Privacy Policy

Effective date: 1 May 2025

1. Who we are

FaberFlow (trading name — UK legal entity registration pending) operates the FaberFlow platform. This Privacy Policy explains how we collect, use, store, and share your personal information when you use our services. We are committed to protecting your privacy in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Information we collect

Account information

Name, email address, phone number, and password when you register. Tradespeople additionally provide trade type, location, and identity documents for verification.

Financial information

Bank account details for payouts (tradespeople). Card or bank account details for repayments (clients). These are processed securely via Stripe and are never stored in full on our servers.

Credit assessment data

For clients, we collect and process information required to assess creditworthiness, which may include income indicators, identification numbers, and credit history obtained from third-party bureaus.

Usage data

Log data, device information, IP addresses, and in-app activity used to operate, secure, and improve the platform.

3. How we use your information

  • To create and manage your account
  • To process quotes, payouts, and repayments
  • To perform credit assessments on client applications
  • To verify tradesperson identity and trade credentials
  • To send transactional notifications (payment confirmations, repayment reminders)
  • To detect and prevent fraud and abuse
  • To comply with legal and regulatory obligations
  • To improve and personalise the platform experience

We will not use your personal information for marketing communications without your explicit consent.

4. Sharing your information

We share personal information only as necessary:

Stripe
Our payment processor. Handles all card and bank transactions securely.
Credit bureaus
To perform client credit assessments with your consent.
Identity verification providers
To verify tradesperson identity documents.
Law enforcement / regulators
Where required by law or court order.

We do not sell your personal information to any third party.

5. Data retention

We retain your account data for as long as your account is active. After account closure, we retain certain records for a minimum of 5 years to comply with financial and regulatory obligations. Credit assessment data is retained for the duration required by applicable credit legislation.

6. Security

We use industry-standard security measures including encryption in transit (TLS), encryption at rest, and strict access controls to protect your data. No method of transmission over the internet is 100% secure; we cannot guarantee absolute security but take every reasonable precaution.

7. Your rights

Under the UK GDPR and Data Protection Act 2018, you have the right to:

  • Access the personal information we hold about you
  • Request correction of inaccurate information
  • Request deletion of your data, subject to legal retention requirements
  • Object to or restrict processing of your data for certain purposes
  • Data portability where processing is based on consent or contract
  • Lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk

To exercise any of these rights, contact us at verify@faberflow.co.uk. We will respond within one calendar month.

8. Cookies

FaberFlow uses only essential cookies required to operate the platform (authentication sessions and security tokens). We do not use tracking or advertising cookies.

9. Changes to this policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or in-app notification. The effective date at the top of this page will always reflect the most recent revision.

10. Contact

Privacy questions or requests can be directed to verify@faberflow.co.uk.