Who are we?
Any personal data you provide to us is controlled by Active Securities Limited, a company registered in England and Wales (05671281) which has its registered office at 20-22 Wenlock Road, London N1 7GU and is registered as a data controller with the Information Commissioner's Office under reference Z9339538. We are authorised and regulated by the Financial Conduct Authority (673915).
Active Securities Limited can be contacted:
If you have any queries about the way we use your personal data, you can contact our Data Protection Group, using the email, telephone or postal details above.
2. Your data
What personal data do we collect from you?
We collect various personal data from you in a number of different ways:
Why do we collect your personal data?
We collect your personal data to ensure that we are providing you with the best service we possibly can. We may use your personal data in the following ways:
Legal basis for collecting your personal data
We process your personal data where we have a lawful reason to do so. These lawful reasons are:
When you have applied for our Services, we process this personal data on the basis that we are taking steps to enter into a contract with you. When we have provided Services to you, we process your personal data on the basis that we need this information to fulfil our obligations under the contract we have entered into with you.
There are also certain times when we will process your data on the basis of legitimate interests. This will be when we are carrying out one or more of the following:
You can withdraw your consent to us processing your personal data for marketing purposes at any time. This can be done in a number of ways:
If you change your mind about agreeing to us processing your personal data, this will not have any effect on the lawfulness of any processing we have carried out before you change your mind.
Do I have to provide you with my personal data? What happens if I don't?
In order to provide you with Services you will need to provide us with certain information so that we can process your data in a lawful way. In addition, we may contact you by post, telephone, automated voice message, SMS text message, digital messaging application or email. For example, we may contact you by the above methods if it appears you are having issues applying or abandon before submitting your application, to provide assistance or ask you to review your online account security/activity to spot suspicious behaviour. Please note that we may not be able to continue providing our Services to you if you request that we do not contact you.
We will ask you whether you would like us:
In order to provide you with Services we may disclose your personal information to our sub-contractors, agents, service providers, credit brokers, lenders and members of our group of companies (which includes any company linked to us in some way by common ownership or management). A full list of data processors is available on request subject to commercial sensitivity. We will ensure that such persons manage your information securely and use it only in respect of the provision of Services to us and/or on our behalf.
If you were introduced to us by a third party, we may give them your contact details and sufficient information about you for their accounting and administration purposes.
We may disclose your personal information to third parties:
If you give us false or inaccurate information and/or we suspect fraud, we may record this on your credit history and may also pass information to appropriate law enforcement or regulatory authorities and/or to Fraud Prevention Agencies ("FPAs").
In order to process your application, we will supply your personal information to CRAs and they will give us information about you, such as about your financial history. We do this to assess creditworthiness and product suitability, validate your application, check your identity, manage your account, trace and recover debts and prevent criminal activity.
On an ongoing basis we will continue to share and receive information with the CRAs. This information exchange will include data concerning the way you have managed your debt obligations including your settled accounts, repayments missed and any debts not fully repaid on time. CRAs will share your information with other organisations. Your data will also be linked to the data of your spouse, or other financial associates.
The identities of the CRAs, and the ways in which they use and share personal information, are explained in more detail at:
Data security and retention
We understand that the privacy and security of your personal data is of great importance and therefore we have implemented technology, security polices, rules and controls to protect your information.
We will only retain personal data for as long as is necessary. In accordance with our retention policy and applicable anti money-laundering legislation, we will retain your personal data for a minimum of six years from the end of our business relationship with you unless there is a legitimate reason for us to retain your data beyond our personal data destruction period.
Where will your personal data be held?
The information you provide to us via the Website will be stored and processed on servers based in the UK and Ireland. However, in the course of providing our Services we may transfer your personal data to our service providers who are based outside of the European Economic Area (EEA).
If any personal data is transferred or stored outside of the EEA, we check whether the EU Commission has determined that it will afford the same level of protection as it would within the EEA (this is called an adequacy decision). If it will not, we will ensure any such transfer is subject to appropriate safeguards (for example by putting appropriate contractual provisions in place with relevant third parties to provide us with reassurance about the security of your personal data) or is otherwise permitted (for example with your express consent to transfer) in accordance with the provisions of the GDPR. However, you acknowledge that communications sent via the Internet cannot be guaranteed to be completely secure.
3. Your rights
Right to access
You have the right to access the personal data we hold about you. Requests to access your personal data should be made in writing and sent by email or post. You can do this by using the contact details above.
Right to rectify your personal data
If you notice that the information we hold about you is not correct, you may ask us to change it to make sure that it is accurate and up to date.
Right to be forgotten
You may ask us to delete your personal data in certain circumstances. It may not be possible for us to delete all of the personal data we hold about you where we have an ongoing relationship, however please contact our Data Protection Group who will be able to assist with your request.
We use the personal data you provide to us to create your profile. This profile is considered as part of your application and we may take some decisions by automated means. We may use CRAs and FPAs to help us make decisions. We will make checks such as assessing your application for credit and verifying your identity to prevent and detect crime and money-laundering.
The decision to lend or not (including the amount we lend), may be determined by your credit status. If you do not agree with a decision which has been made solely by automated means based on the profile we have created for you, you can request that the decision is considered using a non-automated method. You can also object to profiling, including profiling for marketing purposes, you can do this by contacting us directly, using the information we have provided above in this policy.
You may also ask us to stop or restrict our processing of your personal data or to transfer your personal information to a third party in certain circumstances.
You can contact the CRAs in the UK to obtain information held by them about you. They may charge a small fee for dealing with your request. Contact details are:
Please contact our Data Protection Group if you wish to exercise any of your rights, using the contact details at the start of this policy.
Cookies are small files that are written or downloaded to the hard drive of your computer or other device when you access a website. Cookies can be used to allow websites to store and quickly retrieve login information on your computer (or other device) and provide data that can be used to improve service quality. You may set up your computer (or other device) to reject cookies or notify us that you object to the issue of cookies. However, should you do so, you may not be able to use the whole of, or certain features on, our Website. To find out more information regarding cookies, including how to see what cookies have been set and how to manage and delete them, you can visit www.allaboutcookies.org.
Details of the cookies we use are displayed below:
247Moneybox.com customer portal cookie - This cookie is used when you log in to your account through the Website and has the following name: moneybox_login. The purpose of this cookie is to keep your login session live whilst accessing your account. This cookie is deleted when you close your browser.
247Moneybox.com affiliate portal cookie - This cookie is used when you login to your affiliate account (if you have one) through the Website and has the following name: app_sid. The purpose of this cookie is to keep your login session live whilst accessing your affiliate account. This cookie is deleted when you close your browser.
247Moneybox.com customer cookie - This cookie is used when you apply for a loan through our application form and has the following name: id_key. The purpose of this cookie is to detect fraudulent use of our Services by linking applications made, with the devices on which applications are made from. This cookie will last for 24 months.
247Moneybox.com affiliate tracking cookies - These cookies are used when you visit our Website from a tracking link and have the following names: refURL and aid. The purpose of these cookies is to track which affiliate/website introduced you to our Website. We may give the affiliate your contact details and sufficient information about you for their accounting and administration purposes. These cookies are deleted when you close your browser.
247Moneybox.com cookie banner view cookie - This cookie is used to record if a user has viewed the banner notifying usage of cookies on our Website and has the following name: moneybox_cookies. This cookie will last for 3 months.
247Moneybox.com visitor ID cookie - This cookie is used when you apply for a loan through our application form and has the following name: visitor_id. The purpose of this cookie is to synchronize applicant data throughout the application process. This cookie will last for 12 months.
Third party cookies - Facebook Exchange Program - We use the Facebook remarketing cookie to continue to show you advertisements on Facebook Services or other websites and mobile applications. This allows us to make special offers and continue to market our products to those who have shown a previous interest in our service. For more information and controls available to you please see https://www.facebook.com/help/cookies/update
Third party cookies - Twitter Ads - We use the Twitter Ads cookie to continue to show you advertisements on Twitter Services or other websites and mobile applications. This allows us to make special offers and continue to market our products to those who have shown a previous interest in our service. For more information and controls available to you please see https://business.twitter.com/en/help/troubleshooting/how-twitter-ads-work.html
5. Other information
Third party websites
The Website is not intended for use by, nor do we offer products or Services to, individuals under the age of 18. We do not knowingly collect personal information from individuals under the age of 18.
What if I have a complaint?
If you are unhappy about how your personal data has been used please contact our Data Protection Group using the contact details above.
You may also complain to the Information Commissioner's Office (www.ico.org.uk or by post at Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF), which regulates the processing of personal data.