Privacy Notice

Overview

FinTrU respects your privacy and is committed to protecting your Personal Data.

Protecting the personal rights and privacy of each individual is the foundation of trust in our business relationships and of FinTrU’s reputation as an attractive and responsible employer. We recognise the need for appropriate safeguards and management practices in relation to the collection and use of your Personal Data.

We want to ensure that you understand what information we collect about you and how we use it. This Privacy Policy sets out the principles FinTrU follows when we collect and process your Personal Data through your use of our website.

This website is not intended for children, and we do not knowingly collect data relating to children.

We may amend this Privacy Notice from time to time so please visit this page to ensure that you understand any amendments. If we need your consent to process your Personal Data in a different way, we will seek your permission in advance.

Who We Are

FinTrU is a multi-award-winning financial services company providing its clients with high quality, cost-effective, near-shore outsourcing solutions. FinTrU operates in the UK as FinTrU Limited and has its registered office at Warnford Court, 29 Throgmorton Street, London, United Kingdom, EC2N 2AT. FinTrU also operates in the EU with offices in the Republic of Ireland and Portugal.

Unless specified otherwise in this Privacy Notice, FinTrU is the controller of your Personal Data. This means that FinTrU decides why and how your Personal Data is processed.

Data Protection Team

Our Data Protection Team is responsible for overseeing questions in relation to this Privacy Notice. If you have any questions about this Privacy Notice, including any requests to exercise any of your legal rights, please contact us using the details set out below.

Contact Details

Our full details are:

Full name of legal entity: FinTrU Limited

Address: FinTrU House, 1 Cromac Avenue, The Gasworks, Belfast, Northern Ireland, BT7 2JA

Email Address: dataprotection@fintru.com

What Personal Data We Collect and How We Collect It

Personal data means any information that you can use to identify a living individual (e.g. name, NI number, employee number, email address, physical features). It can be factual (e.g. contact details or date of birth), an opinion about an individual’s actions or behaviour, or information that may otherwise impact that individual in a personal or business capacity.

Website Users

When you are using our website (this may include when you download content or contact us via our website), you may provide Personal Data by completing online registration forms, by applying for roles via our website, or when you create or update any of your marketing preferences. In addition, we may collect your data automatically via cookies, in line with cookie consent, server logs and other similar technologies preferences and settings in your browser. We collect a limited amount of data which we use to help us to improve your experience when using our website and to help us manage the services we provide. This includes information on how you use our website and the location you view our website from (IP address).

We do not collect any Special Categories of Personal Data about you through this website (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data).

Technology Products

FinTrU delivers technology products to support clients with their business processes. Our solutions are powered by data that our customers are required to collect – enabling processes that keep them compliant. Our products accelerate process efficiency, enable quality improvement, manage risk and reduce costs for global customers.

Depending on the nature of our relationship with our clients, FinTrU may act as a Data Controller for the processing of any personal data in the development and operation of the technology products we provide. See our technology product privacy policy.

Candidates

To understand what information we collect when you apply for a position with us, see our Candidate Privacy Notice.

Client

When you are enquiring about or using our services, we collect and use information to understand your requirements, agree role specifications, propose candidates, discuss our contract, provide training or consultancy services, or to share FinTrU content which is likely to be relevant and useful to you.

You may provide Personal Data to us by email, post, telephone, face to face during meetings or through our website. In addition, we may collect it from your colleagues, social media, our network of contacts, others who may know you, event delegate lists or third-party market research.

Data we collect includes the Personal Data of individual contacts who we deal with at your organisation, such as name, job title, management level, business relationships, memberships, work history, work address, telephone numbers, and email address or written records of our conversations or meetings.

Suppliers

When supplying services to us or contracting with us we need certain information so that we can receive and pay for the services you provide.

You may provide Personal Data to us by email, post, telephone, face to face or to our website. In addition, we may collect it from candidates, social media, from our network contacts / others who may know you, event delegate lists or third-party market research.

This includes the Personal Data of individual contacts we engage with at your organisation, such as name, job title, work address, telephone numbers, email address or written records of our conversations or meetings.

What is the Legal Basis for Processing Data?

We rely on the following main grounds to process Personal Data of candidates, clients, suppliers, web users or other third parties:

Necessary for entering into, or performing, a contract: to perform obligations that we undertake in providing a service to you, or to take steps at your request to enter into a contract with us
Necessary for compliance with a legal obligation: we are subject to certain legal requirements which may require us to process your Personal Data. We may also be obliged by law to disclose your Personal Data to a regulatory body or law enforcement agency
Necessary for the purposes of Legitimate Interests: we, or a third party, will process your Personal Data for the purposes of our (or a third party's) Legitimate Interests, provided we have established that those interests are not overridden by your rights and freedoms, including your right to have your Personal Data protected. Our Legitimate Interests include responding to requests and enquiries from you or a third party, optimising our website and customer experience, informing you about our products and services and ensuring that our operations are conducted in an appropriate and efficient manner
Consent: in some circumstances, we may ask for your consent to process your Personal Data. Where we ask for your consent, it is entirely your choice whether to grant it: we only ask for your consent for using data that we don’t need for business purposes. If you’ve given your consent for us to use your data for a given purpose, you may withdraw your consent at any time. If you do, we’ll stop using your data for that purpose
Necessary to protect the vital interests of the data subject or of another natural person

Change of Purpose

We will only use your Personal Data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose.

If we need to use your Personal Data for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so. Otherwise, we will seek your consent, providing you with a clear, conspicuous and readily available mechanism for you to exercise choice.

Please note that we may process your Personal Data without your knowledge or consent where this is required or permitted by law.

How We Share Your Personal Data

We will only share your personal data with third parties where we have an appropriate legal ground under data protection law which permits us to do so.

We may disclose your personal information to the following categories of recipients:

Service providers acting as processors (these may provide services such as IT and system administration)
Professional advisers acting as processors or joint controllers
Regulators and other authorities acting as processors or joint controllers based who require reporting of processing activities in certain circumstances. Clients who have roles in which you are interested
Trusted third parties who provide employment-related services for us, including reference, qualification, and criminal record checking (where required, and where permitted by applicable law), evaluation or skills tests (in such circumstances, we may disclose Special Category data)

International Transfers of Data

To ensure that the level of protection afforded to personal data is not compromised, we only transfer your personal data outside the EEA or UK if certain legal conditions are met.

Any data that is transferred is treated in a way that is consistent with and which respects the EEA and UK laws on data protection and receives an adequate level of protection.

Data Security

We use appropriate technical and organisational measures to protect the personal information that we collect and process about you. The measures we use are designed to provide a level of security appropriate to the risk of processing your personal information.

While we operate to the highest standards, we are also aware that the transmission of information via the internet is not completely secure. We cannot guarantee the security of your data transmitted to our website and any transmission is at your own risk. Where we have given you (or where you have chosen) a password which enables you to access any of our online or electronic resources, you are responsible for keeping this password confidential. We advise you not to share your password with anyone.

You should note that this website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their content or privacy statements. When you leave our website, we encourage you to read the privacy notice of every website you visit.

FinTrU uses cookies on its sites. A cookie is a piece of data stored on a site visitor's system that help us improve your access to our site and identify repeat visitors to our site.

Cookies can also enable us to track users’ actions and behaviours to target their interests so we can enhance their experience on our site. We may, for example, use cookies to show more relevant ads to certain groups of users. These might include only people who visited certain webpages, or visitors who have spent more than a certain time on our website, or all visitors within a certain timeframe.

Except where:

contacts elect to identify themselves for purposes of receiving information from FinTrU or inquiring as to a business relationship with FinTrU, or
candidates elect to establish and use an account to apply to FinTrU and employment opportunities with FinTrU, cookies are not linked to any personally identifiable information

You can disable or remove any cookies already stored on your computer, but these may stop our websites from functioning properly.

To change your cookie preferences at any time, please click here.

Cookie Name	Lifespan	Category	Description
.AspNetCore.Mvc.CookieTempDataProvider	PERSISTENT	Strictly Necessary Cookies	.AspNetCore.
.AspNetCore.Antiforgery.K6FrE-hUeUw	PERSISTENT	Strictly Necessary Cookies	.AspNetCore.Antiforgery.
OptanonAlertBoxClosed	PERSISTENT	Strictly Necessary Cookies	This cookie is set by websites using certain versions of the cookie law compliance solution from OneTrust. It is set after visitors have seen a cookie information notice and in some cases only when they actively close the notice down. It enables the website not to show the message more than once to a user. The cookie has a one-year lifespan and contains no personal information.
OptanonConsent	PERSISTENT	Strictly Necessary Cookies	This cookie is set by the cookie compliance solution from OneTrust. It stores information about the categories of cookies the site uses and whether visitors have given or withdrawn consent for the use of each category. This enables site owners to prevent cookies in each category from being set in the user’s browser, when consent is not given. The cookie has a normal lifespan of one year, so that returning visitors to the site will have their preferences remembered. It contains no information that can identify the site visitor.
_ga_RQ1MBB98TR	PERSISTENT	Performance Cookies	_ga
_gid	PERSISTENT	Performance Cookies	This cookie name is associated with Google Universal Analytics. This appears to be a new cookie and as of Spring 2017 no information is available from Google. It appears to store and update a unique value for each page visited._gid
_ga_xxxxxxxxxx	PERSISTENT	Performance Cookies	NAUsed by Google Analytics to identify and track an individual session with your device.
_ga	PERSISTENT	Performance Cookies	This cookie name is associated with Google Universal Analytics - which is a significant update to Google's more commonly used analytics service. This cookie is used to distinguish unique users by assigning a randomly generated number as a client identifier. It is included in each page request in a site and used to calculate visitor, session and campaign data for the site’s analytics reports. By default, it is set to expire after 2 years, although this is customisable by website owners._ga
_fbp	PERSISTENT	Targeting Cookies	Used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers
CONSENT	PERSISTENT	Targeting Cookies	This cookie carries out information about how the end user uses the website and any advertising that the end user may have seen before visiting the said website.
_gat_UA-111414106-1	PERSISTENT	Targeting Cookies	Google Analytics Cookies
li_gc	PERSISTENT	Targeting Cookies	Used to store consent of guests regarding the use of cookies for non-essential purposes.
VISITOR_INFO1_LIVE	PERSISTENT	Targeting Cookies	This cookie is set by YouTube to keep track of user preferences for YouTube videos embedded in sites; it can also determine whether the website visitor is using the new or old version of the YouTube interface.
VISITOR_PRIVACY_METADATA	PERSISTENT	Targeting Cookies	These cookies allow Google to collect and store data about the YouTube videos site visitors watch. Additionally, some cookies store user preferences for the YouTube video player
YSC	PERSISTENT	Targeting Cookies	This cookie is set by YouTube to track views of embedded videos.
lidc	PERSISTENT	Targeting Cookies	This is a Microsoft MSN 1st party cookie that ensures the proper functioning of this website.
bcookie	PERSISTENT	Targeting Cookies	This is a Microsoft MSN 1st party cookie for sharing the content of the website via social media.

Data Retention

Where we collect your Personal Data, the length of time for which we retain it depends on the type of data, the purpose for which we use that data and our accounting, regulatory and legal data retention obligations.

When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymise it or, if this is not possible (for example, because your personal information has been stored in backup archives), we will securely store your personal information and isolate it from any further processing until deletion is possible.

Your Legal Rights

You have several legal rights relating to your personal data, which are outlined here:

The right to make a subject access request. This enables you to receive certain information about how we use your personal data, as well as to receive a copy of it and to check that we are lawfully processing it
The right to request that we correct incomplete or inaccurate personal data that we hold about you.
The right to request that we delete or remove personal data that we hold about you where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your personal data where you have exercised your right to object to processing (see below)
The right to object to our processing your personal data where we are relying on our legitimate interest (or those of a third party), where we cannot show a compelling reason to continue the processing
The right to request that we restrict our processing of your personal data. This enables you to ask us to suspend the processing of personal data about you, for example if you want us to establish its accuracy or the reason for processing it
The right to request that we transfer your personal data to you or to another party, in a structured format. This right applies in respect of data that you have provided where our legal ground for using the data is that it is necessary for the performance of a contract or that you have consented to us using it (this is known as the right to “data portability”)

If you would like to exercise any of the above rights or have any questions or concerns about how your personal data is being used by FinTrU, please contact dataprotection@fintru.com.

You will not usually have to pay a fee to access your personal information (or to exercise any of the other rights). However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternatively, we may refuse to comply with the request in such circumstances.

What We May Need From You

When you exercise any of these rights, we may need to request specific information from you to help us confirm your identity. This is appropriate to ensure that your personal information is protected against any person who has no right to receive or manage it.

Right to Withdraw Consent

In the limited circumstances where you may have provided your consent to the collection, processing and transfer of your personal information for a specific purpose, you have the right to withdraw your consent for that specific processing at any time.

To withdraw your consent, please send us email at dataprotection@fintru.com. Once we have received notification that you have withdrawn your consent, we will no longer process your information for the purpose or purposes you originally agreed to, unless we have another legal basis for doing so.

How to Make a Complaint

If you wish to make a complaint about how FinTrU has handled your personal data, please email dataprotection@fintru.com. We will investigate your complaint according to our Complaints procedure.

Any queries should also be sent to dataprotection@fintru.com.

You also have the right to make a complaint to the regulator in any of the countries in which we operate. Their details are:

UK: Information Commissioner’s Office (ICO) (FinTrU’s registration number is ZA316397)

Ireland: Data Protection Commission (DPC)

Portugal: Comissão Nacional de Proteção de Dados (CNPD)

Last Updated: 21st May 2026