FundTrail Logo
FundTrailTogether we rise: people uplifting people

Privacy Policy

How we collect, use, and protect your personal information

Last updated: 10 December 2025

Introduction

Rainecorp Limited ("we", "our", or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, share, and protect your information when you use our ROSCA management platform and services.

We are registered with the Information Commissioner's Office (ICO) under registration number ZB982085 and comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Information We Collect

Personal Information

  • Full name and contact details (email, phone)
  • Basic account registration information
  • Bank account details for payment processing (via TrueLayer)

Financial Information

  • ROSCA contribution amounts and payment history
  • Transaction records and payout details
  • Bank transaction data (via Open Banking)

Technical Information

  • IP address, browser type, and device information
  • Usage data and platform interactions
  • Cookies and similar tracking technologies
  • Location data (with your permission)

How We Use Your Information

Legal Basis for Processing

We process your personal data under the following legal bases:

  • Contract: To provide our ROSCA services
  • Legal Obligation: For financial compliance and fraud prevention
  • Legitimate Interest: For fraud prevention and service improvement
  • Consent: For marketing communications (where required)

Service Provision

  • Creating and managing your ROSCA account
  • Processing contributions and payouts
  • Generating Source of Funds documentation
  • Facilitating group communications

Regulatory Compliance

  • Basic user verification and account security
  • Transaction monitoring for compliance
  • Audit trails for regulatory requirements

Security and Fraud Prevention

  • Monitoring for fraudulent activity
  • Verifying user identity and transactions
  • Maintaining audit trails for investigations
  • Protecting against cyber threats

Sharing Your Information

We Never Sell Your Data

FundTrail will never sell your personal information to third parties for marketing purposes.

Regulatory Authorities

  • HM Revenue & Customs (HMRC)
  • National Crime Agency (NCA)
  • Financial Intelligence Unit (FIU)

Service Partners

  • Cloud infrastructure providers
  • Database and hosting services

Legal Requirements

  • Court orders and legal proceedings
  • Law enforcement investigations
  • Regulatory examinations
  • Tax audits and compliance checks

Data Security

Bank-Grade Security

We implement the same security standards used by major UK banks to protect your data.

Technical Safeguards

  • SSL/TLS encryption for data in transit
  • Encrypted data storage
  • Secure user authentication
  • Regular security monitoring

Operational Security

  • Staff background checks and security training
  • Role-based access controls
  • 24/7 security monitoring
  • Incident response procedures

Your Data Protection Rights

Under UK GDPR, you have the following rights regarding your personal data:

Right of Access

Request a copy of your personal data

Right to Rectification

Correct inaccurate information

Right to Erasure

Request deletion of your data

Right to Portability

Transfer your data to another service

Right to Object

Object to certain processing activities

Right to Restrict

Limit how we process your data

Exercise Your Rights

To exercise any of these rights, please contact our Data Protection Officer:

  • Email: dpo@fundtrail.co.uk
  • Phone: +44 7407 369616
  • Post: Data Protection Officer, FundTrail Limited, Bartle House, 9 Oxford Court, Manchester, England, M2 3WQ

Data Retention

We retain your personal data only for as long as necessary to provide our services and comply with legal obligations:

Account Data

Retained for 7 years after account closure for regulatory compliance

Transaction Records

Retained for 7 years for audit and compliance purposes

Communication Data

Contact forms and support requests retained for 3 years

Marketing Data

Deleted immediately upon unsubscribe request

International Data Transfers

Your data is primarily processed within the UK and EEA. Where we transfer data internationally, we ensure adequate protection through:

  • EU-US Data Privacy Framework certification
  • Standard Contractual Clauses (SCCs)
  • Adequacy decisions by the UK government
  • Binding Corporate Rules (BCRs)

Contact Us

Data Protection Officer

Email: dpo@fundtrail.co.ukPhone: +44 7407 369616

Regulatory Complaints

Information Commissioner's Office (ICO)
Website: ico.org.uk
Phone: 0303 123 1113

Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by email and update the "Last updated" date at the top of this page.