Privacy Policy

1. Who we are

Pecunia Management is operated from Sheffield, United Kingdom. For privacy queries, you can contact us at pecunia-support@planlabsolutions.com.

2. Roles under data protection law

When an accountancy firm uses the Service to store or process its own client information, the firm typically acts as the data controller and Pecunia acts as a data processor. Where we process personal data for our own purposes (for example, billing and support), we act as a data controller.

3. Personal data we collect

• Account data: name, business name, email address, password (hashed), and user roles/permissions.
• Client Data (processor): information your firm uploads about its clients (which may include contact details, identity documents, financial and compliance information).
• Usage data: device/browser details, log data, pages/features used, and diagnostics.
• Support communications: messages you send to us and related metadata.

4. How we use personal data

• Provide and secure the Service (authentication, access control).
• Operate key features (workflows, reminders, reporting).
• Provide customer support and communicate service updates.
• Process payments and manage subscriptions (where applicable).
• Prevent fraud, detect abuse, and maintain platform integrity.
• Comply with legal obligations.

5. Legal bases (UK GDPR)

Where we act as controller, we rely on one or more of the following bases: performance of a contract, legitimate interests (such as security and improving the Service), compliance with legal obligations, and consent (where required).

6. Sharing and third parties

We may share personal data with trusted service providers who help us operate the Service (for example hosting, email delivery, analytics, and payments). Where identity verification is used, verification may be performed via Stripe Identity. We only share what is necessary and require appropriate safeguards.

7. International transfers

Some providers may process data outside the UK. Where international transfers occur, we use appropriate safeguards such as International Data Transfer Agreements (IDTAs) or other lawful mechanisms.

8. Data retention

We retain personal data only as long as necessary for the purposes set out above. For Client Data, retention is generally controlled by the subscribing firm (controller). Following account termination, we may retain limited information to meet legal, accounting, and security needs.

9. Security

We use technical and organisational measures designed to protect data (including access controls, encryption in transit, and monitoring). No method of transmission or storage is completely secure; however we work to continually improve our safeguards.

10. Your rights

Depending on context and applicable law, you may have rights including access, rectification, erasure, restriction, objection, and data portability. If your firm is the controller of Client Data, requests should usually be directed to the firm. You can also contact us at pecunia-support@planlabsolutions.com.

11. Cookies

The Service may use essential cookies (for example, session and security cookies). Where non-essential cookies are used, we will provide appropriate choices where required.

12. Changes to this policy

We may update this Privacy Policy from time to time. The latest version will be posted on this page, and material changes may be communicated through the Service.