Vigilo Networks Ltd – vigilo.io

Last updated: August, 2025

At Vigilo Networks Ltd (“we”, “our”, “us”), we take your privacy seriously. This Privacy Policy explains how we collect, use, store, and protect your personal information when you visit our website vigilo.io (“Website”) or when your personal data is processed via our fraud detection system as part of ecommerce transaction checks.

We are committed to complying with the UK GDPR, the Data Protection Act 2018, and the guidance of the Information Commissioner’s Office (ICO). We also operate in line with ISO 27001-certified information security practices, ensuring appropriate technical and organisational measures are in place to protect your data.

1. Who We Are

• Company Name: Vigilo Networks Ltd
• Registered Office: Unit 20b Yarrow Mill, Yarrow Road, Chorley, England, PR6 0LP
• Company Registration Number: 16453058
• Country of Incorporation: United Kingdom
  
• Data controller:
  
  • For Website visitor data → Vigilo Networks Ltd
  • For transaction risk analysis data → Retailer is the controller, Experian acts as the data processor.
    
• Contact email for privacy matters: support@vigilo.io

2. What Information We Collect

a) Website Visitors

When you use our Website, we may collect:

• Name and contact details (when you contact us).
• Technical data (IP address, browser type, device info).
• Usage data (pages visited, time on page, navigation).
  

b) Users Processed via Vigilo’s Fraud Detection System

When an e-commerce transaction is checked using our fraud detection services, we may process:

• Identity and contact information: name, billing and/or shipping address, telephone number, email address.
• Payment-related metadata: card provider, transaction details (we do not process or store payment card data).
• Verification records: data matched against official and third-party sources (e.g., electoral register, card providers, Experian, and other fraud prevention services).
• Risk history: frequency and regularity of historic chargeback instances associated with the individual or identifiers.
  

This information is processed to establish the risk of chargeback fraud to the retailer.

3. How We Use Your Information

a) Website Data

We use Website visitor data to:

• Respond to enquiries.
• Provide requested information about our services.
• Monitor, secure, and improve our Website.
  

b) Fraud Detection Data

We process transaction data to:

• Verify customer-provided details against trusted third-party records.
• Analyse fraud risk indicators, including chargeback history.
• Provide the retailer with a risk score or decision output to assist in their order approval process.
  

We do not make final decisions about whether an order is accepted or rejected — that responsibility rests with the retailer.

4. Legal Basis for Processing

• Website data: processed on the basis of legitimate interests (operating and securing our Website) or consent (when you submit an enquiry).
• Fraud detection data: processed under:
  
  • Legitimate interests of retailers in preventing fraud and financial crime;
  • Contractual necessity where retailers have engaged us to provide fraud detection services;
  • Legal obligations where fraud prevention data may be shared with regulators or authorities.
    

5. Sharing Your Information

We may share personal data with:

• Third-party verification providers, such as Experian, card issuers, or official record sources, for fraud risk analysis.
• Our retailers (clients), who receive the fraud risk assessment.
• Trusted IT and infrastructure providers, to securely host and operate the Services.
• Regulatory or law enforcement authorities, where required by law.
  

We require all third parties to respect the confidentiality and security of personal data, and they may only process it in line with GDPR and our contractual agreements.

6. International Transfers

Where personal data is transferred outside the UK or EEA, we ensure appropriate safeguards are in place, including adequacy decisions and Standard Contractual Clauses (SCCs).

7. Data Retention

• Website enquiry data: retained up to 12 months.
• Fraud detection data: retained only for as long as necessary to provide the service to the retailer and to comply with audit or regulatory requirements (normally no longer than 12 months unless otherwise required by law or contract).
• After this period, data is securely deleted or anonymised in line with ISO 27001 disposal standards.
  

8. Your Rights

Under the UK GDPR, individuals have the right to:

• Access their personal data.
• Correct inaccurate or incomplete data.
• Request deletion (where lawful).
• Restrict or object to processing.
• Data portability (receive data in a structured, machine-readable format).
  

For transaction-related data, requests should first be directed to the retailer (the data controller). We will assist them in responding to such requests in line with GDPR.

9. Security

We take security very seriously and implement ISO 27001-certified measures, including:

• Data encryption (in transit and at rest).
• Access controls and authentication safeguards.
• Network monitoring, logging, and incident response processes.
• Staff training on data protection and fraud prevention.
  

10. Complaints

If you have concerns about our handling of your data:

• Please contact us at support@vigilo.io.
• You have the right to lodge a complaint with the ICO: https://ico.org.uk | Tel: 0303 123 1113
  

11. Updates

We may update this Privacy Policy periodically. Changes will be posted on this page with a revised “last updated” date.

12. Contact Us

For questions about this Privacy Policy or data protection, please contact:

Vigilo Networks Ltd
Email: vigilo@vigilo.io