Privacy Policy

1. Introduction

Beluga ("we", "our", "us") is committed to protecting your privacy. This policy explains how we collect, use, store, and protect your personal data when you use our services. We comply with UK GDPR and the Data Protection Act 2018.

2. Data we collect

We collect information you provide (name, email, account details) and data we receive through Open Banking when you link your bank accounts. This includes:

• Account balances and transaction history
• Account identifiers (not login credentials)
• Contact and profile information

We never see or store your bank login credentials. Bank linking is done through secure Open Banking APIs; you authorise your bank to share read-only data with us.

3. How we use your data

We use your data to provide our services: unified dashboards, Deepsight™ forecasts, Beluga Point scoring, and personalised insights. We may use anonymised or aggregated data for analytics. We do not sell your personal data.

4. Storage and security

Data is encrypted in transit (TLS 1.3) and at rest (AES-256). We use industry-standard security practices and comply with FCA requirements for handling financial data.

5. Your rights

You have the right to access, correct, delete, or export your data. You can revoke bank access at any time. Contact us at our contact page for requests.

6. Contact

For privacy questions, visit our Contact page or email the address provided there.