Updated: March 3, 2025

Privacy Policy

Splita Ltd – Privacy Policy

Last updated: 7 April 2025
At Splita Ltd, we are committed to respecting and protecting your personal data. This Privacy Policy explains how we collect, use, share and safeguard your information when you interact with our services. We take data protection seriously and always strive to act transparently and in accordance with the laws of England and Wales.
This Privacy Policy applies to your use of the Splita mobile application, website and any associated services (together, the “Splita Services”). By using the Splita Services, you agree to the processing of your personal data as outlined in this Privacy Policy. If you do not agree with the terms set out here, you should not continue to use our services.
You have rights in relation to your personal data under the UK General Data Protection Regulation (“UK GDPR”) and the Data Protection Act 2018 and nothing in this Privacy Policy limits or overrides your statutory rights under applicable data protection law.
If you have any questions or concerns about how we handle your personal information, you can contact us at support@splita.me.

1. Who Is Responsible for Your Information

The organisation responsible for your personal data (the “data controller”) is:

  • Splita Ltd
  • Company number: 16370241
  • Registered address: 31a Dewsbury Gate Road, Dewsbury, WF13 4AX
  • Email: support@splita.me

Splita Ltd is a company incorporated in England and Wales. We are not a bank and do not provide banking services. Certain elements of the Splita Services — including card payments and account connections — are delivered in partnership with FCA-authorised third-party providers such as Stripe Payments UK Ltd and Tink UK Ltd. We only work with partners who are regulated and operate in compliance with UK data protection law.

These partners may act as independent controllers or processors of your data, depending on the service provided. Where relevant, we will clearly identify any third parties involved and ensure they meet our strict standards of privacy and security.

2. The Information We Collect

We collect and process personal data to provide, improve and protect the Splita Services. The types of data we may collect fall into the following categories:

Information you provide directly to us

You may give us personal information when you:

  • create or update your Splita account (e.g. name, email address, mobile number)
  • link a debit card or connect a bank account
  • contact us via email or in-app support
  • respond to surveys, provide feedback or enter promotions
  • refer a friend or share your contacts with us (with their consent)

Depending on the features you use, we may also collect:

  • your residential address
  • identity verification documents (e.g. photo ID, proof of address)
  • a selfie or photograph for identity matching
  • reasons for using the Splita Services
  • information about the groups you join or create within the app

We will always tell you if providing certain information is optional or required for a specific feature.

Information collected automatically when you use the app or website

We automatically collect certain technical and usage information when you access the Splita Services, including:

  • your IP address and device type
  • mobile operating system and browser details
  • device identifiers (such as advertising ID)
  • the pages or screens you access and actions you take within the app
  • crash reports, diagnostic and performance data
  • the time, frequency and duration of your visits

We use this data to monitor performance, keep the platform secure and improve the user experience.

Information from third parties

We may receive information about you from:

  • regulated partners such as Stripe or Tink, who help us process payments or provide Open Banking functionality
  • credit reference agencies or fraud prevention services, for identity or risk checks (we do not receive credit scores)
  • analytics and marketing partners, who help us understand how users find and interact with our services
  • social media or single sign-on providers (such as Apple or Google) if you choose to register or log in using one of those platforms

Where we receive information from a third party, we take steps to confirm that it has been shared lawfully and fairly.

Children’s data

The Splita Services are intended for users aged 18 and over. We do not knowingly collect personal data from children. If we become aware that we hold personal information about a user under the age of 18, we will delete it as soon as reasonably practicable. If you are a parent or guardian and believe a child under 18 has registered, please contact us.

3. How We Use Your Information

We use your personal data to provide, maintain and improve the Splita Services. We will only process your information where we have a lawful basis to do so under the UK GDPR.

The main reasons we process your data include:

To provide and manage your account

We use your information to:

  • create and maintain your Splita account
  • process transactions you initiate through the platform
  • link and verify your payment methods
  • allow you to split bills, join groups and track expenses
  • ensure that your account settings and preferences are applied

To verify your identity and comply with legal obligations

We may need to collect documents or perform checks to:

  • confirm your identity and age
  • meet our obligations under anti-money laundering and financial crime laws
  • respond to requests from regulators, law enforcement or courts

These checks may involve working with trusted third-party providers.

To keep the Splita Services safe and secure

We monitor account activity to:

  • detect and prevent unauthorised access or fraud
  • enforce our Terms and Conditions
  • investigate and address misuse or suspicious behaviour

To communicate with you

We may contact you to:

  • confirm actions you’ve taken in the app
  • respond to support queries or complaints
  • notify you about changes to our services, terms or policies
  • provide updates about security, availability or product features

You cannot opt out of essential service messages, as they are necessary to operate your account.

To send you marketing (only with your consent)

If you opt in, we may use your email or device information to send you:

  • product updates
  • surveys and feedback requests
  • offers, promotions or content we think you may find interesting

You can opt out at any time by clicking the “unsubscribe” link in our emails or updating your preferences in the app.

To improve our services and develop new features

We may analyse how you and other users interact with the Splita Services in order to:

  • understand usage patterns
  • improve functionality, performance and user experience
  • test new features and enhance app design

Where possible, we use anonymised or aggregated data for these purposes.

4. When We Share Your Information

We only share your personal data where necessary and in accordance with the law. We do not sell your information. Below are the situations in which we may share your data:

With our trusted service partners

To provide the Splita Services securely and efficiently, we work with carefully selected third parties. These may include:

  • Payment processing partners, such as Stripe Payments UK Ltd and Adyen N.V. UK Branch
  • Open banking providers, such as Tink UK Ltd
  • Cloud and hosting providers, who help us store and manage data securely
  • Identity verification or fraud prevention services, to help us comply with legal requirements

These companies act either as processors, acting on our instructions or independent controllers with their own legal obligations. We require all our partners to handle your data securely and lawfully.

With other users in your groups

When you use Splita to split bills or track shared expenses, your name, payment status and any shared transaction notes may be visible to others in your group. You control which groups you join and can leave them at any time.

With regulators, law enforcement or legal advisers

We may share your information where we are legally required to do so. This includes:

  • complying with a legal obligation or regulatory request
  • responding to a court order or warrant
  • cooperating with investigations into suspected fraud or criminal activity
  • protecting our legal rights or those of others

In connection with a business change

If Splita Ltd is ever involved in a merger, acquisition, financing or sale of assets, your personal data may be transferred to the new owners or their advisers. We will ensure your rights remain protected during any such change.

5. How Long We Keep Your Information

We only keep your personal data for as long as it is needed for the purposes outlined in this Privacy Policy or as required by law.

This means:

  • If you hold a Splita Account, we will keep your personal data for as long as your account is active and for a period afterwards to comply with legal, regulatory or accounting requirements (typically up to six years after account closure).
  • If you begin but do not complete registration or if your account is suspended or closed, we may still retain limited information to comply with anti-money laundering obligations and to prevent fraud.
  • If we no longer need your data for any lawful reason, we will securely delete or anonymise it.

We regularly review our data retention practices and apply safeguards to ensure that your personal data is not held for longer than necessary.

6. How We Keep Your Information Safe

We take the security of your personal data very seriously. We use a combination of technical and organisational measures to protect your information from unauthorised access, accidental loss, misuse or disclosure.

These include:

  • Encryption of sensitive data during transmission and at rest
  • Secure storage on systems hosted in data centres with strict access controls
  • Limited access to your personal data, restricted to employees and partners who need it to provide our services
  • Monitoring and regular reviews of our systems to prevent unauthorised activity
  • Security training and confidentiality agreements for all staff

Despite these precautions, no method of transmission over the internet or method of electronic storage is completely secure. If we believe there has been a significant risk to your personal data, we will notify you in line with our legal obligations and take steps to reduce any impact.

You can also help protect your account by using a strong password, keeping your login details confidential and letting us know straight away at support@splita.me if you think your account has been accessed without your permission.

7. Your Rights Under Data Protection Law

Under the UK GDPR and the Data Protection Act 2018, you have a number of rights relating to your personal data. We are committed to respecting these rights and helping you exercise them. You can make a request at any time by contacting us at support@splita.me.

Your rights include:

Right to access

You have the right to ask us for a copy of the personal data we hold about you, along with certain details about how we use it.

Right to rectification

If the information we hold is inaccurate or incomplete, you can ask us to correct or update it.

Right to erasure

In certain circumstances, you may ask us to delete your personal data — for example, if we no longer need it or you withdraw your consent. Please note that we may need to keep certain information where required by law.

Right to object

You can object to our use of your data where we rely on our legitimate interests as a basis for processing. If you do object, we will consider whether we have compelling reasons to continue using it.

Right to restrict processing

You can ask us to restrict the way we use your data in certain situations — for example, while we are reviewing the accuracy of information or considering an objection you’ve made.

Right to data portability

You can ask us to provide your personal data in a structured, commonly used and machine-readable format and you may also request that we transfer it to another provider.

Rights in relation to automated decision-making

You have the right not to be subject to decisions made solely by automated means (without human involvement) where such decisions could have a significant effect on you. We do not currently carry out this type of processing.

Right to complain

If you’re unhappy with how we handle your data, please contact us at support@splita.me. You also have the right to make a complaint to the Information Commissioner’s Office (ICO), the UK’s data protection regulator. Full details are available at www.ico.org.uk.

8. How Long We Keep Your Data

We will only keep your personal data for as long as it is necessary to provide the Splita Services, meet our legal obligations and manage our business effectively. The specific length of time depends on the type of data and why we collected it in the first place.

For example:

  • Account data (such as your contact details, Linked Card and transaction history) is kept for as long as you have an active Splita Account and for up to six years after closure, to comply with our legal, tax and regulatory obligations.
  • Verification data (such as identity documents) may also be retained for a similar period for anti-money laundering and fraud prevention purposes.
  • Communications (such as emails or support messages) may be stored for a reasonable period to help us manage customer service enquiries, disputes or legal claims.

We regularly review the data we hold and will delete or anonymise information that is no longer needed. Where data must be retained for legal or regulatory reasons, we will make sure it is kept securely and not used for any other purpose.

If you close your account, we will delete or securely anonymise your data once our retention obligations have ended. You can also contact us at support@splita.me to ask about the data we hold and when it will be removed.

9. How We Protect Your Data

We take the security of your personal data seriously and have put appropriate technical and organisational measures in place to prevent unauthorised access, accidental loss, destruction or damage.

This includes:

  • Encrypted data transmission using industry-standard protocols (such as HTTPS and TLS)
  • Secure storage of personal data on servers protected by firewalls and access controls
  • Strong user authentication and account protection features (e.g. password protection, multi-factor authentication)
  • Regular internal reviews, system monitoring and penetration testing
  • Strict access controls — only trained staff and trusted partners with a legitimate need will have access to your information

Despite our efforts, no system is entirely immune to risks. You also have a role to play in keeping your data safe. You should:

  • Use a strong, unique password for your Splita Account
  • Never share your login credentials with anyone
  • Keep your device secure and install updates when prompted
  • Contact us immediately at support@splita.me if you suspect unauthorised access to your account

If there is ever a data breach that poses a risk to your rights and freedoms, we will notify you as soon as we are reasonably able to and report it to the Information Commissioner’s Office (ICO) where required.

10. Your Rights Under Data Protection Law

You have clear rights under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. These rights give you control over your personal data and how it is used. You can exercise these rights at any time by contacting us at support@splita.me.

Your rights include:

  • Right to access

    You can request a copy of the personal data we hold about you, along with details of how we use it.

  • Right to rectification

    If any of the information we hold about you is inaccurate or incomplete, you have the right to ask us to correct it.

  • Right to erasure (the “right to be forgotten”)

    You may ask us to delete your personal data where there is no longer a valid reason for us to keep it. Please note that we may still be required to retain certain information for legal or regulatory reasons.

  • Right to restrict processing

    You can ask us to suspend our use of your personal data in certain situations — for example, while we are checking the accuracy of your data or responding to an objection.

  • Right to data portability

    You can request to receive the data you have provided to us in a structured, commonly used format and ask us to transfer it to another service provider if technically feasible.

  • Right to object

    You have the right to object to our use of your personal data where we rely on our legitimate interests as a legal basis for processing or where we are using it for direct marketing purposes.

  • Rights in relation to automated decision-making and profiling

    You have the right not to be subject to a decision based solely on automated processing (including profiling) if it has legal or similarly significant effects on you.

We aim to respond to all valid requests within one calendar month. We will not charge you to exercise these rights unless your request is unfounded or excessive.

If you are not happy with how we handle your data, you also have the right to lodge a complaint with the UK’s data protection authority, the Information Commissioner’s Office (ICO) at www.ico.org.uk or on the telephone at 0303 123 1113.

11. International Transfers and Data Storage

We primarily store and process your personal data within the United Kingdom or the European Economic Area (EEA). However, in limited cases, your data may be transferred to and stored in countries outside the UK or EEA — for example, where we rely on cloud service providers or technical infrastructure based overseas.

Whenever we transfer your data internationally, we ensure that your rights and protections remain safeguarded. This includes:

  • Ensuring that the country to which the data is transferred has been recognised as providing an adequate level of data protection by the UK Government; or
  • Putting in place legally approved safeguards, such as Standard Contractual Clauses (SCCs), to ensure that your data is treated in line with UK data protection standards; or
  • Ensuring that transfers are necessary for the performance of a contract with you or are otherwise permitted by law.

We take all reasonable steps to ensure that any third party receiving your data applies appropriate levels of security and handles it lawfully and fairly.

By using the Splita Services, you agree that your personal data may be transferred, processed and stored outside the UK in accordance with this Privacy Policy, provided that such transfers are compliant with UK data protection law.

12. Cookies and Similar Technologies

When you visit our website or use the Splita app, we may place small data files on your device known as cookies. These help us to understand how you use our services, improve your experience and ensure everything works securely and efficiently.

What cookies are

Cookies are small text files stored on your browser or device when you access a website or app. They allow us to remember your preferences, keep you logged in, measure usage and performance and enhance the functionality of the Splita Services.

What we use cookies for

We use cookies and similar technologies (such as pixels and local storage) for the following purposes:

  • Essential functionality: To keep you logged in, maintain your session and enable secure use of our services. These cookies are required for the platform to operate.
  • Performance and analytics: To understand how people use our website and app, identify bugs, improve speed and usability and track service performance.
  • Security and fraud prevention: To detect suspicious activity, protect your account and help us keep the Splita platform safe.
  • User preferences: To remember your settings, language or device type for a smoother and more personalised experience.
  • Marketing and engagement: We may use anonymised data to measure interactions with our content, but we do not use cookies to show you third-party advertising.

Managing your cookie preferences

Most browsers are set to accept cookies by default, but you can adjust your browser settings to block or delete cookies at any time. Please be aware that blocking certain types of cookies may limit the functionality of the Splita Services and could prevent you from using some features altogether.

For mobile devices, you may also manage tracking permissions through your device’s settings.

Cookie banner and preferences

When you visit our website or use the Splita app, you may be presented with a cookie banner that allows you to accept or reject non-essential cookies. Essential cookies (which are required for core functionality such as logging in and keeping your session active) cannot be disabled.

You can update your preferences or withdraw your consent to optional cookies at any time by adjusting your browser settings or device permissions. If you have previously accepted cookies and wish to change your choice, you may also need to clear your browser’s cookie cache.

We do not use cookies for third-party advertising and we do not share your cookie data with ad networks.

No cookie-based advertising

We do not use advertising cookies and we do not share your personal data with ad networks. Our use of cookies is focused on providing a secure, smooth and useful user experience — not for tracking you across the web.

If you have any questions about our use of cookies or tracking technologies, you can contact us at support@splita.me.

13. How Long We Keep Your Information

We only keep your personal data for as long as it is necessary for the purposes set out in this Privacy Policy or as required to comply with our legal, regulatory and operational obligations.

How we determine retention periods

The amount of time we retain your data depends on factors such as:

  • The nature of the data and why it was collected
  • Legal and regulatory requirements (for example, financial or anti-money laundering laws)
  • Whether the data is needed for resolving disputes or enforcing our terms
  • Operational needs, such as fraud prevention or service continuity

In most cases, we will retain your account and transaction records for up to six years after your relationship with Splita ends. This aligns with standard legal obligations under UK financial services regulation and HMRC guidance.

When we delete or anonymise data

We regularly review the information we hold and delete or securely anonymise any data that is no longer needed. For example:

  • If you close your Splita Account and there are no outstanding obligations or legal requirements, we will begin the process of deleting your data
  • Certain information, such as support messages or device logs, may be deleted sooner if no longer relevant
  • Where we retain data for statistical or research purposes, we will ensure it is anonymised so you cannot be identified

What you can do

You can ask us to delete your personal data at any time and we will do so where there is no legal reason for us to continue holding it. Please email support@splita.me if you wish to request deletion of your data or close your account.

14. Your Rights Under Data Protection Law

You have rights under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018 in relation to the personal data we hold about you. These rights give you greater control over your data and how it is used. You can exercise any of the rights below by contacting us at support@splita.me.
Your key rights include:

  • Right of access
    You have the right to request a copy of the personal data we hold about you, along with details of how we use it.
  • Right to rectification
    If the information we hold about you is inaccurate or incomplete, you can ask us to correct it.
  • Right to erasure (also known as the “right to be forgotten”)
    You may request that we delete your personal data in certain circumstances — for example, if we no longer need it or if you withdraw your consent.
  • Right to object
    You can object to us processing your personal data where we rely on our legitimate interests as a legal basis. You also have the right to object to your data being used for direct marketing purposes.
  • Right to restrict processing
    In some cases, you can ask us to stop processing your data but still retain it — for example, while we look into a correction or objection request.
  • Right to data portability
    Where processing is based on your consent or a contract and is carried out by automated means, you may have the right to request your data in a structured, commonly used and machine-readable format or to have it transferred to another provider.
  • Rights in relation to automated decision-making
    You have the right not to be subject to a decision based solely on automated processing (including profiling) that has a legal or similarly significant effect on you, unless this is necessary for a contract or you have given your explicit consent.

How to exercise your rights
To make a request, email us at support@splita.me. We may need to verify your identity before responding. We aim to respond to all valid requests within one month, although this may be extended in complex cases.
Your right to complain
If you are unhappy with how we have handled your personal data, you have the right to raise a complaint with the UK’s independent regulator for data protection:
Information Commissioner’s Office (ICO)
Website: www.ico.org.uk
Phone: 0303 123 1113
We would, however, appreciate the opportunity to address your concerns directly before you contact the ICO.

15. Links to Other Websites and Services

The Splita mobile app and website may occasionally include links to websites, services or resources operated by third parties. These are provided for your convenience and information only.

Please be aware that:

  • We do not control these third-party sites or services and are not responsible for how they handle your personal data.
  • If you follow a link to another site, that site’s own privacy policy and terms will apply.
  • We strongly encourage you to review the privacy policies of any third-party services before providing any personal information.

Splita Ltd accepts no liability for the content, policies or practices of any external sites linked from our app or website.

16. Updates and Contacting Us

By continuing to use the Splita Services, you confirm that you have read and understood this Privacy Policy and that you agree to the ways in which your personal data may be collected, used and shared as described.
We may update this Privacy Policy from time to time to reflect changes in the law, regulatory guidance or our services. When we do, we will update the “Last updated” date at the top of this page and, where appropriate, notify you via the App or by email.
We encourage you to check this page regularly so you are aware of how we protect your personal data.
If you have any questions, concerns or requests about how we handle your information, please contact us at support@splita.me.
If you are dissatisfied with our response or believe we have not handled your personal data lawfully, you also have the right to raise a complaint with the UK Information Commissioner’s Office (ICO) at www.ico.org.uk.