Why GoCardless?
- For subscription payments
  Collect subscriptions and recurring fees
- For invoice payments
  Collect variable and ad-hoc payments
- For small business
- For enterprise
- Customer stories
Product
- Recurring payments
  Ideal for subscriptions and invoices
- Instant Bank Pay
  Ideal for one-off payments
- International payments
  Collect from 30+ countries
- Success+
  Reduce payment failures
- Verified Mandates
  Stop payment fraud
- API integrations
  Build a custom integration
- Partner integrations
  Connect to 200+ partner apps
- Variable Recurring Payments
  Instant Bank Pay for recurring payments
Partners
Pricing
Learn
- Support centre
  Get help using GoCardless
- FAQs
  Common questions answered
- API documentation
  Guide for integrators
- Latest articles and research
- Guide to Direct Debit

Privacy Centre

Updated 1 November 2021

Got a question? Raise a ticket with our Support team

Payers

Our privacy practices for people who make payments using GoCardless

Who is GoCardless?

GoCardless provides the technology and other services that help merchants around the world process payments for their goods or services.

If you have a question about how we handle your personal data, you can reach us at:

GoCardless Ltd., Sutton Yard, 65 Goswell Road, London EC1V 7EN, United Kingdom

Contact the Data Protection Officer

If you have questions about how a merchant handles your personal data, or if you wish to exercise your rights for the personal data they hold, you will need to contact them directly. If you don’t recognise a payment on your statement, find out who your merchant is here.

How does GoCardless use personal data?

Providing payment services

We use identification, contact, financial, transaction and connection data to provide our services.

Preventing fraud

We use identification, contact, financial, transaction, usage and connection data to prevent fraud.

We check that you own the bank account you enter for our services and that you have the funds to cover the transaction. We assess whether your activities match patterns of previous fraudulent behaviour. We may block transactions we believe to be fraudulent or unauthorised, or that violate our terms.

When you set up a payment, we may ask you to grant us access to personal data directly from your bank account so that we can verify that you are the owner of the account. This data is limited to your bank account number, name and address, and we access it only with your consent.

If our fraud alerts or those of our banking partner flag a potentially fraudulent account, payment or refund, we may need to confirm your identity. We use publicly available data or identity verification services from agencies like Onfido or Lexis Nexis. After this, we will either clear the alert or stop the payment or refund.

Technology helps us make automatic decisionsautomatic decisions about potential fraud using our services. Read more about our fraud prevention tools.

Increasing payment speed and success

We use identification, contact, financial, transaction and connection data to increase payment speed and success.

We calculate whether a payment is likely to clear and use that calculation to make decisions about how we provide our services. For example, we might ask for a different payment method or change the date we withdraw the payment from your bank, or we might advance payments to your merchant to process their transactions more quickly.

Technology helps us make automatic decisions about how and when to process transactions.

Communicating with you

We use identification, usage, contact and transaction data to communicate with you.

Improving our services

We use identification, contact, financial, usage, transaction and connection data to improve our services.

Investigating claims and other legal activities

We use identification, contact, financial, transaction and connection data to protect our legal rights and interests.

Where we believe it is necessary to protect our legal rights and interests and the interests of others, we use personal data in connection with legal claims, compliance, regulatory and audit functions, and in connection with the acquisition, merger or sale of a business.

Under exceptional circumstances, we may be required by law to provide personal data to law enforcement agencies, courts or others in connection with claims and other litigation.

What personal data do we use?

Identification information, such as your name and organisation. In some countries, we may be required by law or by financial institutions to collect a government identifier from you (for example, a social security number or tax ID).
Contact information, such as your mailing address and email address.
Financial information, such as your bank account number, sort code, account holder name, and other information you provide to us or give us consent to access from your bank.
Transaction information, such as the name of the merchant you pay using our services, a description of the transaction, and the payment amount.
Usage information, such as how you enter data using our sites and services and how long it takes, and whether you opened an email or clicked a link. To collect this data we use cookies and other tracking technologies.
Connection information, such as the type of device you use to access our services, operating system and version, device identifiers, network information, IP address and location derived from your IP address. To collect this data, we may use cookies and other tracking technologies.

If you have a question or a problem

You can contact our privacy team to ask a question or exercise your rights or choices about our privacy practices. If we can’t resolve your concerns, you may have the right to complain to a data protection authority or other regulator where you live or work, or where you believe a breach may have occurred.

More legal details

Learn more about our data protection compliance and the further legal details required in some countries, such as:

What makes our processing lawful?
Who do we share personal data with?
How do we protect data that crosses borders?
How do we make automatic decisions about people?
How long do we keep the data?
What rights do you have and how do you exercise them?

Connect with us

Solutions

Help & resources

About GoCardless

Sales Contact sales +44 20 8338 9539

Support Request support +44 20 8338 9540

Seen 'GoCardless LTD' on your bank statement? Learn more

GoCardless Ltd., Sutton Yard, 65 Goswell Road, London, EC1V 7EN, United Kingdom

GoCardless (company registration number 07495895) is authorised by the Financial Conduct Authority under the Payment Services Regulations 2017, registration number 597190, for the provision of payment services.

GoCardless SAS, WeWork - 7 rue de Madrid, Paris, 75008, France

GoCardless SAS, an affiliate of GoCardless Ltd (company registration number 834 422 180, R.C.S. PARIS), is authorised by the ACPR (French Prudential Supervision and Resolution Authority), Bank Code (CIB) 17118, for the provision of payment services.

Currently viewing

United Kingdom