Erasure: Request deletion of your personal data
Restriction: Limit how we process your data
Portability: Receive your data in a structured format
Objection: Object to processing based on legitimate interests
Withdraw Consent: For processing based on consent

To exercise these rights, please contact our team.

12. Cookies and Website Analytics

Our website uses cookies and similar technologies to:

Ensure proper website functionality
Analyze website usage and performance
Personalize your browsing experience
Support security measures

You can control cookie settings through your browser preferences. Essential cookies cannot be disabled as they are necessary for website functionality.

13. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. Updated versions will be posted on our website with the revision date. Significant changes will be communicated to existing clients and contacts.

14. Contact Information and Complaints

For privacy-related questions, to exercise your rights, or to file a complaint, please contact our team. We will respond to privacy requests within 30 days.

You also have the right to lodge a complaint with relevant data protection authorities in your jurisdiction if you believe we have not handled your personal data appropriately.

Data Protection Notice: Finstruct is committed to the highest standards of data protection and privacy. We continuously review and update our practices to ensure compliance with evolving privacy regulations and to maintain your trust in our handling of personal information.