Privacy
About Us
At Reflow, we believe in empowering everyone to simplify their banking experience which enables them to live a healthy financial life. Imagine yourself in an open banking environment without the fear of privacy. We respect your privacy and our team is committed to provide you secure environment to work on.
How do we do it? Through the secure processing of your personal data. Your privacy and security are our number one priority, and your data is protected by bank level security. To find out exactly what that means, read on to learn about our data protection principles and how we use your data.
A summary of our data protection principles
Our commitment to you
Your are in control
Our community
What personal data do we use?
What is personal data?
Personal data is any data relating to a person who is identified or who can be identified (such as a name, an identification number, or an online identifier).
Personal data you give us: You may give us personal data about you by filling in forms on, or interacting with, our website, or by corresponding with us by phone, email or otherwise. Examples of personal data include:
Personal data from connected banks: If you connect one of your banks or use our payment initiation services, we will collect data from your connected banks, such as:
Personal data we collect from you
When you use our website we may – ourselves or through our partners – collect information such as:
What do we use your personal data for?
Contractual performance: If you want us to deliver you our services, we can only perform these services if we can process your personal data for this purpose.
Your consent: We rely on your consent to process and use your personal data for the following purposes:
Legitimate interest: We use your personal data on the basis of our legitimate interest and to your benefit so that we can:
Legal obligations: We will also process your personal data where we are under a legal obligation to do so to:
Your key rights
Your primary right is the right to stop processing your data (right to object):
This would not invalidate any processing of the personal data prior to your withdrawal of consent.
Your other rights are:
Right of access and data portability: All data that you have provided us is accessible in the your account.
You can request a copy of all personal data you have provided us through the website or via the email-address you have provided us at registration.
If technically possible, we will help you to automatically export this data to other platforms or users.
We can only give you the data we hold ourselves. Any data that a partner holds about you is with that partner. You should request deletion of that data and your right to be forgotten directly with them. We will help you where we can.
Right to rectification: You can control your data through the website. Where you cannot change this data through the website, you have the right to ask us to rectify inaccurate or incomplete personal data which we have about you.
Right to erasure: You have the right to ask us to erase your personal data:
Right to object to automatic processing: You don’t need to object because we don’t subject you to decisions based solely on automated processing which significantly affect you.
Where do we store your personal data?
Your data is stored in UK: The personal data we collect from you is stored on secure information technology systems located in the United Kingdom.
For the provision of customer support, or as necessary to troubleshoot the issue, we may give access to our systems to suppliers outside of Europe:
Protecting your personal data
Security is in our dna
Help us protect you
Providers, regulators and law enforcement
Other than what is described above, we will only share your personal data in a very limited way.
This will happen either where we need to use services we cannot build ourselves or have a duty or legal obligations to disclose it:
How long do we keep your data
We are only allowed to keep your personal data for as long as it’s still necessary for the purpose we initially required it.
But as we are in financial services and bound by strict regulations, this means that we need to retain the data we hold about you for a minimum of 7 years after termination of your reflow account. If (local) regulations require us to retain it longer or delete it sooner, we will follow these retention periods.
If you delete your reflow account or invoke your right to be forgotten, we will use feasible solutions to make it no longer directly available in our systems, like archiving it. This means that in such case we will no longer process your data.
Our contact details
Complaints to the privacy regulator
We are registered as a Data Controller with the ICO and our registration number is ZA501386.
You have the right to complain to the privacy regulator in the country in which you reside, where you work, or anywhere where you believe we might have broken data protection rules.
In the UK, the privacy regulator is the Information Commissioner’s Office (the “ICO”). The ICO can be contacted at:
Ready to get started?
hello@reflow.zone Reflow Zone Ltd. 86-90 Paul Street London EC2A 4NE
reflow.zone: © 2019 Reflow Zone Limited. All rights reserved. Reflow, the Reflow logo, and the Diamond Design are the trademarks of Reflow Zone Limited, a company registered in England and Wales (No. 11235853), register office is at 86-90 Paul Street, London EC2A 4NE. Reflow Zone Limited is authorized and regulated by the Financial Conduct Authority reference number 811078.
Payments
Pay From My Bank
Bill Pay
Pay Later
Insights
Data Aggregation
Account Verification
Transaction Categorisation
Spending Analysis
Cash flow Analysis
Solutions
Retail
Financial Services
Accounting Services
Charities
Travel
View all >
Developers
Technology
Open Banking
API Documentation
Demo Application
Status
Bank API Monitoring
Payments Insights Use cases Solutions Developers About us
Privacy Policies
About Us
At Reflow, we believe in empowering everyone to simplify their banking experience which enables them to live a healthy financial life. Imagine yourself in an open banking environment without the fear of privacy. We respect your privacy and our team is committed to provide you secure environment to work on.
How do we do it? Through the secure processing of your personal data. Your privacy and security are our number one priority, and your data is protected by bank level security. To find out exactly what that means, read on to learn about our data protection principles and how we use your data.
A summary of our data protection principles
Our commitment to you
Your are in control
Our community
What personal data do we use?
What is personal data?
Personal data is any data relating to a person who is identified or who can be identified (such as a name, an identification number, or an online identifier).
Personal data you give us: You may give us personal data about you by filling in forms on, or interacting with, our website, or by corresponding with us by phone, email or otherwise. Examples of personal data include:
Personal data from connected banks: If you connect one of your banks or use our payment initiation services, we will collect data from your connected banks, such as:
Personal data we collect from you
When you use our website we may – ourselves or through our partners – collect information such as:
What do we use your personal data for?
Contractual performance: If you want us to deliver you our services, we can only perform these services if we can process your personal data for this purpose.
Your consent: We rely on your consent to process and use your personal data for the following purposes:
Legitimate interest: We use your personal data on the basis of our legitimate interest and to your benefit so that we can:
Legal obligations: We will also process your personal data where we are under a legal obligation to do so to:
Your key rights
Your primary right is the right to stop processing your data (right to object):
This would not invalidate any processing of the personal data prior to your withdrawal of consent.
Your other rights are:
Right of access and data portability: All data that you have provided us is accessible in the your account.
You can request a copy of all personal data you have provided us through the website or via the email-address you have provided us at registration.
If technically possible, we will help you to automatically export this data to other platforms or users.
We can only give you the data we hold ourselves. Any data that a partner holds about you is with that partner. You should request deletion of that data and your right to be forgotten directly with them. We will help you where we can.
Right to rectification: You can control your data through the website. Where you cannot change this data through the website, you have the right to ask us to rectify inaccurate or incomplete personal data which we have about you.
Right to erasure: You have the right to ask us to erase your personal data:
Right to object to automatic processing: You don’t need to object because we don’t subject you to decisions based solely on automated processing which significantly affect you.
Where do we store your personal data?
Your data is stored in UK: The personal data we collect from you is stored on secure information technology systems located in the United Kingdom.
For the provision of customer support, or as necessary to troubleshoot the issue, we may give access to our systems to suppliers outside of Europe:
Protecting your personal data
Security is in our dna
Help us protect you
Providers, regulators and law enforcement
Other than what is described above, we will only share your personal data in a very limited way.
This will happen either where we need to use services we cannot build ourselves or have a duty or legal obligations to disclose it:
How long do we keep your data
We are only allowed to keep your personal data for as long as it’s still necessary for the purpose we initially required it.
But as we are in financial services and bound by strict regulations, this means that we need to retain the data we hold about you for a minimum of 7 years after termination of your reflow account. If (local) regulations require us to retain it longer or delete it sooner, we will follow these retention periods.
If you delete your reflow account or invoke your right to be forgotten, we will use feasible solutions to make it no longer directly available in our systems, like archiving it. This means that in such case we will no longer process your data.
Our contact details
Complaints to the privacy regulator
We are registered as a Data Controller with the ICO and our registration number is ZA501386.
You have the right to complain to the privacy regulator in the country in which you reside, where you work, or anywhere where you believe we might have broken data protection rules.
In the UK, the privacy regulator is the Information Commissioner’s Office (the “ICO”). The ICO can be contacted at:
reflow.zone: © 2019 Reflow Zone Limited. All rights reserved. Reflow, the Reflow logo, and the Diamond Design are the trademarks of Reflow Zone Limited, a company registered in England and Wales (No. 11235853), register office is at 86-90 Paul Street, London EC2A 4NE. Reflow Zone Limited is authorized and regulated by the Financial Conduct Authority reference number 811078.
Payments
Pay From My Bank
Bill Pay
Pay Later
Insights
Data Aggregation
Account Verification
Transaction Categorisation
Spending Analysis
Cash flow Analysis
Solutions
Retail
Financial Services
Accounting Services
Charities
Travel
View all >
Developers
Technology
Open Banking
API Documentation
Demo Application
Status
Bank API Monitoring
This website uses cookies to improve your experience while you navigate through the website. Out of these cookies, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may have an effect on your browsing experience.
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.