PRIVACY &
PROTECTION.
As a digital financing institution, protecting your private integrity is the foundation of our contractual relationship. This document details our collection, security, and processing protocols for your information assets in accordance with the most rigorous European standards.
01 Data Protection Policy
Confidentiality is not only a legal obligation for IBM FINANCES, it is a core value of our financial engineering. Our data protection charter aims to define with absolute transparency the methods of collection, processing, transfer, and storage of your information assets.
Every interaction with our services is governed by the General Data Protection Regulation (GDPR - EU 2016/679) and the directives of the competent supervisory authority.
By accessing our credit intermediation services, you acknowledge that you have read this charter. We process your data to configure loan solutions adapted to your profile, while guaranteeing top-tier anonymity and cryptographic security.
02 Legal Processing Basis
For the processing of your personal information to be considered lawful, our platform relies on precise legislative grounds, ensuring impeccable management ethics:
Contractual Necessity
Essential for the execution of the credit agreement or the completion of a loan simulation requested by the user.
Legal Obligation
Nécessaire pour se conformer aux régulations bancaires (KYC) et à la lutte contre le blanchiment de capitaux.
Legitimate Interest
Allows us to improve systemic security, prevent financial fraud, and optimize our scoring algorithms.
Explicit Consent
For specific processing such as marketing cookies or sending our personalized financial analyses.
03 Inventory of Collected Data
01. Identity & Contact
We collect your full civil attributes (Last Name, First Name), your communication details (Email, Phone), and your residential location information (Tax address). This data is essential to authenticate your profile and initiate the bank transfer protocol.
HIGH CONFIDENTIALITY02. Professional & Financial Situation
To analyze your real creditworthiness via our "Smart-Scoring" algorithm, we collect information relating to your income flows (salaries, pensions, dividends), your employment status (manager, employee, independent), and your recurring charges (rents, ongoing credits).
SENSITIVE DATA03. Technical Metadata
To guarantee the technical integrity of our transactions, we record your IP address, device type, browser, and activity logs on our simulator. These elements are used for phishing and cyberattack prevention.
SECURE TRACEABILITY04 Third-Party Transfer Protocols
Within the strict framework of loan intermediation, we transmit your encrypted data only to partner banking institutions and insurers likely to finance your project. Each partner is audited by us to ensure its own compliance with GDPR.
Non-Commercial Commitment
We apply a "Zero Resale" policy. Your personal information will never be sold to data brokers or third parties for direct marketing purposes without your express permission.
05 Systemic Security & Encryption
Security is in the DNA of our digital infrastructure. We deploy a multi-level technological arsenal to protect your data:
AES-256
Military-grade encryption for data at rest.
FIREWALL WAF
Active protection against DDoS and SQL Injection attacks.
ANONYMISATION
Masking of sensitive data in our test environments.
06 Data Subject Rights
Conformément au cadre légal du RGPD, vous disposez d'un contrôle total sur vos données personnelles :
| Right | Operational Description |
|---|---|
| Access | Obtain a full copy of the data processed by our systems. |
| Rectification | Correct any obsolete or inaccurate information. |
| Erasure | Request the deletion of your data ("Right to be forgotten"). |
| Portability | Retrieve your data in a structured and interoperable format. |
07 Data Retention Cycles
Your data is only kept for the time strictly necessary for the defined purposes or to satisfy our legal obligations:
- Simulations & Quotes 12 Months
- Active Credit Files 10 Years after closure
- Marketing Data 3 Years (Inactivity)
- Accounting Documents 10 Years
08 DPO Expertise & Claims
Data Protection Officer (DPO)
If you believe that the processing of your data violates European legislation, or for any request to exercise your rights, our Data Protection Officer is your direct contact.
Operational Headquarters
IBM FINANCES
Johan Huizingalaan 765 P.O. Box 9999 1066 VH Amsterdam Netherlands
Digital Channel
info@ibm-finance.comVersion up to date as of 02/02/2026. Competent supervisory authority: AEPD (Spain) / CNIL (France).