Privacy Policy

Hi! We’re Tide. We put our Members at the heart of what we do.  We want to build long-lasting relationships based on transparency and trust. Thus, we have developed this Privacy Policy to explain how we treat your data and privacy when you use our products and services or when you visit our website. Our Privacy Policy is divided into the following sections: 

  • Who we are
  • Tide is your Data Controller
  • Tide is also your Data Processor in some cases 
  • When we are a ‘Data Processor’   
  • Third party providers of services available via the Tide Platform 
  • Personal data we collect 
  • Where we collect personal data and who we share it with 
  • Our key partners as Data Controllers 
  • Sharing anonymised data 
  • Third-party links 
  • How long we keep your personal data 
  • Transfer of your data out of the EEA 
  • Cookies and other tracking technologies 
  • Your rights 
  • How to contact us and how to complain 
  • How to withdraw your consent or opt-out of processing 
  • Security 
  • Keeping your data accurate
  • Updates to this Privacy Policy 

Who we are  

We’re Tide Platform Ltd, but you’ll know us better as Tide. We’re a company that respects your privacy and is committed to protecting your personal data – which is just what this privacy notice is for. 

Personal data we collect from you will be held by Tide Platform Ltd, which is part of the Tide company group. The Tide company group is made up of our main legal entity in the UK – Tide Platform Ltd; it’s branch in Sofia; Tide Platform Private Limited (India) and other entities that are or may become part of the Tide company group, collectively referred to as “Tide”, “we” or “us”. We’ll let you know which Tide or non-Tide company you have a relationship with when you take out a product or service with us. More information about us can be found on Our Website.

We are registered with the Information Commissioner’s Office (registration no. ZA165305) and are authorised and regulated by the Financial Conduct Authority (FCA) in the UK (reference no. 718743). 

We provide the Tide Products and Services which are all the products and services offered via our iOS and Android mobile applications available on the App Store and on Google Play (“Our App”) and via our website  identified by the following Uniform Resource Locator (URL): www.tide.co, including its subdomains (“Our Website”) (together, “the Tide Platform”).

Tide is your Data Controller    

Tide is the Data Controller of your data, which means we’re responsible for your personal data processed in relation to your use of the products and services accessible via the Tide Platform. When you receive services via the Tide Platform we collect, process, use and are responsible for certain personal data about you. When we do so, we are regulated under the applicable laws on the protection of personal data, privacy and electronic communications, including but not limited to The Data Protection Act 2018 (the “DPA 2018”, the United Kingdom General Data Protection Regulation (the “UK GDPR”) and The Privacy and Electronic Communications Regulations (“PECR”). 

For the purposes of these laws we are responsible as a ‘Data Controller’ for the processing of your personal data. If you have any queries about this Privacy Policy or how we or any other Tide Group company (may) collect, store or use your data, please contact us by email at hello@tide.co.

Throughout this Privacy Policy the terms “Personal Data”, “Data Controller”, “Data Processor”, “Data Processing”, “Data Subject” and “Profiling” shall have the meaning assigned to them by the applicable data protection laws mentioned above. 

Tide is also your Data Processor in some cases 

When we process personal data you provide to us that is related to other individuals (such as your employees or customers), we may be acting as a Data Processor (discussed below). 

When we are a ‘Data Processor’  

When using some of our services and products, Tide is a ‘Data Processor’ and you are a ‘Data Controller’, which means we process personal data solely for the purposes of providing you with our Tide Products and Services and based on your instructions. 

In particular, when you engage with Tide Products and Services, or those of our partners, that involve you providing your employee, customer or other third-party personal data, Tide will likely be acting as a Data Processor of that data. Such products and services include but are not limited to invoicing, bookkeeping, employee payroll and accountancy products and providers.  

When we act as a Data Processor we are required to have a written agreement in place with you which outlines how we process the personal data we process on your behalf and that you provide to us in your capacity of a Data Controller. We will let you know if you are using Tide Products and Services for which you are a ‘Data Controller’ and where you shall review and enter into a Data Processing Agreement (‘DPA’) with us. By using those services, you will be deemed to have read, reviewed and agreed to our DPA with you. If you have any questions about the DPA, please get in touch with us at dpo@tide.co.

Personal data we collect 

We collect personal data for a variety of reasons, including to meet our legal obligations, manage our operations, improve our business and deliver our services and products to you. 

Below is a list of types of personal data that we may collect and use when you apply for, or use, any of our products or services.

Type of personal data  Description Purpose Lawful basis
Contact Your name, addresses, e-mail addresses, phone numbers and other ways in which to contact you Managing our relationship with you or your business.

Communicating with you about our and our business partners’ products and services.

Delivering the Tide Products and Services to you, including to facilitate your use of the different Tide Services via single sign-on

Developing and carrying out marketing or business development activities.

Fulfilling our contract with you.

When it is our legal duty.

When you consent to it.

When it is in our legitimate interest to:

  • Communicate with our customers. 
  • Keep our records up to date.
  • Resolve issues and improve the service we provide to you. 
  • Optimise your user experience 
Transactional Details about the transactions you carry out and the payments to and from your accounts with us Making and managing customer payments.

Delivering our and our business partners’ products and services.

Managing fees, charges and interest due on customer accounts.

Collecting and recovering money that is owed to us.

Fulfilling our contract with you.

When it is our legal duty.

When you consent to it.

When it is in our legitimate interest to:

  • Facilitate delivery of our services and products. 
  • Develop products and services, our pricing for them and types of Members that may want to use them.
  • Develop and improve how we deal with financial crime, as well as discharging our legal duties in this respect.
Contractual Details about the products or services we provide to you Carrying out our obligations arising from and exercising our rights set out in our contracts.

Collecting and recovering money that is owed to us.

Operating our business in an efficient and proper way, including managing our financial position, business capability, planning, and audit.

Fulfilling our contract with you.

When it is our legal duty.

When you consent to it.

When it is in our legitimate interest to:

  • Understand and improve how we contract with our customers
  • Understand each party’s obligations and risks under any agreements
  • Be efficient about how we fulfil our legal and contractual duties.
Locational Data we get about where you are. This may come from the IP address assigned to your mobile phone or computer when you connect to the internet. It may also include locations where you used your Tide payment card or post codes. Delivering our and our business partners’ products and services.

Identifying, investigating, reporting and preventing fraud, security breaches, money laundering and other crime.

Fulfilling our contract with you.

When it is our legal duty.

When you consent to it.

When it is in our legitimate interest to:

  • Be efficient about how we fulfil our legal and contractual duties.
  • Determine the risks that applicants for a Tide account may pose to Tide’s business and our Members. 
  • Develop products and services, our pricing for them and types of Members that may want to use them.
Behavioural Details about how you use products and services offered on the Tide Platform from us and other organisations Studying how our Members use products and services from us and other organisations.

Delivering more personalised user experiences to our Members.

Developing and carrying out marketing or business development activities.

Fulfilling our contract with you.

When it is our legal duty.

When you consent to it.

When it is in our legitimate interest to:

  • Work out which of our products and services may interest you and telling you about them.
  • Develop products and services, our pricing for them and types of Members that may want to use them.
Technical Details on the devices and technology you use, for example your website browser settings, marketing choices.  Delivering our products and services to you. 

Delivering our and our business partners’ products and services.

Identifying, investigating, reporting and preventing fraud, money laundering and other crime.

Developing and carrying out marketing or business development activities.

Fulfilling our contract with you.

When it is our legal duty.

When you consent to it.

When it is in our legitimate interest to:

  • Be efficient about how we fulfil our legal and contractual duties.
  • Develop products and services, our pricing for them and types of Members that may want to use them.
Communication Any emails, calls or other communications you’ve sent to us or we’ve sent to you

What we learn about you from communications between us

Investigating and responding to your enquiries, complaints and feedback. Fulfilling our contract with you.

When it is our legal duty.

When you consent to it.

When it is in our legitimate interest to:

  • Communicate with our customers. 
  • Be efficient about how we fulfil our legal and contractual duties.
  • Resolve issues and improve the service we provide to you. 
Public and third-party records Details about you that are in public records, such as the Electoral Register, Companies House, and data about you that is publicly available on the Internet. We also collect data about you which we receive from other companies, such as credit reference or fraud protection agencies like the CIFAS register. Identifying, investigating, reporting and preventing fraud, money laundering and other crime.

Registering you with a Tide account. 

Developing and carrying out marketing or business development activities.

Fulfilling our contract with you.

When it is our legal duty.

When you consent to it.

When it is in our legitimate interest to:

  • Determine the risks that applicants for a Tide account may pose to Tide’s business and our members. 
  • Keep our records up to date.
  • Work out which of our products and services may interest you and telling you about them.
  • Develop products and services, our pricing for them and types of Members that may want to use them.
Usage data Data about how you use our products and services Studying how our Members use products and services from us and other organisations 

Testing new products

Managing how we work with other companies that provide services to us and our Members

Developing and carrying out marketing or business development activities.

Fulfilling our contract with you.

When it is our legal duty.

When you consent to it.

When it is in our legitimate interest to:

  • Work out which of our products and services may interest you and telling you about them.
  • Determine the risks that Tide Members may pose to Tide’s business and our Members. 
  • Develop products and services, our pricing for them and types of Members that may want to use them.
Documentary data Details about you that are stored in documents in different formats, or copies of them. This could include things like your passport, driver’s licence, photographs or birth certificate. Identifying, investigating, reporting and preventing fraud, money laundering and other crime.

 

Complying with laws and regulations.

Fulfilling our contract with you.

When it is our legal duty.

When you consent to it.

When it is in our legitimate interest to:

  • Be efficient about how we fulfil our legal and contractual duties.
  • Develop and improve how we deal with financial crime, as well as doing our legal duties in this respect.
  • Determine the risks that applicants for a Tide account may pose to Tide’s business and our Members. 
Consents Any permissions, consents or preferences that you give us So we know what your preferences are in regards to marketing, automated decision-making and profiling (where this activity is based on your consent), cookies and any other relevant processing activities that you can opt-out of. 

Developing and carrying out marketing or business development activities.

Fulfilling our contract with you.

When it is our legal duty.

When you consent to it.

When it is in our legitimate interest to:

  • Keep our records up to date.
  • Ask for your consent when we need it to contact you.
Special category data and criminal offence data Categories of data defined as ‘special category’ or ‘sensitive’ by applicable laws, including personal data related to your racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union members, genetic data, biometric data, health, sex life or sexual orientation. We may also process data about your criminal offence history.

In particular, we may collect data related to your health (such as disability data), biometric data (photos of you) and racial or ethnic origin (how you identify your ethnicity).

Understanding our community and the type of Members we work with, including about ethnicity, gender and health.

Operating our business in a proper way, including corporate responsibility. 

Fulfilling our contract with you.

When it is our legal duty.

When you provide explicit consent. It is in the public interest. It is in your vital interest to protect yours or someone else’s life. 
Your customer or employee data Any data that you provide us with about your employees or customers including contact details, personal details (e.g., name, date of birth, bank account information) in our capacity as your data processor.  Delivering our and our business partners’ products and services to you. When you have instructed us to do so and by virtue of your existing contractual relationship with us. 

 

Automated decision-making and profiling 

 To make quicker and more consistent decisions, we may also conduct automated individual decision-making. This means that we may analyse information about you via technological means to assess your personal circumstances and thus predict risks or outcomes. For example, we perform automated decision making in the following cases: 

  • When you sign up for an account on the Tide Platform.
  • When you apply for credit services via the Tide Platform.
  • When we monitor transactions on the Tide Platform to detect and prevent financial crime.

When we take automated decisions that significantly affect you in those and any other circumstances, you can request a review of such a decision by Tide, express your point of view or contest the decision by contacting us at dpo@tide.co or via Our App.

Tide may also conduct profiling for purposes of communicating effectively with you, for example, to send you relevant notifications or updates, according to the type of services usage, interests of different groups of Members. Tide may also use such profiling for targeted or direct marketing purposes (for example, to issue advertisements tailored to your usage or interests in Tide Products and Services or depending on your account information or usage of in-app or other app services). 

Where we collect personal data and who we share it with  

We may collect personal data about you (or your business) from other Tide Group companies and any of these sources:

Information from you 

This includes data given by you or your business, as well as data provided by people linked with you or your business’ product or service, or people working on your behalf, among others:

  • When you apply for our products and services
  • When you talk to us on the phone
  • When you use Our Website or Our App
  • In emails, web chats and letters
  • In surveys
  • If you take part in our competitions or promotions.

Information collected from and shared with others

We collect personal data from a number of different third-parties, including our service partners, such as PrePay Solutions and ClearBank (defined below).

Type of third party Description Collect Share
Members of the Tide Group Our affiliated companies 
Clear Bank and PPS Our key service partners. 
Credit reference agencies (CRAs) We carry out credit checks when you apply for a product or services for your business. We may use domestic or international CRAs or other to help us with this.

If you use some of our products or services, from time to time, we may also search or use data that the CRAs have, to help us manage those accounts and to comply with our legal and other obligations. We will also share your personal data with CRAs and they will give us data about you for the same reasons stated in this Privacy Policy. This data may include data about settled accounts or any debts not fully repaid on time.

The identities of the CRAs, and the ways in which they use and share personal data are explained in more detail at TransUnion, Equifax and Experian.

Fraud prevention agencies We share and collect data with fraud prevention agencies like CIFAS to prevent fraud and money-laundering and to verify your identity. These verifications for purposes of fraud prevention can result in refusal of services or credit products.
Support tools and operational partners These include analytics, search engine service providers, customer experience support platforms to optimise and improve our services, as well as subcontractors we may use to supplement our customer support resources.  X
Hosting and IT service providers IT vendors, including cloud storage providers, to securely store your personal data.  X
Tide card manufacturers and delivery providers Card manufacturing, personalisation and delivery companies.  X
Payment processing partners and vendors Financial services providers, including card issuers, payment processors and banking partners to facilitate payment transactions. These third parties may be part of Open Banking, which means they may be able to send information they hold about your account and transactions to us (based on your consent). 
Identity and other information verification providers We work with third parties to verify the information you provide to us, for example your identity and address.
Partner platforms, providing business services We work with partners to offer you ‘add-ons’ to our service and products. Such products and services may include invoicing, bookkeeping, employee payroll and accountancy products and providers.
Social networks and other online platforms providers Social media sites, for the purposes of conducting market research, marketing campaigns, targeted and retargeted marketing and understanding the success of our marketing activities. 

These social media sites may check if you hold an account with them and, based on the characteristics they have about you,  provide targeted advertising to you (for example, to show you tailored advertisements on their social media platforms, depending on your potential interest in Tide Products and Services). 

Public data sources Companies House, LinkedIn and other public data sources.  X
Marketing, business development and sales partners Third parties that help us generate sales and marketing leads, and create and deliver our marketing activities. 
Data services third parties Such as data analytics and insight firms, for example to test the quality of our data, to improve the effectiveness of our crime prevention controls, etc. X
Government and regulatory organisations Government, law enforcement agencies, authorities and regulatory bodies when Tide has to comply with its legal obligations. X

 

Our key partners as Data Controllers  

In addition to the above ways in which we process and share your personal data, Tide also shares this data with companies who are integral in allowing us to offer our products and services to members. 

The companies listed below become Data Controllers in relation to your personal data shared with them. This means that if you would like to exercise any of the rights afforded to you by the personal data protection laws applicable to your case, these companies must be contacted separately from Tide. The following ways describe how and why we share your data with them: 

ClearBank

ClearBank Limited (“ClearBank”) provides the bank account under the Tide Platform Terms of Use and the Bank Account Terms. Generally speaking, ClearBank holds and processes your personal data for the same reasons and in similar ways to Tide.

Who is ClearBank and why do they handle my data?

ClearBank is a Data Controller in relation to your bank account and all necessary activities relating to the operation of the bank account: allowing you to establish, access and operate your bank account. ClearBank does not use your personal data for marketing purposes and will not share your personal data with third parties for marketing purposes.

What personal data does ClearBank process?

ClearBank processes your personal data in accordance with its Privacy Notice. Please read that Privacy Notice to understand how and why ClearBank processes your personal data and the details of any third-party who has access to that data.

How do I contact ClearBank?

You can contact ClearBank’s Data Protection Officer at dataprotectionofficer@clear.bank, by telephoning 0203 1112328, or by writing to:

The Data Protection Officer

ClearBank
13 Dirty Lane,
Borough Yards,
London, SE1 9PA

Prepay Technologies Limited

Prepay Technologies Limited trading as Prepay Solutions (PPS) provides the prepaid Mastercard under the Tide Platform Terms of Use and the Tide Card Terms and Conditions.

Who is PPS and why do they handle my data?

PPS is a Data Controller in relation to your card and all necessary activities relating to the operation of the card: allowing you to receive, activate and use your Card. The processing of your personal data is necessary for the performance of your contract for the issue and operation of cards and is necessary for compliance with legal and regulatory obligations applicable to PPS. PPS does not use your personal data for marketing purposes and will not share your personal data with third parties for marketing purposes.

What personal data does PPS process?

  • Personal details: full name and date of birth.
  • Contact details: where you live and how to contact you, including phone numbers and email addresses.
  • Transactional and card data: details about your Card, use of your Card and payments to and from your accounts.
  • Documentary data: details about you that are stored in documents and in various formats, or copies of them. This could include things like (without limitation) your passport, driver’s license or birth certification collected to fulfil customer due diligence requirements. 

Personal data will only be collected directly and voluntarily from you as part of the application process or as a result of transactions relating to your Card(s). Some personal data may be verified by PPS with the use of publicly accessible sources to fulfil customer due diligence.

Sending personal data outside of the UK or EEA

PPS will only send your personal data outside of the UK or EEA if:

  • You have instructed PPS to do that; or
  • There is a legal or regulatory duty imposed upon PPS to make such a transfer. In such cases, PPS will ensure that the parties who process that particular personal data do so in accordance with the applicable laws on the protection of personal data and privacy.

In relation to personal data processed by Mastercard as a service provider to PPS certain processors are located outside of the UK and the EEA. Personal data processed by Mastercard is subject to Mastercard Binding Corporate Rules (BCRs) which you have enforcement rights under as a third-party beneficiary.

Does PPS send my personal data to any third parties?

PPS is committed to ensuring that your data is secure with us and with third parties who act on our behalf. These third parties include MasterCard, card manufacturers, suppliers of identity validation services, IVR and call recording (telephone) suppliers and to Tide. PPS uses certain tools to make sure that your data remains confidential and accurate and is only processed in accordance with applicable laws.

How long does PPS hold my personal data?

PPS only holds your personal data in accordance with its established policies and usually no longer than 7 years after the termination of your contract. The retention period may be longer for legal or regulatory reasons, but all personal data will be destroyed as soon as practicable in all other cases.

How do I contact PPS?

You can contact PPS’ DPO at dpo@prepaysolutions.com or by writing to:

PPS DPO

PO Box 3883

Swindon

SN3 9EA.

Sharing anonymised data 

In addition to the data sharing listed above, we may share some data to other companies outside the Tide Group, but only when it is converted so that no person’s identity can be known or found out and is no longer considered personal data under the law (anonymised data).

Third-party links and third-party providers of products and services available via the Tide Platform 

Occasionally, at our reasonable discretion, we may include or offer products or services to you from our business partners (third parties). These are independent service providers whose services are made available to you or promoted via the Tide Platform (for example invoicing, accounting, payment processing, direct debit and credit loan providers). 

As a Tide member, you can opt to make use of these services, such that your data may be shared with the third-party providers or we may redirect you to the third-party provider. The personal data we may share and collect in those cases may include, depending on the service involved, and by way of example, the name and contact details of your business, your employees’ data and payroll data, invoicing data, your customer data and any other data that the provider may require to deliver the product or service requested by you. 

Business partners may act as data processors to Tide or as data controllers. When business partners act as Data Processors to Tide, they will process your personal data solely to deliver the Tide Products and Services that you have requested and as described in this Privacy Policy. When business partners act as separate Data Controllers – they will have their own and independent privacy policies that apply when you use their products and services or visit their website. We (and any other Tide Group company; or any of our Tide company directors, officers, agents, contractors, sub-contractors or workers) have no responsibility or liability (however so caused) for the content, activities, data processing and services relating to those service providers or their linked websites. You can contact those third-party business partners for more data on how they may use your data.

How long we keep your personal data 

We will keep your personal data as long as you are a customer of Tide.

We may keep your personal data after you stop being a customer. The reasons we may do this are:

  • To respond to a question or complaint, or to show whether we gave you fair treatment
  • To establish, exercise or defend our legal claims
  • To study customer data as part of our own research when this will not cause harm to your privacy and personal data protection rights 
  • To comply with legal rules that apply to us about keeping records or information in which case we will retain your data for a minimum of six years after your account has been terminated or longer depending on domestic laws. 

We may also keep your data if certain laws that Tide is subject to stipulate that we cannot delete it for legal, regulatory or technical reasons.

Transfer of your data out of the United Kingdom or the European Economic Area 

The personal data that we hold will be stored by Tide in the UK or the European Economic Area (EEA), but may also be transferred to, and stored at, a destination outside the UK or EEA, with and by third parties, when this is necessary for us to provide our products or run our services. If we do transfer your personal data outside the UK or EEA, we will make sure that it is protected to the same extent as in the UK and EEA. We’ll use one of these legal safeguards:

  • Transfer it to a non-UK or non-EEA country with privacy laws that give the same protection as those under the UK or the EEA.
  • Put in place a contract with the recipient that means they must protect it to the same standards as the UK and EEA.
  • Use the standard contractual clauses approved by the EU or UK authorities under EU and UK data protection laws. 

 

In the second and third case we will also make sure to supplement the transfer tools that we rely on with sufficient additional safeguards to comply with UK/EEA personal data rules.

 

Please contact us if you want further data on the specific mechanism used by us when transferring your personal data out of the UK or the EEA.

Cookies and other tracking technologies 

We may use cookies to distinguish you from other users of our products or services when you visit Our Website or use Our App. This helps us provide you with a good experience, allows us to improve our products or services, keep Our Website and Our App safe and present you with advertising content that is relevant to you. A cookie is a small file of letters and numbers that we store on your browser or the hard drive of your device when you visit Our Website or use Our App. Cookies send data back to the originating website or app on each subsequent visit, or to another website which recognises that cookie. Cookies also make it easier for you to log in and use the Tide Platform. 

We may use the following cookies:

  • Strictly necessary cookies required for the operation of our products or services (including, for example, cookies that enable you to log into secure accounts and use interactive features);
  • Analytical/performance cookies that allow us to recognise and count the number of visitors and users and see how they use our products or services (e.g., to help us improve the way our products or services work or are provided, by ensuring that users easily find what they are looking for);
  • Functionality cookies to help us recognise you when you return to Our Website (this enables us to e.g., personalise our content for you, greet you by name and remember your preferences, such as choice of language or region);
  • Targeting cookies to record your visit to Our Website, the pages you have visited and the links you have followed. We may use this data to make our products and services and the data displayed on it, which we reasonably think is more relevant to your interests. We may also share this data with third parties for this purpose. In some instances, with respect to targeting cookies we act as joint controllers with third parties, such as social media platform TikTok.

For more detailed information on what specific cookies we use, please read our Cookie Policy.

You can block or disable cookies by activating the setting on your website browser that allows you to refuse the setting of all or some cookies or through the banner on Our Website and in the “Cookie Settings” page in the footer of Our Website. All browsers provide tools that allow you to control how you handle cookies: accept, reject or delete them. These settings are normally accessed via the ‘settings’, ‘preferences’ or ‘options’ menu of the browser you are using, but you could also look for a ‘help’ function or contact the browser provider. However, if you set your browser settings to block or disable all cookies (including essential cookies) you may not be able to access all or parts of the Tide Platform for which we require the use of cookies. 

Your rights 

Under the DPA 2018 and the UK GDPR, you are entitled to the following rights:

  • Question any data about you that you think is incorrect and have us take reasonable steps to correct it for you
  • To be told about how we process your data
  • Require the erasure of personal data concerning you in certain situations
  • Access personal data and copies (free of charge, where reasonable for us to do so at the time) concerning you collected by us in the course of our relationship with you
  • Object at any time to processing of personal data concerning you for e.g., direct marketing
  • Object to decisions being taken by automated means which produce legal effects concerning you or which similarly may significantly affect you
  • Object in certain other situations to our continued processing of your personal data
  • Otherwise, restrict our processing of your personal data in certain circumstances
  • The right to move, copy or transfer your personal data (where reasonable and proportionate for us to do so).

For further data on each of those rights, including the circumstances in which they apply, see the Guidance from the UK Information Commissioner’s Office (ICO) on individual rights under the GDPR .

Please note that your specific rights may vary depending on the country you are established in.

If you would like to exercise your rights, please contact us at hello@tide.co or at:

Tide Platform Ltd
5th Floor
1 Appold Street
London
EC2A 2UT
United Kingdom

How to contact us and how to complain 

We hope that our Data Protection Officer (DPO) can resolve any query or concern you raise about our use of your data. You can write to our DPO at dpo@tide.co or at Tide Platform Ltd, 5th Floor, 1 Appold Street, London, EC2A 2UT, United Kingdom.

You also have the right to complain to the regulator. The supervisory authority in the UK is the Information Commissioner’s Office (ICO). You can find out how to report a concern on their website – https://ico.org.uk/.

How to withdraw your consent or opt-out of processing 

You can withdraw your consent to our processing of your data at any time. Please contact us if you want to do so at hello@tide.co.

This will only affect the way we use data when our basis for processing your data is your consent. See the section ‘Your Rights’ and more specifically your right to restricting use of your data.

You may also opt out of some forms of data processing we are conducting, such as: 

    • Marketing, including email, phone and SMS marketing.
    • Social media and targeted marketing, including retargeting and curated audiences. 
  • Non-essential cookie collection on Our Website. You may be unable to opt out of ‘necessary’ cookies as discussed above. 
  • Non-essential profiling and automated decision-making, including those activities undertaken for marketing purposes. 

If you withdraw your consent and/or opt-out, we may not be able to provide certain products or services to you. If this is so, we will tell you. You then have the option to give us your consent again if you want to access our products or services.

Security 

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, changed, shared or accessed in a way it shouldn’t be. We will employ adequate technical and organisational security measures to protect your personal data. These methods include: 

  • The pseudonymisation and encryption of personal data, where possible.
  • Ensuring the ongoing confidentiality, integrity, availability and resilience of processing systems and services via role-based access controls, confidentiality undertakings of our staff, etc.
  • The ability to restore the availability and access to personal data quickly in the event of or technical incident. 
  • A process for regularly testing, assessing and evaluating the effectiveness of our technical and organisational measures.

We will also limit access to your personal data to employees, agents, contractors and other third parties who have a strict need to see it in order to perform their business functions. They will only process your personal data on a ‘need-to-know’ basis, pursuant to our instructions and they will keep your personal data confidential. 

We have put in place procedures to deal with any suspected personal data breach and will let you and any applicable regulator know of a breach when we have to by law.

Keeping your data accurate 

We will use reasonable efforts to ensure that your personal data is accurate, complete and up-to-date. Please ensure you notify us without undue delay of any changes to the personal data that you have provided to us by updating your details on the Tide Platform or by contacting us at the details provided in this Privacy Policy.

Updates to this Privacy Policy 

We may update this Privacy Policy from time to time to ensure that it remains accurate. Please check back from to time to time for updates.

This Privacy Policy was last updated on 8 November 2021.