At B.R.I.S. GR LIMITED (Company No. 08404265), registered at 86-90 Paul Street, London, EC2A 4NE (“BRIS”, “we”, “us”, or “our”), we are committed to protecting your personal data in accordance with the UK GDPR and Data Protection Act 2018. This Privacy Policy explains how we collect, process, store, and protect your personal information and your rights regarding that data.

📊2. Data We Collect

• Identity Data: Name, date of birth, nationality, passport number, national ID, company incorporation documents, registers of directors/members.
• Contact Data: Email, phone, postal address.
• Financial Data: Bank account details, income sources, assets, professional references.
• KYC / Due Diligence Data: Information provided in onboarding forms, including Know Your Customer (KYC) forms, source of funds, PEP status, FATCA/CRS information.
• Website and Communications Data: IP address, cookies (if used), and records of interactions via email, phone, chat, or web forms.

🛡3. How We Use Your Data

• To verify your identity and perform due diligence (KYC/AML).
• To provide corporate, nominee, registered office, and banking introduction services.
• To communicate with you regarding your account, services, updates, or legal obligations.
• To conduct internal analysis, improve services, and prevent fraud.
• For marketing communications, only if you have given consent. You may opt-out at any time.

📦4. Data Sharing and Transfers

• We may share your personal data with banks, service providers, and regulatory authorities as required by law or for service provision.
• Transfers outside the UK or EU will only occur where adequate protections exist, such as EU Commission adequacy decisions, standard contractual clauses, or explicit consent.
• We do not sell personal data to third parties.

📅5. Data Retention

We retain personal data only for as long as necessary to provide services, comply with legal obligations, resolve disputes, and enforce agreements. Typically, KYC and corporate records are retained for a minimum of 7 years in accordance with UK law.

💪6. Your Rights

• Access, rectify, or update your personal data.
• Request erasure of personal data where applicable.
• Restrict or object to processing.
• Data portability.
• Withdraw consent for processing at any time.
• Lodge a complaint with the Information Commissioner’s Office (ICO) if you believe your data rights are violated.

🔒7. Data Security

We implement appropriate technical and organizational measures to protect your data, including encryption, secure storage, access controls, and staff training. While we strive to protect your data, no transmission over the internet or storage system can be guaranteed 100% secure.

📰8. Cookies and Analytics

We may use cookies or third-party analytics (e.g., Google Analytics) to monitor website usage. You may opt out of cookies through your browser settings. Data collected via analytics is anonymized and used solely for performance improvement.

📩9. Marketing Communications

We will only send marketing communications to you if you have opted in. You can withdraw consent at any time by contacting [email protected]. Communications may include updates, services, offers, or events relevant to our corporate services.

📁10. Data Protection Officer

Our Data Protection Officer (DPO) monitors compliance with data protection laws and manages inquiries or complaints. Contact the DPO at [email protected].

📝11. Changes to This Privacy Policy

We may update this policy periodically. The latest version will be published on our website, and significant changes will be communicated to clients when possible.