Privacy Policy

  • You are here: Home
  • Privacy Policy

Privacy Policy

Credicorp Limited (company number 16093826) (“Credicorp”, “we”, “us” or “our”) is committed to ensuring that the privacy of your personal information is respected and maintained at all times.

We are bound by the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018 and other applicable laws and codes governing the handling of personal information.

We only collect personal information as required or authorised by law. This Privacy Policy explains the ways and circumstances in which we collect personal information, how we use, store and disclose it, how we keep it secure, and how you can access and correct it.

What is personal information?

Personal information (also referred to as “personal data” under the UK GDPR) is information or an opinion that relates to an identified or identifiable individual:

  • whether the information or opinion is true or not; and
  • whether the information or opinion is recorded in a material form or not.

The types of personal information that Credicorp typically collects include your:

  • name;
  • contact details (such as address, telephone number and email address);
  • date of birth;
  • account details;
  • gender;
  • marital status and other household information, such as the number and age of dependants;
  • occupation and employment information;
  • financial information, such as assets, liabilities, income and expenditure;
  • complaint details; and
  • involvement as a party in pending or completed legal proceedings.

Other personal information that we collect relates to credit information, which typically includes:

  • identification information;
  • credit account information;
  • credit history;
  • the type and amount of credit;
  • details of amounts payable and when they are payable;
  • repayment history, including when payments were made and whether they were made when due; and
  • default information.

How does Credicorp collect personal information?

We collect personal information from a range of sources. This may include collecting personal information from:

  • you (and, in some cases, your family, friends or other third-party associates);
  • your authorised representative (such as your legal or financial adviser);
  • other credit providers;
  • credit reference agencies; and
  • publicly available sources.

Why does Credicorp collect personal information?

We collect personal information that is reasonably necessary for one or more of our functions or activities. We collect personal information about you so that we can:

  • identify you;
  • contact you;
  • assess your eligibility for an account with us;
  • respond to your enquiries;
  • provide you with our products and services;
  • manage your account with us;
  • send you offers of, or information about, goods and services that we or selected third parties may be able to provide and that we think may interest you, unless you ask us not to;
  • collect amounts owing under your account and enter into payment arrangements with you;
  • comply with relevant laws and regulations;
  • detect and mitigate fraud and financial risk;
  • maintain, protect and improve the security of our systems, products and services; and
  • any other purpose for which you give your consent.

Our lawful bases for processing

Under the UK GDPR, we must have a lawful basis for processing your personal information. Depending on the circumstances, we rely on one or more of the following:

  • Performance of a contract — where processing is necessary to enter into or carry out a contract with you;
  • Legal obligation — where we must process your information to comply with the law;
  • Legitimate interests — where processing is necessary for our legitimate interests (such as managing accounts, recovering debts, preventing fraud and improving our services), provided these are not overridden by your rights and interests;
  • Consent — where you have given us consent, for example for certain marketing; and
  • Legal claims — where processing is necessary in connection with legal proceedings.

You can withdraw any consent you have given at any time by contacting us using the details below.

If we do not collect your personal information, we may be unable, or delayed, in identifying you, contacting you or providing our services to you.

Special category data

In certain circumstances, we may collect “special category data” (such as information about your health). We only collect and use special category data where you have given your explicit consent or where we are otherwise permitted to do so by law.

Government identifiers

We do not use your National Insurance number, passport number, driving licence number or any other government-related identifier as an account number or as our own identifier for you. However, we may ask you for one of these identifiers to confirm your identity when you deal with us.

Protecting your personal information

We are committed to keeping your personal information secure. We store information in both hard-copy and electronic form, and we take appropriate technical and organisational measures to protect it from misuse, loss, and unauthorised access, modification or disclosure. These measures include:

  • securing our databases with password protection and secure servers and storage devices;
  • encrypting certain records;
  • training our staff on confidentiality and data protection; and
  • restricting access to personal information to those who need it to perform their role.

Disclosure of personal information

We only disclose personal information as permitted or required by law. This may involve disclosing it to:

  • other companies within the same group as Credicorp (if any);
  • our authorised agents;
  • our legal advisers;
  • your authorised representatives;
  • courts and tribunals;
  • our service providers, where we outsource functions (such as process serving, debt recovery, bulk mailing or document storage);
  • any entity that may acquire, or may consider acquiring, an interest in your account; and
  • other persons with your consent.

Disclosure to credit reference agencies

Where we provide credit, we may disclose certain credit-related personal information to credit reference agencies. For example, if you fail to meet your repayment obligations, we may be entitled to disclose this to a credit reference agency. Credit reference agencies may include this information in reports provided to other credit providers to help them assess creditworthiness.

The UK credit reference agencies are Experian, Equifax and TransUnion. Each publishes its own information about how it handles credit-related data, and together they publish the Credit Reference Agency Information Notice (CRAIN), which explains how credit reference agencies use personal information. You can find more information on each agency’s website:

  • Experian — www.experian.co.uk
  • Equifax — www.equifax.co.uk
  • TransUnion — www.transunion.co.uk

International transfers

We are based in the United Kingdom. In some circumstances we may transfer your personal information to, or store it in, a country outside the UK — for example, where a service provider or another group company is located overseas.

Where we transfer personal information outside the UK, we take steps to ensure it remains protected to a standard consistent with UK data protection law. This may include relying on “adequacy regulations” made by the UK Government, or putting in place appropriate safeguards such as the International Data Transfer Agreement (IDTA) or the UK Addendum to the EU Standard Contractual Clauses.

Your rights

Under UK data protection law, you have a number of rights in relation to your personal information, including the right to:

  • request access to the personal information we hold about you;
  • ask us to correct information that is inaccurate or incomplete;
  • ask us to delete your personal information in certain circumstances;
  • ask us to restrict or object to our processing of your personal information in certain circumstances;
  • request that we transfer certain information to you or another organisation; and
  • withdraw your consent where we rely on consent to process your information.

Accessing and correcting your personal information

You have the right to request access to the personal information (including credit information) we hold about you, and to ask for it to be corrected. You can make a request by contacting customercare@credicorp.co.uk.

We will respond to your request within one month of receiving it. If your request is complex, or you have made a number of requests, we may extend this period by up to two further months, and we will let you know if we need to do so.

In some circumstances we may be unable to provide access to all of the personal information you request — for example, where doing so would:

  • have an unreasonable impact on the privacy of others;
  • relate to existing or anticipated legal proceedings;
  • reveal our intentions in relation to negotiations with you in a way that would prejudice those negotiations;
  • be unlawful; or
  • where the request is manifestly unfounded or excessive.

If we cannot provide access to some or all of your personal information, we will explain why.

Access to your personal information is generally provided free of charge. We may charge a reasonable fee, or decline to act, only where a request is manifestly unfounded or excessive, and we will explain this to you before proceeding.

We take reasonable steps to ensure the personal information we hold is accurate, complete and up to date. If you believe the information we hold about you is incorrect, please contact us using the details below.

Cookies and our website

Our website uses cookies. A cookie is a small text file that a website may place on your computer or mobile device to remember your preferences. Cookies may allow us to identify the pages you access and the site you visited previously. You can set your browser to refuse cookies, although this may mean you are unable to use the full functionality of our website.

We also use online advertising and analytics tools, such as Google Analytics. Like cookies, these tools collect data about how you interact with our website, and they may involve third-party vendors, including Google, using cookies to collect data and display our advertisements on websites across the internet. You can find out more about how Google uses this data at www.google.com/policies/privacy/partners, and you can opt out of Google Analytics at https://tools.google.com/dlpage/gaoptout. We may also interact with social media platforms, such as Facebook, for advertising purposes.

Where required, we will ask for your consent to non-essential cookies and similar technologies before they are used.

Contacting us

You can obtain more information about how Credicorp manages your personal information, or about accessing and correcting it, by contacting us:

Customer Care
Credicorp Limited
Suite 53c Unimix House
Abbey Road
London
NW10 7TR

Telephone: +44 7946 812112
Email: customercare@credicorp.co.uk

You can find further information about data protection in the UK on the website of the Information Commissioner’s Office (ICO) at www.ico.org.uk.

Making a complaint

If you believe we have breached this Privacy Policy or UK data protection law, you can make a complaint by contacting:

Customer Care Credicorp Limited Telephone: +44 7946 812112 Email: customercare@credicorp.co.uk

We will deal with your complaint as soon as is reasonably practicable.

If you are not satisfied with our response, you have the right to complain to the Information Commissioner’s Office (ICO), the UK’s data protection regulator. The ICO can be contacted at www.ico.org.uk, by telephone on 0303 123 1113, or by post at Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF.

Changes to this Privacy Policy

We may review this Privacy Policy from time to time, and we reserve the right to change it at any time. Any revised version will be published on our website.

This Privacy Policy was last updated in May 2026.

Contact Us