Contact Us

Privacy Policy

KYIPER PRIVACY POLICY

  1. INTRODUCTION AND SCOPE

At Loanitt, we know that your privacy is important to you. This privacy notice (“Notice”) describes the types of information we collect and use, who that information relates to, how and why we use such information, who we share it with and your legal rights.

Loanitt complies with the requirements of the General Data Protection Regulation (GDPR) 2018 and the Irish Data Protection Act 2018

When we talk about “information” in this Notice, we mean any information relating to you (your “personal data”).

Unless indicated otherwise, this Notice applies to all our website, domains, apps, and to arranging or offering to arrange the provision of credit from providers of credit through our online platform and the retrieval of transactional and financial information from your payment account provider (with your consent) to assist with your credit application (the “Services”).

  1. WHO WE ARE

Loanitt(“we”, “us” or “our”) is licenced by the Competition and Consumer Protection Commission to act as a credit intermediary pursuant to the Consumer Credit Act, 1995. Loanitt is a company registered in Ireland under registration number 643708. Our registered address is Knockeen, Piltown, Co. Kilkenny.

We are authorised by the Central Bank of Ireland as a Mortgage Credit Intermediary. We act as the service provider between you and the lenders with which we can place business and we provide advice, support, assistance and placement facilities in relation to Mortgages.

  1. WHO IS RESPONSIBLE FOR YOUR INFORMATION?

Loanitt is responsible for collecting information about you and looking after your personal data (your “data controller”). We are aware of our responsibilities to handle your personal data with care, to keep it secure and comply with applicable privacy and data protection laws.

  1. WHO THIS NOTICE APPLIES TO?

We collect and process information which relates to a variety of categories of individuals. These include individuals who may not have a direct relationship with Loanitt. We have described below the main types of individuals whose information we collect, use and otherwise process:

  • Customers and related individuals: We collect and use information relating to our prospective, current and former customers. We also collect and use information relating to individuals connected with customers, such as their employees, partners, directors, company secretaries, shareholders or beneficial owners.
  • Vendors and related individuals: We collect and use information relating to our prospective, current and former vendors, such as garages, who use the Services on behalf of customers seeking car finance. We also collect and use information relating to individuals connected with vendors, such as their employees, partners, directors, company secretaries, shareholders or beneficial owners.
  • Business and marketing contacts: In the course of providing and marketing our Services, we also collect and use information relating to visitors to our website, domains and apps, visitors to our office, event invitees or attendees, and other business and marketing contacts
  1. INFORMATION THAT WE COLLECT INCLUDES
Personal DetailsEmployment DetailsIncome DetailsBank DetailsOther
Title and Full NameOccupationMonthly Net SalaryBank NamePPS number
Mobile NumberEmployer NameOther Monthly IncomeBank AddressCustomer Expected credit history
Email AddressEmployer AddressMortgage/Rent PaymentsTime with Bank (in years)Affordable credit repayments
Date and Country of BirthEmployer Phone NumberOther monthly RepaymentsIBAN
Mothers Maiden NameTime at current employerAccount Number
GenderSort Code
Marital StatusTransactional information
Number of dependants
Residential Status
Address details

The provision of the above pieces of information by you are necessary and proportional for us to be able to provide the requested Services to you. If the requested information is not provided, we may not be able to provide the requested Services.

  1. HOW WE USE YOUR INFORMATION

In the course of providing the Services, we collect or receive information in different ways and relating to various groups of individuals (described in section 4 above). We use this information for a number of purposes described further below.

  • Providing the Services: If you are a customer of Loanitt, we will collect and use information relating to you to provide the Services you have requested. Specifically, we will use the information you provide in your application, your credit report from the Central Credit Register, and your account transaction history (if you expressly consent to this) – we have provided more information on this in the next bullet point. We use your contact information to provide you with the products and services you have requested and to respond to complaints and enquiries. We will also use your contact information to contact you or interact with you in connection with the product you currently hold with us or service that we currently provide, for example, in order to discuss the expiry of your fixed term mortgage interest rate. If you are a vendor who uses our Services to assist customers in arranging finance, we will collect and use information relating to you and individuals connected to your company (such as your employees, partners, directors, company secretaries, shareholders or beneficial owners) in order to enable you to use the Services. While much of this information will relate specifically to the provision of our Services, we will also use information as part of our administrative, financial and operational processes. We will occasionally use your personal details and financial information (but not your bank account details) as listed in the above table to match products to your demographic which provide us with insights as to future financial services you or others may require. Financial details, financial circumstances, employment and income details, expenditure, family details and composition, credit history details, account numbers, banking details are collected to determine the most suitable mortgage product for you. In carrying out this processing we rely on the following legal bases: contractual necessity, compliance with our legal obligations and legitimate interests (described below).
  • Improving the Services together with third parties: We will analyse your data together with lenders for purpose of improving the efficiency of the Services such as by developing customer pre-screening. Specifically, we will analyse the following; occupation, monthly net salary, other monthly income, customer expected credit history, mortgage/rent payments, time with bank (in years), affordable credit repayments, date and country of birth, employer phone number, other monthly repayments, time at current employer, marital status, transactional information, number of dependants, residential status. In carrying out this processing we rely on the following legal basis: legitimate interests.
  • AML compliance: We may collect and use your photo ID, PPS number or IBAN (for identification purposes) and proof-of-address information in the context of compliance with anti-money laundering (“AML”) laws and our other regulatory obligations. Shareholders of vendors with more than 25% interest in a company are required to complete a Politically Exposed Persons (“PEP”) questionnaire. AML information may be sent to credit providers and to the CCR. In carrying out this processing we rely on the legal basis of compliance with our legal obligations.
  • Websites and apps: If you visit our website or use our app, we will collect certain information relating to you. Generally, unless you submit information to us, such as via an online application form, we only collect technical and device-related information from your use of our website and app. We do so to secure our website and app, understand how you use them, and analyse how we can improve them. See the Cookie Policy on our website for more details. In carrying out this processing we rely on the following legal basis: legitimate interests. Also, with your consent, we may send you updates, invites and marketing materials. We may also do this if you are a customer or a former customer and have provided your consent. You will always have the right to unsubscribe from such communications. If we do so, we will also collect information on your interaction with such communications. In carrying out this processing we rely on the following legal basis: legitimate interests.
  • Events: Where you register for or attend an event organised by or in conjunction with Loanitt, we will collect your contact details and the details of the event you attended. If you “opt in” to receiving marketing communications from us, we may send you emails and communications about the event and other events and information we think you might be interested in. If you attend an event, we might capture your image in photographs and videos. It will be made clear at an event if photography or video recording is taking place If you object to this, please inform one of our staff at the event (for instance, you can tell the photographer at the time they are taking the photo). In general, we use your information in the context of the event, and for future marketing and events, unless you have objected to such use. In carrying out this processing we rely on the following legal basis:  legitimate interests.
  • CRM and business contacts: If you are a current or former customer or have agreed that we may stay in touch with you in relation to updates and events, we will include your personal details listed in the table above in our CRM database. We do so to keep in touch with you such as to send you communications, surveys and marketing about our events and Services; to identify what other events or Services we think you might be interested in; and understand how you use our Services. In carrying out this processing we rely on the following legal basis: legitimate interests.
  • Call recordings: All calls to and from Loanitt will be recorded for training, security and compliance purposes.
  1. INFORMATION YOU GIVE US ABOUT OTHER PEOPLE

If you provide information to us about any person other than yourself, you should ensure that you have a legal basis for doing so and that you have complied with your transparency obligations under data protection law.

We will only request information we require to provide the Service.

  1. OUR LEGAL BASES

In order to collect, use, share, and otherwise process your information for the purposes described in this Notice, we rely on a number of legal bases, some of which are mentioned above, including where:

  • necessary to perform a contract we have with you (i.e. the Services and our Terms & Conditions) (“contractual necessity”);
  • necessary for us to comply with a legal obligation;
  • necessary for the purposes of Loanitt’s or a third party’s legitimate interests, such as those of customers and others. This is provided that those interests are not overridden by your interests or fundamental rights and freedoms; and
  • you have consented to the processing (in which case you may revoke your consent at any time).
  1. LEGITIMATE INTERESTS

Where we collect, use, disclose and otherwise process your information based on legitimate interests, we may rely on the following interests:

  • Provision of credit intermediary services: We use your information to pursue our customers and other impacted individuals’ legitimate interests in arranging or offering to arrange the provision of credit from providers of credit through our online platform.
  • Keeping our Services Safe and Secure: We use your information in certain instances as necessary to pursue our and your legitimate interests of keeping some of our Services, such as our domains, websites, apps, offices and events, safe and secure. For example, we collect IP addresses and process log files to ensure our website and apps are not subject to fraudulent access.
  • Marketing our Services: We use your information as necessary to pursue our legitimate interests in marketing our Services. For example, where permitted by digital marketing law we may contact you by email to let you know of future events you might be interested in.
  • Providing, improving and developing the Services: We use your information as necessary to pursue our legitimate interests in tailoring and improving our Services. For example, if you are a customer, we may send you a survey or questionnaire to understand your experience in obtaining services from Loanitt. It is also in our legitimate interests to use your information to help provide us with insights as to future financial services you or others may require.
  1. SHARING YOUR INFORMATION

In the course of providing the Services, we share information with various third parties, including financial institutions, data storage providers and service providers such as Microsoft.

We do this based upon the legal bases and exceptions mentioned in section 7 of this Notice.

  • Keeping our Services Safe and Secure: We use your information in certain instances as necessary to pursue our and your legitimate interests of keeping some of our Services, such as our domains, websites, apps, offices and events, safe and secure. For example, we collect IP addresses and process log files to ensure our website and apps are not subject to fraudulent access.
  • Legal and safety reasons:We may retain, preserve, or share your information if we have a good-faith belief that it is reasonably necessary to (a) respond, based on applicable law, to a legal request (e.g., a subpoena, search warrant, court order, or other request from government or law enforcement); (b) detect, investigate, prevent, and address fraud and other illegal activity, security, or technical issues; (c) protect our rights, property, or safety; (d) enforce our Terms and Conditions or any other contracts we have with you; (e) prevent physical injury or other harm to any person or entity, including you and members of the public.
  • Service providers: We may share your personal information to help us provide our services and communicate with you. Categories of service providers include IT software and hosting providers and records-storage companies. Where such third parties are processors, these third parties are contractually required to use it only to provide their service to us and are contractually barred from using it for their own purposes.
  • Marketing third party services: Your personal data may be passed to a third party for consideration for alternative financial or insurance products. You can control whether this happens by opting in to this as part of the marketing preference options detailed on your application form provided to you at registration. These third parties may carry out additional credit reference searches against you.
  • Business re-organisation: In instances where our business is subject to a re-organisation, such as a merger or acquisition of some or all of its assets, we may, in accordance with our legitimate interests, need to share information in the course of the transaction. In such circumstances, your information may be disclosed, where permitted by applicable law, in connection with a corporate restructuring, sale, or assignment of assets, merger, or other changes of control or financial status of Loanitt.
  1. DATA TRANSFERS

In certain cases, we may need to transfer your information to recipients outside the European Economic Area (“EEA”), such as where it is necessary to provide our Services.

Where we transfer your information, we do so in accordance with EU data protection law. We only transfer personal information to these countries when it is necessary for the services we provide you, or it is necessary for the establishment, exercise or defence of legal claims or subject to safeguards that assure the protection of your information. We may rely on different legal mechanisms to ensure the transfer is lawful. If the recipient is in a country that is not deemed ‘adequate’ by the European Commission, we may enter into the ‘standard contractual clauses’ with the recipient. These are contracts that contain standard commitments approved by the EU Commission protecting the privacy and security of the information transferred.

Our third-party service providers may rely on Binding Corporate Rules for Processors (“BCR-P”), which are a global, company-wide privacy framework that allows the transfer of customer personal data outside of the EEA once approved by the European DPAs.

Please note that the privacy protections and the rights of authorities to access your information in some of these countries may not be the same as in your home country. We will only transfer information as permitted by law.

Microsoft, a third-party provider, is certified to the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the EU to the United States.

For further information, please contact us on dataprotection@Loanitt.ie.

  1. AUTOMATED DECISION MAKING AND PROFILING

Automated Decision Making refers to a decision which is taken solely on the basis of automated processing of your personal data. This means processing using, for example, software code or an algorithm, which does not require human intervention.

Profiling means using automated processes without human intervention (such as computer programmes) to analyse your personal data in order to evaluate your behaviour or to predict things about you which are relevant in an financial services context, such as your likely credit risk profile. As Profiling uses automated processing, it is sometimes connected with automated decision making. Not all profiling results in automated decision making, but it can do.

We may use automated decision making to carry out a credit check on prospective customers. In an underwriting context, profiling is routinely carried out on your information provided in your credit application to assess your individual risk in order to make a prediction about the likelihood of success in obtaining credit and to determine which financial institutions are most suitable to send your application to

You have certain rights in respect of automated decision making, where that decision has significant effects on you, including where it produces a legal effect on you. See Section 12 for more information about your rights.

  1. RETENTION

We will maintain appropriate technical and organisation measures to protect against accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to your information. We will provide a level of security that is proportionate to the risks that are presented by the processing activity, having regard to the state of the art, the costs of implementation and the nature, scope, context and purposes of the processing.

We will retain your personal data for as long as is necessary for the purposes set out in this Policy for as long as your account is active or as needed to provide you services or to perform our contract with you. We will retain and use your personal data to the extent necessary to comply with our legal obligations, to resolve disputes and to enforce our agreements.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements. We also consider regulatory and guidance issued by Central Bank of Ireland and the Data Protection Commission.

  1. YOUR RIGHTS

You have a number of rights in relation to your information that we process. To exercise these rights, please contact us at dataprotection@Loanitt.ie.

While some of these rights apply generally, certain rights apply only in specific circumstances. We describe these rights below.

  • Access: You have the right to request access to your information that we control.

You can ask us to:

  • confirm whether we are processing your personal data;
  • give you a copy of that data;
  • provide you with other information about your personal data such as what data we have, what we use it for, who we disclose it to, whether we transfer it abroad and how we protect it, how long we keep it for, what rights you have, how you can make a complaint, where we got your data from and whether we have carried out any Automated Decision Making or Profiling, to the extent that information has not already been provided to you in this Policy.

Data Protection Commissioner

21 Fitzwilliam Square, Dublin 2, D02 RD28, Ireland

Ph: 1890 252 231

Fax +353 57 868 4757

Email: info@dataprotection.ie

  1. THIRD PARTY SERVICES

Our websites, domains and apps may contain links to other websites and services, which are managed and controlled by third parties. Please note that this Notice does not apply in those cases and we are not responsible for the privacy practices of such third parties.

  1. AMENDING THE NOTICE

From time to time, we may amend this Notice/Privacy Policy from time to time. This might happen, for example, where we make changes to the Services. When such a change is made, we will post a revised version online. The Notice was last updated at the date indicated further below. Changes will be effective from the point at which they are posted. You have a responsibility to review this privacy policy periodically, so you are aware of any changes. By using our services, you agree to this privacy policy.

  1. CONTACT US

If you want to exercise you rights (described above), or if you have any questions about this Notice, please contact us as follows:

Loanitt Limited

Unit 6

Hebron House

Macdonagh Junction

Hebron Road

Kilkenny

R95 T91Y

Email:   dataprotection@Loanitt.ie

Telephone No.: +353 56 449 1422

Last updated: September 2021