Privacy Policy
Last Updated: 4 January 2024 Version: 1.0
Privacy Policy Last Updated: 4 January 2024 Version: 1.0 This Privacy Policy explains how Tolar AI Limited ("Tolar", "we", "us", or "our") collects, uses, discloses, and protects your personal information when you use the Tolar website and associated services, including our proprietary AI-driven fraud investigation tools, and Intercom, and Zendesk integration (collectively, the "Services"). By using the Services, you agree to the collection and use of your personal information in accordance with this Privacy Policy. 1. Information We Collect Website: When you interact with our website, we collect information that helps us improve your experience, including: - Technical and navigational information, such as your IP address and the type of device you use. - Data you provide through contact forms or when signing up for newsletters. Services: Through our Services, we may collect data necessary from your customers, including: - Transaction history data and related fraud reports of your customers. - Conversations between customers and financial institutions regarding fraud - Risk signals, indicators, alerts, and device information related to the investigation - Any other information you choose to provide when using the Services or communicating with us The transaction data we collect may include, but is not limited to, the date, amount, and merchant and customer information related to the transaction, which could indirectly contain personal information. 2. How We Use Your Information We use the information from our website to enhance usability and ensure the site's proper functionality. The data collected through our Services is used strictly for the purposes of conducting and improving fraud investigations for our customers. Collection of Data Involving PII We recognize the sensitivity of Personal Identifiable Information (PII) and take stringent measures to protect it. For Tolar's fraud investigation services, the collection of certain PII is necessary to accurately analyse transactions and assess fraud risk. Here's our approach to handling PII: Direct User Provision: While we do not directly collect names or contact details, this PII may be within financial transactions when using our Services. This may include transaction history data and fraud reports which could contain PII indirectly through the details of the financial activities. Internal Data Processing: We do not seek PII from external sources. All PII processed by Tolar is obtained directly through our Services, such as transaction data and device information related to fraud investigations provided by our users or their customers. Data Utilisation: Any PII utilised is for the strict purpose of conducting fraud investigations. We may use such information in an aggregated or de-identified manner for improving our Services. Protection and Consent: We are committed to ensuring that any PII collected is subject to rigorous security protocols, including encryption and access controls. We process PII based on the necessary performance of our Services, or where we have the user's explicit consent. Purpose Limitation: PII processed by Tolar is strictly confined to the purposes of fraud investigation. It is never used for marketing or any other unrelated purposes without the informed consent of the individual. Data Processors: We utilise Microsoft Azure to securely process and store any PII involved in our Services, maintaining compliance with the highest standards of data protection expected by UK law and our users. 3. Data Sharing and Disclosure We will not share your personal data with third parties for marketing purposes. Data may be disclosed to law enforcement or as required by law. With your consent, we may also share data with our partners for the purpose of improving our Services. 4. International Data Transfers As a UK-based company, we adhere to the GDPR and will ensure that any international data transfers meet the strict standards required by EU and UK data protection laws. 5. Security Measures We implement robust security measures to safeguard your data against unauthorised access, use, or disclosure. For more information on our security measures please contact developer@tolar.ai 6. Your Rights You have the right to access, correct, or request deletion of your personal information. For such inquiries, please contact zain.hussain@tolar.ai. 7. Data Retention We retain your personal data in an anonymised form only for as long as is necessary to fulfil the purposes outlined in this policy, after which it will be securely deleted 8. Data Protection Officer Our Data Protection Officer can be reached at zain.hussain@tolar.ai for any questions or concerns about our privacy practices. 9. Changes to This Privacy Policy We may update this policy periodically and will post the new Privacy Policy on our website at tolar.ai/privacy 10. Contact Us For further information about our privacy practices, please contact us at developer@tolar.ai or via mail at our UK office address, Companies House number: 15352533