Privacy Policy – Ponte Finance PLC

Effective Date: August 19, 2025

Who we are

Ponte Finance PLC (“we”, “us”) is a UK property finance firm specialising in bridge loans. We are the data controller for personal data processed via our website and services.

• Registered office: 225 Clapham Road London SW9 9BE
• Company number: 15859004
• Contact (data rights): privacy@ponte.finance

1. What data we collect

• Identity & Contact: name, DOB, address, email, phone, ID docs.
• Financial & Application: income, assets, liabilities, property details, bank info.
• Credit & Risk: credit history, affordability, fraud/risk flags.
• Usage & Tech: IP, device, pages viewed, cookies.

2. How we collect it

• Directly from you (forms, calls, emails).
• From brokers/introducers (if you apply via partners).
• From Credit Reference Agencies (CRAs) and fraud-prevention/KYC providers.
• Public sources and sanction/PEP lists where required.

3. Why we use it (purposes)

• Assess and underwrite bridge loan applications.
• Perform KYC/AML, fraud prevention, and regulatory reporting.
• Manage relationships, service contracts, and communications.
• Improve our services, website analytics, and security.
• Marketing only with your consent (you can opt out anytime).

4. Our legal bases (UK GDPR)

• Contract (to assess/provide finance you request).
• Legal obligation (AML/KYC, tax/regulatory duties).
• Legitimate interests (risk management, fraud prevention, service quality).
• Consent (e.g., for marketing).

5. Sharing your data

We share data with:

• CRAs and fraud-prevention agencies.
• KYC/AML providers and screening databases.
• Professional advisers (lawyers, auditors), valuers, surveyors.
• Lenders/funders/insurers involved in underwriting your facility.]
• IT/service vendors under contract.
• Regulators/authorities (e.g., HMRC, law enforcement) where required. 

  We never sell your data.

  Credit reference & fraud prevention: CRAs record our searches; this may affect other lenders’ decisions. They share data with other organisations to assess applications, verify identity, and
  prevent crime. You can read each CRA’s “credit reference agency information notice (CRAIN)” via their websites (Experian, Equifax, TransUnion).

6. International transfers

If we transfer data outside the UK, we use appropriate safeguards (e.g., UK IDTA/SCCs) and conduct risk assessments.

7. Retention

• Applications & finance records: usually up to 6 years after the end of the relationship.
• KYC/AML records: typically 5 years from the end of the business relationship.
• Unsuccessful enquiries: retained for 12–24 months for audit and fraud prevention.

8. Your rights

You can access, rectify, erase, restrict, object, and port your data; you can withdraw consent (marketing) anytime. To exercise rights, contact privacy@pontefinance.co.uk.

You may also complain to the ICO (Information Commissioner’s Office)

9. Marketing

We send marketing only if you’ve opted in. You can unsubscribe via any email or by contacting us.

10. Cookies

We use cookies for essential functionality, analytics, and performance. Manage preferences via our Cookie Banner or browser settings. See our Cookie Policy for details.

11. Automated decisions / profiling

We use credit, affordability, and risk scoring to support underwriting decisions. Human review is available; contact us if you wish to contest a decision or request human intervention

12. Changes to this notice

We may update this notice; the latest version is published here with a new “Last updated” date.

Contact

Data Protection Officer, Ponte Finance PLC
privacy@ponte.finance