Privacy Policy

This policy explains how LucentPay™ Ltd handles your personal data in accordance with the UK General Data Protection Regulation (UK GDPR).

1. Who We Are

LucentPay™ Ltd (Company No. 16576276), registered at Treguddick Manor, South Petherwin, Launceston, PL15 7JN, is the data controller responsible for your personal data. Our ICO registration number is ICO:00010800337.

2. What Data We Collect

  • Identity Data: Name, photo ID, date of birth
  • Contact Data: Email address, phone number, billing address
  • Verification Data: Proof of address, business credentials, invoice details
  • Technical Data: IP address, browser type, device ID, and usage patterns
  • Payment Data: Card transaction references (processed via Stripe), payment status, and payment metadata

3. How We Use Your Data

We process your data to:

  • Verify your identity (KYC)
  • Validate submitted invoices and recipients
  • Facilitate card payment processing via Stripe
  • Remit invoice payments from our business account
  • Fulfil regulatory and anti-money laundering obligations
  • Communicate service updates, confirmations, and alerts

4. Legal Basis for Processing

We process personal data under the following legal bases:

  • Consent – where you have given permission (GDPR Article 6(1)(a))
  • Contract – to perform our service agreement (Article 6(1)(b))
  • Legal Obligation – to comply with KYC/AML laws (Article 6(1)(c))
  • Legitimate Interest – to prevent fraud and misuse (Article 6(1)(f))

5. Sharing Your Data

We only share data with:

  • Stripe, our secure payment processor
  • Identity verification and sanctions screening providers
  • UK legal authorities and regulators (where legally required)
  • Accounting and compliance partners bound by confidentiality

6. Data Retention

We retain your data for as long as required to provide our services and for up to 5 years after account closure to meet legal, audit, and regulatory requirements.

7. Your Rights

You have the right to:

  • Request access to your data
  • Request correction of inaccurate or incomplete data
  • Request deletion of your data, subject to legal exceptions
  • Object to processing where applicable
  • Withdraw consent at any time where consent is the lawful basis
  • Lodge a complaint with the UK Information Commissioner's Office (ICO)

8. Data Security

We use strong encryption and secure cloud infrastructure to protect your data. Stripe is PCI-DSS Level 1 certified and handles all card data directly. We do not store full card numbers or CVVs on our servers.

9. Contact Us

For any privacy-related questions or data access requests:

Email: privacy@lucentpay.co | Phone: 01566 232101

© LucentPay™ Ltd. Privacy Policy last updated: July 28, 2025.