GDPR Compliance Statement

Last Updated: June 1, 2026

Our Commitment to GDPR

Flexorin CapitalTech is committed to protecting your personal data in accordance with the General Data Protection Regulation (GDPR) and the UK Data Protection Act 2018. This page outlines how we comply with these regulations.

Data Controller

Flexorin CapitalTech is the data controller for the personal information we process. Our contact details are:

Flexorin CapitalTech
42 Finsbury Square
London EC2A 1HD
United Kingdom
Email: [email protected]

Lawful Basis for Processing

We process personal data under the following lawful bases:

• Consent: When you provide explicit consent for specific processing activities
• Contract: When processing is necessary to perform a contract with you
• Legal Obligation: When we must process data to comply with legal requirements
• Legitimate Interests: When processing is necessary for our legitimate business interests, balanced against your rights

Your Rights Under GDPR

You have the following rights regarding your personal data:

Right to Access

You have the right to request access to your personal data and receive a copy of the information we hold about you.

Right to Rectification

You can request correction of inaccurate or incomplete personal data.

Right to Erasure

You can request deletion of your personal data in certain circumstances, such as when it is no longer necessary for the purpose it was collected.

Right to Restrict Processing

You can request that we limit how we use your personal data in certain situations.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used format and transmit it to another controller.

Right to Object

You can object to processing of your personal data based on legitimate interests or for direct marketing purposes.

Right to Withdraw Consent

Where processing is based on consent, you have the right to withdraw that consent at any time.

Right to Lodge a Complaint

You have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe we have not handled your data properly.

How to Exercise Your Rights

To exercise any of these rights, please contact us at:

Email: [email protected]

We will respond to your request within one month. If your request is complex, we may extend this period by two additional months and will inform you of the extension.

Data Protection Measures

We implement appropriate technical and organizational measures to ensure data security, including:

• Encryption of data in transit and at rest
• Access controls and authentication systems
• Regular security assessments and updates
• Staff training on data protection
• Data breach notification procedures

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law. Our specific retention periods are:

• Client data: Duration of engagement plus 7 years
• Inquiry data: 2 years from last contact
• Marketing data: Until consent is withdrawn or 3 years of inactivity

International Data Transfers

If we transfer your personal data outside the UK or European Economic Area (EEA), we ensure appropriate safeguards are in place, such as:

• Standard contractual clauses approved by the European Commission
• Adequacy decisions recognizing equivalent data protection
• Binding corporate rules where applicable

Data Breach Notification

In the event of a data breach that poses a risk to your rights and freedoms, we will notify the ICO within 72 hours and inform affected individuals without undue delay.

Contact the ICO

If you wish to raise a concern about how we handle your data, you can contact the UK supervisory authority:

Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF
Phone: 0303 123 1113
Website: ico.org.uk