top of page

Privacy Policy

1. Introduction

Access Financial Services Limited (“Access Financial,” “AFS,” or “the Company”) is committed to protecting personal data. This Privacy Notice explains how AFS collects, uses, shares, stores, and safeguards personal information obtained through interactions with the Company’s:

•    Staff
•    Website
•    Online services

This Notice is issued under the Data Protection Act, 2020 (Jamaica) and applies to
all visitors, customers, and users of the Company’s services.


2. Types of Information Collected

AFS collects personal information when individuals interact with the Company. The type of information collected depends on the products or services involved. Most information relates to the individual conducting business with the Company, but personal information about other individuals may also be required.

Information provided about another individual will be processed in accordance with applicable laws.
The types of information collected by AFS may include, but are not limited to:

Types of Information Collected
Examples
Personal Identifiers
Full name, National ID or TRN, mother's maiden name, photograph, CCTV footage (see "Legitimate Interest")
Contact Details
Email address, telephone number(s), residential address, mailing address, proof of address
Demographic Details
Date of birth, gender, age, nationality, marital status, residency, birth certificate
Banking Information
Bank name, branch, account number, account type
Background Checks Information
Sanction checks

3.   Why We Collect Data (Purpose & Legal Basis)
AFS may process, transfer, and share personal data for several purposes, including but not limited to the following:

3.1  Performance of a Contract

AFS processes personal data to fulfill contractual obligations, including:
 

  • Assessing loan applications and conducting credit checks

  • Managing and servicing loan accounts

  • Communicating about personal accounts or services

  • Providing customer support


3.2   Legal Obligation

AFS processes personal information to meet legal and regulatory requirements, including:
 

  • Consent – where an individual has given clear and specific permission for AFS to process personal information for particular purposes.

  • Regulatory and legal compliance – to meet obligations under laws and regulations, such as KYC (Know Your Customer) and AML (Anti-Money Laundering) requirements.

  • Prevention of financial crime – to perform activities necessary to prevent fraud, money laundering, or other financial crimes.


3.3   Legitimate Interests of AFS

AFS may process personal data where it is necessary for the Company’s legitimate
interests, provided these interests do not override individual rights. Examples include:

•    Recovering debts owed to AFS 
•    Investigating and preventing fraudulent activity
•    Using CCTV on Company premises to:

  • Ensure the safety and security of employees, visitors, and property

  • Support the administration of justice, including cooperating with law enforcement in case of an incident

  • Defend or initiate legal claims, such as filing or defending lawsuits


4.    How AFS uses personal information


AFS uses personal information for the following purposes:

​

  • To offer, administer, and manage the products and services provided, including updating and maintaining personal records.

  • To verify identity and ensure the accuracy of information provided.

  • To perform KYC due diligence checks.

  • To improve the Company’s website and services.

  • To ensure compliance with internal controls and external regulatory requirements.

  • To enforce contracts and recover any outstanding debts related to the services provided.

  • To fulfill legal and regulatory obligations.

  • To respond to requests and provide customer support.

 


5.    Data Retention


AFS retains personal data only for as long as necessary to fulfill the purposes described in this Notice or as required by law. Under the Microcredit Act, 2019, the Company is required to retain personal data for 7 years from the date it was collected or from the date a loan is repaid, whichever is later. In certain circumstances, AFS may retain personal data for longer than 7 years for legal, regulatory, or technical reasons.



6.    How Information is Protected


AFS implements industry-standard security measures to safeguard personal data, including:

​

  • Encrypted data transmission (HTTPS/SSL)

  • Secure server infrastructure, including firewalls and antivirus protections

  • Access controls and password protection to limit access to authorized personnel only

  • Secured physical storage, such as locked cabinets for paper records

  • Regular audits and security updates to maintain the integrity and safety of systems

 


7.    Sharing of Personal Information


AFS does not rent or sell personal data. Personal data is shared only when legally permitted or necessary to deliver, administer, and manage the Company’s services.

AFS may share personal data with the following categories of recipients:
 

  • Within AFS – between departments, as required to provide services

  • Third-party service providers – for IT support, cloud storage, verification, and related services

  • Regulators and legal authorities – where required by law or regulation

  • Credit reporting agencies – for creditworthiness checks

  • Third parties at the client’s request or with the client’s consent

  • External auditors – where necessary for audits of the Company

  • Debt recovery agents – to recover outstanding amounts owed to the Company

 


8.    Accuracy of Information


AFS relies on accurate personal data to provide and manage its services effectively. Clients are responsible for informing the Company of any changes to their personal information, including updates to contact details or any other information that may affect the proper management and administration of services.
 


9.    Information Security


AFS has implemented appropriate technical and organizational measures to protect the confidentiality, integrity, and availability of personal data, ensuring that it is processed in accordance with applicable data privacy laws.

Security measures include, but are not limited to:
 

  • Firewalls and antivirus protections

  • Encryption of sensitive data

  • Regular software updates

  • Written policies and procedures governing data handling

  • Restricted access to personal information, limited to staff who require it to perform their roles


These measures are regularly audited and reviewed at the senior management level.

Additionally, CCTV is used on Company premises as a deterrent and to help protect the personal data of staff and customers.
 


11.    Marketing


AFS may send marketing communications by mail, phone, email, text, or other electronic means only with the consent of the customer, typically provided through the completion of a direct marketing form.

Customers can withdraw their consent at any time by:
 

  • Clicking the unsubscribe link in email communications, or

  • Contacting the Company directly.


For contact details, please refer to the “Contact Us” section of this Privacy Notice.
 


12.    Rights Under the Data Protection Act (2020)


The Data Protection Act, 2020 (Jamaica) provides individuals with the following rights regarding their personal data:

Rights
Description
Access
The right to request access to personal data held by AFS. Individuals have the right to be informed whether, and to what extent, AFS processes their personal data.
Correction
The right to request correction or completion of inaccurate or incomplete personal data. Requests can be made at any time.
Deletion
The right to request deletion of personal data when it is no longer required for the purpose it was collected. Note: Certain data may need to be retained to comply with legal, regulatory, or contractual obligations.
Objection
The right to object to certain types of processing of personal data. Objections may be raised in situations permitted by law.
Withdrawal of Consent
The right to withdraw consent for the processing of personal data, including marketing communications, at any time. Consent for marketing communications may be withdrawn if an individual no longer wishes to receive them.

​To   exercise   these   rights,   individuals   may   contact   AFS   at dpo@accessfinanceonline.com, providing a valid form of identification.
 


13.    Cookies and Tracking Technologies

The Company’s website uses cookies, which are managed by the AFS website service
provider.
 

  • Optional cookies are turned off by default.

  • Visitors can manage cookie preferences through the cookie settings on the website.

  • Mobile App – The AFS mobile application is available for user convenience. The app does not use cookies or similar tracking technologies.

 


14.    Changes to This Privacy Notice


This Privacy Notice may be updated periodically to reflect changes in legislation or the Company’s business practices. The most recent version will always be available on the website, along with the current effective date.

AFS will notify stakeholders of any substantial changes via email or a website banner.
 


15.    How To Contact Us

AFS is committed to protecting your privacy and personal information. For any questions, concerns, or requests regarding the processing of personal data, individuals may contact the Company using the information below:
 
Karen Cobourne
AFS Data Protection Officer (DPO)
C/O Access Financial Services Ltd.
41b Halfway Tree Road
Kingston 5
Email: dpo@accessfinanceonline.com
Phone: (876) 618-0937

bottom of page