Legal

Privacy Policy

Last updated: 6 May 2025

1. Who we are

FanzoPay ("we", "us", "our") operates the FanzoPay mobile application and website. We provide a cashback loyalty platform connecting customers with local businesses in the United Kingdom.

If you have any questions about this policy, contact us at hello@fanzopay.com or by WhatsApp on +44 7438 754760.

2. What information we collect

From customers:

  • Name and phone number (used for account registration and authentication)
  • QR scan activity and cashback credit balances
  • Voucher and redemption history
  • Referral activity
  • Device information and app usage data

From businesses:

  • Business name, address, postcode and category
  • Owner phone number and contact details
  • Cashback rate and programme settings
  • Payment and billing information (processed via Stripe)
  • Dashboard activity and analytics data

3. How we use your information

  • To create and manage your account
  • To process cashback earnings, voucher redemptions and referral rewards
  • To connect customers with participating local businesses
  • To send you service notifications (e.g. credit earned, voucher expiry)
  • To process payments and subscriptions for businesses
  • To display your business on the customer map
  • To generate analytics and dashboards for business owners
  • To comply with legal obligations
  • To detect and prevent fraud or abuse

4. Legal basis for processing (UK GDPR)

  • Contract performance — processing necessary to deliver the FanzoPay service you have signed up for
  • Legitimate interests — analytics, fraud prevention and service improvement
  • Legal obligation — where we are required to retain or disclose data by law
  • Consent — for any marketing communications (you can withdraw at any time)

5. Data sharing

We do not sell your personal data. We share data only with:

  • Stripe — for payment processing and subscription billing (businesses only)
  • Cloud infrastructure providers — for hosting and data storage, within the UK/EEA
  • Law enforcement or regulators — where required by law

Business names, categories, addresses and cashback rates are visible to customers on the app map.

6. Data retention

We retain your data for as long as your account is active. If you request account deletion, we will delete your personal data within 30 days, except where we are required to retain it for legal or regulatory purposes (e.g. billing records for up to 7 years).

7. Your rights

Under UK GDPR, you have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data ("right to be forgotten")
  • Object to or restrict certain processing
  • Data portability
  • Withdraw consent at any time (where processing is consent-based)

To exercise any of these rights, contact us at hello@fanzopay.com.

8. Security

We implement industry-standard security measures including encrypted data transmission (TLS), hashed credentials, and access controls. No method of transmission over the internet is 100% secure, but we take all reasonable steps to protect your data.

9. Children

FanzoPay is not intended for use by anyone under the age of 18. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

10. Changes to this policy

We may update this Privacy Policy from time to time. We will notify users of significant changes via the app or email. Continued use of FanzoPay after changes are posted constitutes acceptance of the updated policy.

11. Contact us

If you have questions, concerns or requests regarding your privacy, please contact us:

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.