Data Protection Policy

Last updated: 12 January 2026

This Data Protection & Privacy Policy (“Policy”) explains how Melio Holdings Ltd (“Melio”, “we”, “us”, “our”) collects, uses, stores and protects personal data in accordance with:

  • the UK General Data Protection Regulation (UK GDPR);

  • the EU General Data Protection Regulation (EU GDPR); and

  • the UK Data Protection Act 2018.

This Policy applies to personal data collected through our website (the “Website”) and related communications.

1. Who we are (Data Controller)

Melio Holdings Ltd acts as the data controller for personal data processed via the Website.

Company number: 16896435
Registered office: 100 Glenwood Gardens, Ilford, England, IG2 6XX
Email: info@melioholdings.com

2. Scope – B2B only

Melio operates on a strictly business-to-business (B2B) basis.

We process personal data relating to:

  • representatives, employees, directors, agents or advisers of corporate or institutional entities;

  • professional contacts making business enquiries.

We do not intentionally collect data from consumers or minors.

3. Personal data we collect

Depending on your interaction with the Website, we may collect:

3.1 Information you provide

  • Name

  • Business email address

  • Company name and role

  • Telephone number

  • Content of enquiries or correspondence

3.2 Automatically collected data

  • IP address

  • Browser type and device information

  • Website usage data (pages visited, time spent, referral source)

Automatically collected data is used for security, performance monitoring and analytics.

4. Legal bases for processing

We process personal data only where permitted under UK GDPR and EU GDPR, including:

  • Legitimate interests – to respond to business enquiries, manage relationships, ensure security, and operate our Website;

  • Consent – where required (e.g. optional cookies or marketing communications, if applicable);

  • Legal obligations – where processing is required by law;

  • Pre-contractual steps – where processing is necessary prior to entering into a business relationship.

5. Purposes of processing

We use personal data to:

  • respond to enquiries and communications;

  • assess potential business relationships;

  • conduct compliance and risk checks (where applicable);

  • operate, secure and improve the Website;

  • maintain internal records and audit trails.

We do not sell personal data and do not engage in automated decision-making or profiling.

6. Data sharing and recipients

Personal data may be shared only where necessary with:

  • professional advisers (legal, accounting, compliance);

  • IT and hosting service providers;

  • analytics and security service providers;

  • competent authorities, courts or regulators where legally required.

All third parties are required to process data in accordance with applicable data protection laws.

7. International data transfers

Where personal data is transferred outside the UK or the European Economic Area (EEA), Melio ensures appropriate safeguards are in place, such as:

  • adequacy decisions; or

  • standard contractual clauses approved under UK GDPR or EU GDPR.

8. Data retention

We retain personal data only for as long as necessary for the purposes for which it was collected, including:

  • responding to enquiries;

  • maintaining business records;

  • complying with legal and regulatory obligations.

Retention periods are reviewed periodically and data is securely deleted or anonymised when no longer required.

9. Data security

Melio implements appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse or alteration.

These measures include access controls, secure hosting environments and internal confidentiality obligations.

10. Your rights

Under UK GDPR and EU GDPR, you have the right to:

  • access your personal data;

  • request correction of inaccurate data;

  • request erasure (“right to be forgotten”), where applicable;

  • restrict or object to processing;

  • request data portability (where applicable);

  • withdraw consent at any time (where processing is based on consent).

Requests can be submitted by email to info@melioholdings.com.

11. Complaints

If you believe your data protection rights have been infringed, you have the right to lodge a complaint with:

  • the UK Information Commissioner’s Office (ICO); or

  • your local EU supervisory authority (if applicable).

We encourage you to contact us first so we can address your concerns.

12. Cookies and tracking

The Website may use cookies or similar technologies for functionality, analytics and security.

Detailed information is provided in our Cookie Policy, including how you can manage or disable cookies.

13. Third-party websites

The Website may contain links to third-party websites. This Policy does not apply to those websites, and Melio is not responsible for their privacy practices.

14. Changes to this Policy

We may update this Policy from time to time. The “Last updated” date indicates the most recent version. Continued use of the Website constitutes acceptance of the updated Policy.

15. Contact

For questions or requests relating to data protection, please contact:
📧 info@melioholdings.com