Privacy Policy

Effective Date: March 2026

At CrediX (a registered trading name of MB Marketing Solutions Limited, Company Reg: 801667), we are committed to protecting and respecting your privacy. This Privacy Policy outlines how we collect, use, and protect your personal data in accordance with the General Data Protection Regulation (GDPR) and the Data Protection Acts 1988 to 2018.

1. Our Role in Data Processing

Depending on our relationship with you, we act in two different capacities:

• As a Data Controller: When you visit our website, contact us for our services, or become a direct client of CrediX.
• As a Data Processor: When we are engaged by our clients to perform credit management and debt recovery services. In these instances, we process the personal data of debtors solely on the instructions of our clients (the Data Controllers).

2. Information We Collect

We may collect and process the following data:

• Client Data: Names, business addresses, email addresses, phone numbers, and payment details required to manage our commercial relationship.
• Debtor Data: When acting as a Data Processor for our clients, we receive data relating to individuals or businesses who owe funds. This includes names, contact details, account numbers, outstanding balances, and records of communication.
• Website Data: Information about your visit to our site, including IP addresses, browser types, and cookies (see Section 7).

3. How We Use Your Data

We use your personal data for the following purposes:

• To provide fractional credit control and debt recovery services.
• To communicate with individuals regarding outstanding account balances, payment plans, and dispute resolution.
• To comply with our legal and regulatory obligations, including Anti-Money Laundering (AML) checks and Central Bank of Ireland guidelines.
• To improve our website functionality and customer service.

4. Lawful Basis for Processing

Under the GDPR, we rely on the following legal bases to process personal data:

• Performance of a Contract: To fulfill our Service Level Agreements (SLAs) with our clients.
• Legitimate Interests: For the recovery of outstanding commercial and consumer debts owed to our clients.
• Legal Obligation: To comply with applicable Irish and EU laws.

5. Data Sharing and Disclosure

We do not sell your data. We may share personal data with:

• The original creditor (our client) to provide updates on recovery efforts.
• Payment processing providers (to facilitate the collection of funds).
• Legal representatives or the courts, should a debt recovery case require formal legal escalation.

6. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected. For debt recovery matters, data is typically retained for the duration of the collection process and for a statutory period of up to 6 years following the closure of the account, in order to comply with Irish accounting and legal defense requirements.

7. Your Data Protection Rights

Under the GDPR, you have the right to:

• Access: Request a copy of the personal data we hold about you.
• Rectification: Request correction of inaccurate or incomplete data.
• Erasure: Request the deletion of your data (Note: this right is not absolute and may be overridden by our legitimate interest or legal obligation to recover an outstanding debt).
• Restriction / Objection: Request that we limit or cease processing your data under certain circumstances.

8. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your data rights, please contact our Data Protection lead:

Mirko Beciri
Director, CrediX
6 Swiss Heights, Swiss Cottage, Dublin
Email: contact@credix.ie

If you are unsatisfied with our response, you have the right to lodge a complaint with the Data Protection Commission (DPC) in Ireland (www.dataprotection.ie).