MCP Insight Client Data Privacy Policy

Last Updated: December 19, 2025

Data Privacy: What You Need to Know

At MCP Insight, we take the security of your professional data seriously. As part of our commitment to transparency under the UK/EU GDPR, here is a brief overview of how we handle your information:

What we collect: We process professional contact details (names, emails, company info) and technical data (IP addresses) necessary to provide our services and secure your access to our platforms.  

Why we collect it: Primarily to fulfil our contractual obligations to you, such as delivering market intelligence and fraud prevention reports. We also process data based on legitimate interests to improve our website and respond to your inquiries.  

How long we keep it: We retain client data for the duration of our contract plus 7 years for legal and tax compliance. If a formal relationship is not established, inquiry data is deleted after 2 years.  

International Safety: Your data is stored within the UK/EEA. If we use global third-party tools, we ensure Standard Contractual Clauses (SCCs) are in place to maintain high protection standards.  

Your Rights: You have the right to access, correct, or request the erasure of your data at any time.  

For any privacy-related questions or to exercise your rights, please contact our Data Protection Lead, David, at david@mcpinsight.com. You can view our full policy at www.mcpinsight.com.

1. Introduction

At MCP Insight (“We”, “Us”), we understand the critical nature of the data you entrust to us. As a leader in market intelligence and fraud prevention for the mobile payments ecosystem, we are committed to protecting the privacy and security of your professional data in compliance with the UK and EU General Data Protection Regulation (GDPR) and the UK Data Protection Act 2018.

2. The Data We Collect

We collect and process personal data necessary to manage our business relationship and provide our specialist compliance services.

Client Relationship Data: Names, professional email addresses, job titles, and company details provided during onboarding, contract negotiations, or via our contact forms.

Service & Technical Data: IP addresses and usage patterns collected via our platforms (such as MCP SCANNER to ensure secure access and optimize performance.

Billing Information: Financial details required for processing payments and maintaining tax records.

MCP SHIELD and MCP VERIFY/CERTIFY are governed by their own product specific data processing agreements. 

3. Lawful Basis for Processing

We only process client data where a valid legal ground exists:

Contract: To fulfil our obligations under our service agreement with you (e.g., providing ad monitoring or fraud detection reports).

Legitimate Interests: To respond to your inquiries, improve our proprietary technology, and ensure the security of our systems.

Legal Obligation: To comply with tax, audit, and regulatory reporting requirements.

Consent: For sending industry insights or marketing updates, which you may opt out of at any time.

4. Data Retention and Security

We prioritize the integrity of your data through industry-standard encryption (SSL) and strict internal access controls.

Client Data: Retained for the duration of your contract plus 7 years for legal and tax purposes.

Inquiry Data: If a business relationship is not established, data is deleted after 2 years.

Breach Notification: In the unlikely event of a data breach, we will notify the ICO and affected individuals within 72 hours where legally required.

5. International Data Transfers

While we primarily store data within the UK and EEA, our global operations may occasionally require data transfers to third-party services outside these zones. In such cases, we utilize Standard Contractual Clauses (SCCs) or rely on Adequacy Decisions to ensure your data receives a level of protection equivalent to UK/EU standards.

6. Your Rights as a Client

You and your staff have the following rights regarding your personal data:

Access & Rectification: Request a copy of your data or correct any inaccuracies.

Erasure: Request the deletion of data where it is no longer required for contractual or legal reasons.

Object/Restrict: Stop or limit the processing of data for specific purposes.

Portability: Request the transfer of your data to another provider in a structured format.

To exercise these rights, please contact our Data Protection Lead at david@mcpinsight.com. We aim to respond to all requests within 30 days.

7. How to Complain

If you have concerns about how we handle your data, we encourage you to contact us directly. You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO) at www.ico.org.uk.