Privacy Policy
Effective 27 May 2026 · Version 2026-05-27
1. Who is responsible for your data
RemitClear Ltd (company number 17244638, registered office 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom) is the controller of personal data described in this policy. You can contact us about privacy at privacy@remitclear.com.
We act as a controller for the personal data of our account holders, website visitors and prospects. When our customers upload remittance documents that contain other people's personal data, the customer is the controller and we act as a processor on their behalf. That processing is governed by our Data Processing Agreement, not this policy.
2. The personal data we collect
- Account data: name, work email, password (hashed), workspace and role.
- Organisation and billing data: company name, billing contact, and subscription details. Card payments are handled by Stripe; we do not store full card numbers.
- Usage and device data: log data, IP address, browser and pages visited, used to operate and secure the Service.
- Communications: messages you send us, demo requests, and support correspondence.
- Cookies and similar technologies: see our Cookie Policy.
Remittance documents that customers upload may contain personal data of third parties (for example payer or contact names). We process that content as a processor for the customer, as described in the DPA.
3. How we use personal data, and our legal bases
- To provide the Service and our contract with you (performance of a contract): creating accounts, delivering features, support and billing.
- To run and improve our business (legitimate interests): securing the Service, preventing abuse, analytics, and product improvement.
- To communicate with you (legitimate interests or consent): service messages, and marketing where permitted, which you can opt out of at any time.
- To meet legal obligations (legal obligation): tax, accounting and responding to lawful requests.
Where we rely on consent (for example certain cookies or marketing), you can withdraw it at any time.
4. Who we share data with
We share personal data with service providers who help us run RemitClear, under contracts that require them to protect it. Our current providers are listed on our Sub-processors page and include our hosting, AI extraction, email and payment providers. We may also share data with professional advisers, or where required by law, or in connection with a sale or reorganisation of our business. We do not sell personal data.
5. International transfers
Some of our providers are located outside the UK and Australia, including in the United States. Where we transfer personal data internationally, we use an appropriate safeguard, such as the UK International Data Transfer Agreement or Addendum, the European Commission's Standard Contractual Clauses, or transfers to countries with recognised adequacy. Details are on the Sub-processors page, and you can ask us for more information.
6. How long we keep data
We keep account and billing data for as long as your account is active and for a reasonable period afterwards to meet legal, tax and accounting obligations. Uploaded remittance data is handled under the DPA and deleted within 30 days of the end of the relevant subscription, except where we must retain limited records by law. We keep web and usage logs for a limited period for security and troubleshooting.
7. How we protect data
We use technical and organisational measures appropriate to the risk, including encryption in transit, access controls, multi-tenant data isolation and row-level security, and least-privilege access for our team. See our Security page for more.
8. Your rights (UK and EU)
Under UK GDPR (and EU GDPR where it applies) you have rights to access, correct, delete or restrict your personal data, to object to certain processing, to data portability, and to withdraw consent. To exercise any of these, contact privacy@remitclear.com. You also have the right to complain to the UK Information Commissioner's Office at ico.org.uk, though we would welcome the chance to resolve any concern first.
9. Cookies
We use essential cookies to run the Service and, with your consent, analytics and advertising technologies. You can manage your choices through our cookie banner. See the Cookie Policy for the full list.
10. Australian privacy
Where we handle personal information of individuals in Australia, we comply with the Australian Privacy Principles (APPs) under the Privacy Act 1988 (Cth). In particular:
- we collect personal information only as reasonably necessary for our functions and activities;
- individuals may request access to, and correction of, their personal information by contacting privacy@remitclear.com;
- under APP 8, we may disclose personal information to overseas recipients (including our providers in the United States and elsewhere) and take reasonable steps to ensure they handle it consistently with the APPs; and
- we comply with the Notifiable Data Breaches scheme and will notify affected individuals and the Office of the Australian Information Commissioner (OAIC) where required.
Australian individuals may complain to us, or to the OAIC at oaic.gov.au, if they consider we have breached the APPs.
11. Children
The Service is for business use and is not directed at children. We do not knowingly collect data from children.
12. Changes to this policy
We may update this policy from time to time. The current version and effective date are shown at the top of this page, and we will give notice of material changes.
13. Contact
For any privacy question or request, contact privacy@remitclear.com or write to us at 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom.