Privacy Policy

F4NS Ltd (“F4NS,” “we,” “our,” or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use the F4NS platform, website, and associated services (collectively, the “Service”).

This policy applies to all users of the Service, including subscribers and platform operators (creators). Please read it carefully. By using the Service, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with the terms of this policy, please discontinue use of the Service.

For the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, F4NS Ltd is the data controller responsible for your personal information.

1. Information We Collect

We collect information in the following categories:

1.1 Account Data

When you register for an account, we collect information you provide directly, including:

• Email address
• Username and display name
• Password (stored in hashed form; we never store plaintext passwords)
• Profile information you choose to provide (avatar, bio)
• Date of birth (for age verification purposes)
• Communication preferences

1.2 Payment Data

When you make a purchase or subscription payment, payment processing is handled by our authorised third-party processors. We do not store full credit card numbers or CVV codes on our servers. We may retain:

• Last four digits of your payment card (for reference only)
• Billing country and postal code
• Transaction identifiers and amounts
• Subscription status and billing history

For platform operators receiving payouts, we may collect bank account details, tax identification numbers, and identity verification documents as required by applicable law and our payment processors.

1.3 Usage Data

When you use the Service, we automatically collect information about your interactions, including:

• Pages and content you view
• Subscriptions and purchases made
• Search queries entered
• Interactions with content (likes, bookmarks, tips)
• Messages sent (metadata only; message content may be stored for platform safety review)
• Time, duration, and frequency of your visits
• Referring URLs and exit pages

1.4 Device and Technical Data

We collect technical data from your device and browser, including:

• IP address
• Browser type, version, and language
• Operating system and device type
• Screen resolution
• Approximate geographic location derived from IP address (country and city level)
• Session identifiers and authentication tokens

1.5 Communications Data

If you contact us for support or otherwise communicate with F4NS, we collect and retain the content of those communications for the purpose of resolving your enquiry and improving our services.

2. How We Use Your Information

We use the information we collect for the following purposes, each grounded in a lawful basis under applicable data protection law:

• Providing the Service: To operate and maintain your account, process payments, deliver content, and fulfil subscription obligations. (Lawful basis: contract performance)
• Security and fraud prevention: To detect, investigate, and prevent fraudulent activity, unauthorised access, and abuse. (Lawful basis: legitimate interests)
• Legal compliance: To comply with applicable laws, regulations, court orders, and legal process, including age verification obligations. (Lawful basis: legal obligation)
• Communications: To send you transactional emails (receipts, password resets, account notifications) and, where you have consented, marketing communications. (Lawful basis: contract performance / consent)
• Platform improvement: To analyse usage patterns, troubleshoot issues, and improve the performance and features of the Service. (Lawful basis: legitimate interests)
• Personalisation: To tailor content recommendations and the user experience to your preferences and activity. (Lawful basis: legitimate interests / consent where required)
• Creator payouts: To process earnings, generate financial reports, and fulfil tax reporting obligations for platform operators. (Lawful basis: contract performance / legal obligation)

3. Information Sharing and Disclosure

We do not sell your personal information. We may share your information with third parties only in the following circumstances:

• Service providers: We share data with trusted third-party service providers who assist us in operating the Service, including payment processors, cloud hosting providers, email delivery services, analytics providers, and customer support tools. These providers are contractually bound to use your data only for the purposes of providing services to F4NS.
• Legal requirements: We may disclose your information where required by law, including in response to valid legal process such as subpoenas, court orders, or government demands.
• Protection of rights: We may disclose information where we reasonably believe disclosure is necessary to protect the rights, property, or safety of F4NS, our users, or the public.
• Business transfers: If F4NS is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you before your information becomes subject to a different privacy policy.
• With your consent: We may share your information for any other purpose with your explicit consent.

4. Cookies and Tracking Technologies

We use cookies and similar tracking technologies (such as pixel tags and local storage) to operate the Service, remember your preferences, analyse usage, and deliver relevant content. For detailed information about the cookies we use, their purposes, and how to manage your cookie preferences, please see our Cookie Policy.

5. Data Security

We implement technical and organisational measures designed to protect your personal information against unauthorised access, disclosure, alteration, or destruction. These measures include:

• Encryption of data in transit using TLS (HTTPS)
• Encryption of sensitive data at rest
• Hashed password storage using industry-standard algorithms
• Access controls limiting data access to authorised personnel on a need-to-know basis
• Regular security assessments and penetration testing
• Monitoring and logging of access to sensitive systems

While we take security seriously, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security. In the event of a data breach that poses a risk to your rights and freedoms, we will notify the relevant supervisory authority and, where required, affected users in accordance with applicable law.

6. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you with the Service. We also retain and use your information as necessary to:

• Comply with our legal obligations (e.g., financial records are typically retained for 6–7 years)
• Resolve disputes and enforce our agreements
• Maintain platform integrity and prevent repeat abuse

When you delete your account, we will delete or anonymise your personal information within a reasonable time period, except where we are required by law to retain it. Transaction records and financial data may be retained for up to 7 years in accordance with UK tax and financial regulations. Safety-related records (e.g., records of abuse or violations) may be retained for up to 5 years.

7. Your Rights

Depending on your location, you may have the following rights regarding your personal information:

7.1 Rights Under UK GDPR / EU GDPR

• Right of access: You have the right to request a copy of the personal information we hold about you.
• Right to rectification: You have the right to request that we correct inaccurate or incomplete personal information.
• Right to erasure (“right to be forgotten”): You have the right to request deletion of your personal information in certain circumstances.
• Right to restrict processing: You may request that we restrict the processing of your data in certain circumstances.
• Right to data portability: You have the right to receive your personal data in a structured, commonly used, machine-readable format.
• Right to object: You may object to processing of your personal information where we rely on legitimate interests as the lawful basis.
• Rights related to automated decision-making: You have the right not to be subject to decisions made solely by automated means that have legal or similarly significant effects on you.

7.2 Rights Under CCPA (California Residents)

• Right to know: You may request disclosure of what personal information we collect, use, disclose, and sell.
• Right to delete: You may request deletion of personal information we have collected from you.
• Right to opt out of sale: F4NS does not sell personal information. You therefore do not need to opt out of a sale.
• Right to non-discrimination: We will not discriminate against you for exercising your CCPA rights.

To exercise any of your rights, please contact us at privacy@f4ns.com. We will respond to your request within 30 days. We may need to verify your identity before processing your request. If you are unhappy with how we handle your request, you have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk.

8. Children's Privacy

The F4NS Service is strictly intended for users aged 18 and over. We do not knowingly collect personal information from individuals under 18 years of age. If we become aware that we have inadvertently collected personal data from a person under 18, we will take immediate steps to delete that information and terminate the associated account.

If you believe we may have collected data from or about a minor, please contact us immediately at legal@f4ns.com.

9. International Data Transfers

F4NS operates primarily in the United Kingdom. Your personal information may be transferred to and processed in countries other than your country of residence, including the United States, where our service providers maintain data centres. These countries may have data protection laws different from those of your jurisdiction.

When we transfer personal information from the UK or EEA to countries that are not deemed to provide an adequate level of protection, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the relevant supervisory authorities, or other mechanisms recognised under applicable law.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by updating the “Last updated” date at the top of this page and, where appropriate, sending you an email notification or displaying a prominent notice within the Service. We encourage you to review this policy periodically.

Your continued use of the Service after any changes take effect constitutes your acceptance of the updated Privacy Policy.

11. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

You also have the right to contact the UK Information Commissioner's Office (ICO) if you have concerns about how we handle your data: ico.org.uk/make-a-complaint.