πŸ”’ Legal

Privacy Policy

How we collect, use, and protect your personal data.

πŸ“… Last Updated: 09 April 2026  |  UK GDPR Compliant

Cashify GC Mart Ltd ("we", "us", "our") is committed to protecting your privacy. This policy explains how we collect, use, store, and share your personal data when you use convertyourgiftcards.co.uk or cashifygcmart.com.

This policy complies with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Data We Collect

We collect the following categories of personal data:

  • Identity data: Full name, date of birth (where required for AML).
  • Contact data: Email address, phone number, city/location.
  • Transaction data: Gift card brand, value, card codes (for verification only), payment details.
  • Technical data: IP address, browser type, device information, cookies (see Cookie Policy).
  • Communications: Any messages sent to us via contact forms or email.

2. How We Use Your Data

We use your personal data for the following purposes:

  • Processing and verifying your gift card submissions.
  • Processing payments to you.
  • Complying with our legal and regulatory obligations (including AML checks).
  • Responding to your enquiries and providing customer support.
  • Fraud prevention and security.
  • Improving our platform and services.

3. Legal Basis for Processing

We process your data on the following legal bases under UK GDPR:

  • Contractual necessity – to fulfil our agreement with you when you submit a card.
  • Legal obligation – to comply with AML, fraud prevention, and other legal requirements.
  • Legitimate interests – to operate and improve our platform, prevent fraud, and maintain security.
  • Consent – where you have opted in to marketing communications (which you may withdraw at any time).

4. Data Retention

We retain transaction records for a minimum of 5 years to comply with AML regulations and HMRC requirements. Contact form data is retained for up to 2 years. You may request deletion of non-mandatory data at any time.

5. Data Sharing

We do not sell your personal data. We may share data with:

  • Payment processors (e.g. PayPal, Wise) solely to complete transactions.
  • Law enforcement or regulatory bodies when legally required (e.g. fraud reports to Action Fraud UK).
  • IT and hosting service providers under strict data processing agreements.

6. Your Rights

Under UK GDPR, you have the right to:

  • Access your personal data (Subject Access Request).
  • Rectify inaccurate data.
  • Erasure ("right to be forgotten") subject to legal retention obligations.
  • Restrict or object to processing.
  • Data portability.
  • Withdraw consent at any time (where processing is consent-based).

To exercise any of these rights, contact us at support@convertyourgiftcards.co.uk. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.

7. Security

We implement appropriate technical and organisational measures to protect your data, including SSL/TLS encryption, restricted access controls, and regular security reviews.

8. Cookies

We use cookies on our platform. See our Cookie Policy for full details.

9. Contact

For any privacy-related queries, contact our Data Protection contact at support@convertyourgiftcards.co.uk.