When you apply for or hold a Credicorp Flex or Credicorp Slice facility, Credicorp acts as the data controller for the personal data we process about the individuals connected to your company, such as directors, authorised signatories and day-to-day contacts. A data controller is the organisation that decides why and how personal data is used.
What this means in practice
As controller, we are responsible for handling your information lawfully, keeping it accurate and secure, and respecting your rights under UK data protection law. We are registered with the Information Commissioner's Office, the UK's data protection regulator.
- We decide the purposes for processing, such as assessing an application or servicing a live facility.
- We are accountable for any third parties we instruct to process data on our behalf.
- We are the organisation you contact to exercise your data rights.
A note on our lending model
Credicorp lends only to UK limited companies and LLPs for business purposes. The borrower is always the company, and we do not take personal guarantees from directors. We still process some personal data about the people behind a company, which is why data protection law applies.
How to reach us
You can contact our data protection team through the help centre or the contact details in our privacy notice. Because Credicorp sits outside the consumer credit regime, the Financial Ombudsman Service and FSCS do not apply, but data protection rights are the same as for any UK organisation.
See also: What personal data do you collect about directors?, What happens if there is a data breach?, Glossary: what is a data controller?.