EEA / UK / Switzerland Privacy Notice
FINASTRA EEA/UK/SWITZERLAND PRIVACY NOTICE
Updated: February 1, 2026
Introduction
This document gives notice how Turaz Global S.à r.l and its group companies d/b/a Finastra, (“we”, “our”, “us”, “Finastra”) handles the personal data as defined by applicable Data Protection Laws (“Personal Information”) of our customers, suppliers, website users and other third parties where:
- we are a data controller, which means we are responsible for deciding how we hold and use Personal Information; and
- we are processing the Personal Information in the EEA, the UK or Switzerland or we are processing data of EEA, UK or Swiss residents irrespective of whether the processing takes place inside or outside of the EEA, the UK or Switzerland respectively (otherwise please refer to the notices section in the Finastra Privacy Notice.
This Notice is a supplement to our Privacy Notice, and provides additional information specific to our Processing of Personal Information as a controller where such Personal Information relates to an individual located in the EEA, the UK, or Switzerland.
It also describes additional data protection rights under the EU GDPR, the UK GDPR and the Swiss Federal Act on Data Protection (the applicable “EU Data Protection Laws”), including a right to object to some of the processing which we carry out or where we rely on consent, how to withdraw that consent. More information about your rights, and how to exercise them, is set out in the "What rights do you have?" section below. Such rights are supplemental and in addition to those set forth in the Rights section of the Privacy Notice.
If you are a candidate applying for a position at Finastra in the EEA/UK/Switzerland please refer to our Finastra EEA/UK/Switzerland Applicant Privacy Notice.
Updates to this notice
We may amend this Notice from time to time, should it become necessary or advisable to do so to comply with regulatory requirements or best practices. The most recent modification date of this Notice will appear at the top of this page. If we materially change our practices in processing Personal Information, we will notify you as appropriate. and as required by applicable law. If you do not agree to any updates to this Notice, please do not continue using or accessing the Sites and Services.
What is the lawful basis for processing?
We process the categories of Personal Information defined in the Personal Information Collected section of the Privacy Notice, and for the purposes set forth in Purposes for Processing section of the Privacy Notice. The lawful basis upon which we engage in such Processing is described below:
Purpose (See definitions in Purposes for Processing section of the Privacy Notice) | Lawful Basis |
|---|---|
| Direct Marketing | Our legitimate interests. You can obtain information on any of our balancing tests by contacting us using the details below. Your consent. |
| Communication; Site and Service Delivery | As required to conduct our business and pursue our legitimate interests. |
| Email Alerts | You can obtain information on any of our balancing tests by contacting us using the details below. To fulfill contractual obligations and take steps linked to a contract. Your consent. |
| Personalization; Advertising; Analytics | Our legitimate interests. You can obtain information on any of our balancing tests by contact us using the details below. Your consent. |
| Evaluation and Improvement | Our legitimate interests. You can obtain information on any of our balancing tests by contacting us using the details below. To fulfill contractual obligations and take steps linked to a contract. |
| Quality Assurance | Our legitimate interests. You can obtain information on any of our balancing tests by contacting us using the details below. To fulfill contractual obligations and take steps linked to a contract. |
| Lawful Processes; Protection of Company | Required by law. Our legitimate interests. You can obtain information on any of our balancing tests by contacting us using the details below. To fulfill contractual obligations and take steps linked to a contract. |
In order to purchase our products and services, the provision of certain Personal Information is mandatory: if relevant Personal Information is not provided, then we will not be able to provide you with our products and services. All other provision of your Personal Information is optional. If you provide Personal Information to us for a certain reason, we will use the Personal Information in connection with the reason for which it was provided. We may Process Personal Information for longer or for other purposes than described herein, when required or permitted by law.
Withdrawing consent or otherwise objecting to direct marketing
Wherever we rely on your consent, you will be able to withdraw that consent, and we will stop the Processing unless we have another legal ground for Processing your Personal Information. In some cases, we are able to send you direct marketing without your consent, where we rely on our legitimate interests (and where other laws do not require consent). You have a right to opt-out of direct marketing (including profiling) we carry out for direct marketing, at any time. You can do this by following the instructions in the communication where this is an electronic message, or by changing your cookie preferences via the Cookie Consent Tool in the footer of the Site. Even if you opt out of marketing communications from us, please note that you may still be contacted with service related communications (such as software upgrades or release availability).
Who will we share this personal information with?
We share Personal Information amongst the categories of third parties identified in the Onward Transfer & Disclosures section of the Privacy Notice.
Where is your personal information stored and processed?
Finastra is a global business. To provide our products and services, we transfer Personal Information to other countries, including countries outside of the EEA, the UK and Switzerland which may have different data protection standards to those which apply to your country of residence. Where information is transferred outside the EEA, the UK and Switzerland, and where this is to a group company or vendor in a country that is not subject to an adequacy decision by the EU Commission, or considered adequate as determined by applicable Data Protection Laws, we will take steps to ensure your Personal Information is adequately protected by safeguards such as the Standard Contractual Clauses (“SCCs”) approved by the EU Commission, or the UK International Transfer Addendum to the SCCs and the specific requirements under the Swiss Federal Act on Data Protection, Swiss standard contractual clauses or a vendor's Processor Binding Corporate Rules, as applicable. You can obtain more information about the relevant mechanism by contacting us on the contact details set out below.
What rights do you have?
We honour data subjects’ rights under applicable law. In addition to those rights set forth in the Rights section of the Privacy Notice, users located in the EEA, the UK, or Switzerland may have the following additional rights, subject to applicable exemptions and exceptions under applicable law:
- to restrict (stop any active) processing of your Personal Information.
- object to the processing of your Personal Information
These rights may be limited under relevant exemptions are included in both the EU GDPR, UK GDPR and in local Data Protection Laws. We will inform you of relevant exemptions we rely upon when responding to any request you make.
To exercise any of these rights, you can get in touch with us by emailing privacy@finastra.com. If you have unresolved concerns, you may have the right to complain to the relevant data protection authority in your country of residence or place of the alleged infringement.
How to contact us and data protection officer
For further information on our privacy policies and practices relating to the handling of Personal Information, contact our Privacy Department by postal mail to Four Kingdom Street, Paddington, W2 6BD, United Kingdom or by email to privacy@finastra.com.