Data Controller: Axiom Digital Systems Ltd (Co. 17031903). Modo Insight is a trading name of Axiom Digital
Systems Ltd. ICO Registration Number:ZC112218
1. Introduction
Axiom Digital Systems Ltd ("we", "our", or "us") respects your privacy and is committed to protecting your
personal data. This policy explains how we collect and process data across our services, including our
technology consultancy and the Modo Insight application.
2. Data Collection & Processing
As a fintech service provider, we collect and process data under the following conditions:
Purpose of Ingestion (Modo Insight): We collect and process read-only financial data for
the express purpose of providing Open Banking Account Information Services. This data is
retrieved via our authorised Open Banking provider (TrueLayer) and is used solely to provide financial
analysis, categorisation, and insights. We do not facilitate financial transactions or have write-access to
your accounts.
Biometric Data: The Modo app utilizes your device's native biometric authentication
(TouchID/FaceID) for secure access. This data remains on your secure device enclave and is never transmitted
to or stored by our servers.
3. Legal Basis for Processing
We process your personal data based on the following legal grounds:
Legitimate Interests: Necessary to provide our core services and maintain our
infrastructure.
Consent: For marketing communications and optional data features (which you may withdraw at
any time).
4. Data Retention
We adhere to strict data minimisation and retention policies:
Regulatory Purge: Upon revocation of consent, all associated financial data is permanently
purged from our active systems within 72 hours.
Re-Consent Cycle: We require active re-consent every 90 days to maintain continuous access
to your Open Banking data.
Account Deletion: Standard personal data is retained only for as long as your account is
active or as needed to provide services, unless a longer retention is mandated by UK law.
5. Security
Your financial data is protected by industry-leading security measures, including Bank-grade encryption (AES-256)
at rest and TLS 1.3 for all data in transit between your device, our servers, and our Open Banking partners.
6. Your Rights
Under the UK GDPR, you have the following rights:
Right to be Forgotten: Request the deletion of your personal data.
Data Portability: Request a copy of your data in a machine-readable format.
Right to Access: Request a summary of the data we hold about you.
7. Compliance & Contact
Axiom Digital Systems Ltd is registered with the UK Information Commissioner's Office (ICO) under number ZC112218. If you wish to exercise your data rights or have questions about our privacy practices, please contact us:
Axiom Digital Systems Ltd (Co. 17031903)
167-169 Great Portland Street, 5th Floor
London, W1W 5PF
United Kingdom