TAURUS STRATEGY CONSULTING LTD (“Company”, “we”, “us”, “our”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store and protect personal data in accordance with applicable data protection laws, including the UK General Data Protection Regulation (UK GDPR).

1. Who We Are

TAURUS STRATEGY CONSULTING LTD
Registered in England and Wales
Company services include corporate consulting and related services subject to UK anti-money laundering regulations.

2. Personal Data We Collect

We may collect and process the following categories of personal data:

• identification data (such as name, date of birth, nationality);
• contact information (email address, phone number);
• identification documents (passport, national ID card, proof of address);
• corporate information (directors, shareholders, beneficial owners);
• source of funds or source of wealth information (where required);
• technical data (IP address, device information, logs).

We only collect personal data that is necessary for legal, regulatory or contractual purposes.

3. Purpose and Legal Basis for Processing

We process personal data for the following purposes:

• to comply with anti-money laundering (AML) and know-your-customer (KYC) obligations;
• to verify identity and conduct sanctions and PEP screening;
• to assess client risk and eligibility for services;
• to comply with legal and regulatory requirements;
• to communicate with clients and respond to enquiries.

The legal bases for processing include:

• compliance with a legal obligation;
• performance of a contract or pre-contractual steps;
• legitimate interests, where applicable.

4. AML & KYC Verification

As part of our AML and KYC obligations, we may be required to verify your identity and assess related risk factors before providing services.

For identity verification and compliance screening, we use Shufti Pro, an independent third-party identity verification and AML compliance technology provider.

Shufti Pro assists with:

• identity document verification;
• biometric and liveness checks;
• sanctions and PEP screening;
• AML and watchlist screening.

Verification results are reviewed internally in accordance with our AML policies. Final decisions regarding client acceptance remain the responsibility of the Company.

5. Data Sharing

We may share personal data with:

• compliance and identity verification service providers (including Shufti Pro);
• professional advisers where required;
• regulatory or law enforcement authorities where legally required.

We do not sell personal data to third parties.

6. International Data Transfers

Where personal data is transferred outside the UK, appropriate safeguards are applied in accordance with UK GDPR requirements to ensure an adequate level of protection.

7. Data Retention

Personal data collected for AML and KYC purposes is retained only for the period required by applicable law, typically up to five (5) years after the end of the business relationship, unless a longer retention period is required by law.

After this period, data is securely deleted or anonymised.

8. Data Security

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse or disclosure.

Access to personal data is restricted to authorised persons only.

9. Your Rights

Under UK GDPR, you have the right to:

• request access to your personal data;
• request correction of inaccurate data;
• request erasure of data (subject to legal limitations);
• request restriction of processing;
• object to processing in certain circumstances.

Please note that some rights may be limited where data is processed to comply with legal or regulatory obligations, including AML laws.

10. Contact

If you have any questions about this Privacy Policy or how your personal data is processed, you may contact us at:

Email: info@taurusstrategy.uk

11. Changes to This Policy

We may update this Privacy Policy from time to time. Any updates will be published on this page with the revised date.