Financely Group Privacy Policy

Valid as of 1 June 2025

1. Introduction

Financely Group (“ Financely,” “ we,” “ our,” “ us ”) is an investment-banking advisory partnership incorporated in the European Union and active worldwide through regulated affiliates. We recognise the fundamental importance of safeguarding personal data entrusted to us, and this Privacy Policy explains, in clear and transparent terms, how such data is collected, processed and protected in the context of capital-raising, M&A and related advisory mandates.

2. Definitions

Personal Data ” means any information relating to an identified or identifiable natural person (“ Data Subject ”). “ Processing ” means any operation performed on Personal Data, whether automated or not (GDPR Art. 4(2)). “ Site ” refers to www.financely-group.com and any microsite that links to this Policy. Unless otherwise indicated, capitalised terms have the meanings assigned to them in the General Data Protection Regulation (“ GDPR ”).

3. Scope

This Policy governs Processing of Personal Data obtained via the Site, through mandate onboarding, during transaction execution, at industry events, by telephone, video conference or e-mail, and through secure electronic datarooms administered by Financely or authorised third-party vendors. It does not apply to external websites referenced or linked from our Site; those operators remain solely responsible for their own data-handling practices.

4. Legal Bases for Processing

We rely on one or more of the following GDPR bases:

  • Contract (Art. 6 (1)(b)). Processing necessary to enter into or perform an engagement or other agreement with you or the organisation you represent.
  • Legal Obligation (Art. 6 (1)(c)). Compliance with applicable law, including anti-money-laundering (“ AML ”) statutes, counter-terrorism-financing rules, sanctions regimes, tax-reporting duties and statutory record-keeping.
  • Legitimate Interest (Art. 6 (1)(f)). Processing for fraud prevention, IT-security and relationship-management purposes, balanced against your rights and freedoms.
  • Consent (Art. 6 (1)(a)). Marketing communications and use of non-essential cookies, where you have chosen to opt in. Consent may be withdrawn at any time without affecting lawfulness of Processing performed prior to withdrawal.

5. Categories of Personal Data Collected

Category Typical Content Purpose
Identification & Contact Name, title, business address, e-mail, telephone, country of residence Client onboarding, mandate correspondence, event registration
Due-Diligence Passport scans, national-ID numbers, proof-of-address, source-of-funds documents, sanctions & PEP screening results AML/KYC, sanctions compliance, fraud-risk assessment
Professional & Financial Employment position, corporate affiliations, shareholdings, mandate letters, fee invoices, payment history Transaction structuring, billing, conflict checks
Technical & Usage IP address, browser type, device identifiers, cookie IDs, pages viewed, time stamps Site security, usability analytics, intrusion detection
Marketing Preferences Topics of interest, newsletter opt-in status Distribution of tailored insights, event invitations

6. Sources of Personal Data

  • Direct Provision. Forms, contracts, e-mails, verbal communications and uploads to our secure portals.
  • Automated Collection. Cookies and server logs generated during your interaction with the Site.
  • Third-Party Sources. Public registers, credit-reference agencies, corporate-filing databases, sanctions lists, social-media or professional-networking platforms, introducers and transaction counterparties.

7. Purposes of Processing

  1. Client Engagement: verifying identity, assessing eligibility, issuing mandate and fee letters, facilitating electronic signature.
  2. Transaction Execution: arranging credit facilities, equity placements, mergers, asset sales and similar transactions; coordinating diligence with lenders, investors and counsel.
  3. Regulatory Compliance: satisfying AML/KYC, counter-terrorism-financing, sanctions and tax-information-exchange requirements; filing mandatory reports with competent authorities.
  4. Fraud & Risk Management: authenticating documents, evaluating collateral legitimacy, screening for adverse media and suspicious patterns.
  5. Operational Analytics: maintaining Site stability, improving user experience, compiling aggregated statistics.
  6. Knowledge & Marketing: publishing anonymised market commentary, circulating newsletters and event invitations in line with your stated interests.

8. Disclosures to Third Parties

We disclose Personal Data only when such disclosure is consistent with the purposes set out above and subject to robust confidentiality undertakings. Recipient categories include:

  • Regulated financial institutions, private-credit funds, family offices and insurers participating in an active mandate;
  • Legal counsel, auditors, technical consultants and other professional advisers subject to legal privilege or contractual confidentiality;
  • IT-service and cloud-hosting providers that support our infrastructure, all bound by data-processing agreements meeting GDPR standards;
  • Statutory bodies, courts and regulatory agencies where disclosure is required by law, subpoena or lawful request;
  • Successor entities in connection with a merger, acquisition or corporate reorganisation, provided they assume the same data-protection obligations.

9. International Transfers

If Personal Data is transferred outside the European Economic Area (“ EEA ”) or the United Kingdom, we adopt appropriate safeguards, such as:

  • European Commission or UK adequacy decisions, confirming the recipient jurisdiction affords adequate protection;
  • Standard Contractual Clauses endorsed by the European Commission or UK ICO, supplemented by technical and organisational measures;
  • Binding Corporate Rules approved by relevant supervisory authorities;
  • Specific derogations under GDPR Art. 49 where the transfer is necessary for contract performance or legal defence.

10. Data Retention

Personal Data relating to a mandate is retained for seven (7) years following the later of: (i) end of the client relationship, (ii) financial close of the last transaction to which the data relates, or (iii) exhaustion of the last legal or regulatory claim arising out of the mandate. Longer retention may apply where statutory AML or tax rules require. Technical logs are stored for up to twelve months unless incident-response investigation necessitates extension. Data slated for deletion is irreversibly destroyed using internationally recognised methods.

11. Data-Subject Rights

You enjoy, subject to lawful exemptions, the rights of access, rectification, erasure (“right to be forgotten”), restriction, portability and objection under GDPR Arts. 15-23. Requests should be addressed to info@financely-group.com and include sufficient detail for us to verify your identity. We respond within one month, extendable by two months for complex or multiple requests, and will explain the reasons for any lawful refusal.

12. Information Security

Financely employs layered safeguards aligned with ISO-27001: enterprise-grade firewalls, intrusion-prevention systems, strong encryption (TLS 1.3 / AES-256), multi-factor authentication, principle-of-least-privilege access, routine vulnerability scanning and annual penetration tests. Staff and contractors undergo background screening and periodic data-protection training. Despite these measures, no internet transmission can be guaranteed secure; Users transmit data at their own risk.

13. Cookies & Similar Technologies

The Site uses three classes of cookies: session cookies (expire when browser closes), persistent cookies (remain for a defined period to store preferences) and third-party analytics cookies (Snowplow) that collect aggregated usage statistics. Essential cookies are deployed under legitimate-interest grounds; non-essential cookies require your consent, which you may withdraw by adjusting browser settings. A detailed Cookie Notice appears separately on the Site.

14. Marketing & Communications

We may send market updates, event invitations and similar communications relevant to your professional interests. Such messages rely on the soft opt-in exemptions or your explicit consent. You can unsubscribe at any time via the link in each e-mail or by writing to info@financely-group.com. Operational notices (e.g. service updates, security alerts) are not marketing and will issue irrespective of opt-out status.

15. Corporate Transactions

Should Financely undergo merger, acquisition, restructuring or asset transfer, Personal Data will transfer to the successor organisation, subject to protections that are at least as rigorous as those described herein. We will publish notice on the Site and, where feasible, notify active counterparties directly.

16. Policy Updates & Interpretation

We reserve the right to amend this Policy at any time to reflect legal, technical or business developments. Material changes will be posted prominently on the Site with an updated “Valid as of” date. Continued use of the Site after publication constitutes acceptance of the revised Policy. Where this Policy is published in multiple languages, the English version prevails in case of divergence.

17. Contact

For all privacy-related queries, rights requests, feedback or complaints, please write to:
E-mail: info@financely-group.com

© 2025 Financely Group. All rights reserved. This Policy shall be governed by and construed in accordance with the laws of England & Wales, without prejudice to mandatory data-protection provisions of your local jurisdiction.