Privacy Policy

Last updated: 1 February 2023

1. Introduction

This Privacy Policy explains what you can expect from us and what we need from you in relation to your personal data. 

If your data is processed by us in the Dubai International Finance Centre (“DIFC”), the data controller is Taptap Send (DIFC) Limited.

We have appointed a Data Protection Officer (“DPO”) to oversee compliance with this Privacy Policy. If you have any questions over how we protect or use your data, please email our DPO at

Taptap Send DIFC (“Taptap Send”) offers a software platform and services to help individuals send money to emerging markets. We collect data about our customers and their payees (“Data”) when they use our platform, our services, and our websites (collectively, “Services”). This privacy policy describes how we collect, use and disclose Data.

In this Privacy Policy, we sometimes refer to “you”. “You” may be a visitor to our website, a customer of one or more of our Services (“Customer”), or a payor / payee of a Customer (“Payee”). This Privacy Policy does not apply to third-party websites, products, or services even if they link to our Services, and you should consider the privacy practices of those third-parties carefully. If you object to the practices described in this Privacy Policy, you should (a) remove cookies from your computer after leaving our website, and (b) discontinue your use of our Services.

We may change this Privacy Policy from time to time. We will post any changes, and such changes will become effective when they are posted. Where applicable, your continued use of our Services following the posting of any changes will mean you accept those changes. We encourage you to review the Privacy Policy whenever you interact with us to stay informed about our information practices and the ways you can help protect your privacy.

2. How we handle your data

We receive Data from visitors to our website, and Customers using our Services. The collection and use of data is crucial to providing our Services and keeping the Services safe. Data helps us increase the safety of your online payments, while reducing the risk of fraud, money laundering and other harmful activity. Generally, Data can be categorized into data that directly identifies you individually (“Personal Information”) and data associated with your activities (“Activity Information”).

All information you provide to us is stored on our secure servers. Any payment transactions will be encrypted using Transport Layer Security technology. You are responsible for keeping confidential any passwords we give you. We ask you not to share this password with anyone else and not to use this password for other services or products

3. Collecting Personal Information

You may have to provide us with Personal Information to sign up for, or make use of, our Services. This data includes the following, for yourself and your recipient:

If you do not provide us with this requested data, we may not be able to provide our Services to you.

We may collect Personal Information about you from other sources. For example, we may:

4. Collecting Activity Information

We also automatically collect Activity Information based on your use of our Services. This data would include your activities on our website, or actions performed on our payment platform. For example, we may collect:

Our Website and App also use cookies to distinguish you from other users. This helps us to provide you with a good experience when you use our Website or App, and also allows us to improve our Website or App. We also use cookies for marketing/retargeting purposes (i.e., to show you more relevant ads). By continuing to use our Website and/or App, you are agreeing to our use of cookies.

Personal Information and Activity Information we collect is stored in compliance with our various regulatory obligations for anti-money laundering and fraud purposes.

5. Data Use

When you sign up to make payments through our Service, you enter into a contract with us to make these payments on your behalf. We must process your Data to fulfil this contract. Further, we are required by law to collect, process, and retain your Data, in fulfilment of our anti-money laundering regulatory obligations. We use your Data in the following ways:

We may combine information from the Services together and with other information we obtain from our business records or from third party sources.

Taptap Send will only use your Data for marketing and promotional purposes if you "opt in" to such uses, and you can withdraw this permission at any time. You have the right to ask us not to contact you for marketing purposes by contacting us at

As a regulated financial institution, we are required by law to store some of your Data beyond the termination of your relationship with us. After such time, your Data will only be accessed or processed if absolutely necessary. We will always delete Data that is no longer required by relevant legislation.

6. Data Sharing

We may share Data to ensure that we can continue providing you with the Services you have contracted.

Taptap Send may share your Personal Information and Activity Information with:

Taptap Send may share only Activity Information (and not Personal Information) with:

Your Data may be processed by us, members of the Taptap Send Group and those other parties described above, outside the country in which you are based. Where the DIFC has not issued an adequacy decision in relation to the jurisdiction where your personal information is processed, we will ensure that there are adequate mechanisms in place to protect your personal information in accordance with applicable data protection and privacy law. We will do this through use of data transfer agreements implementing standard data protection clauses. You can receive further information about the data transfer agreements that concern your Data by contacting us at

7. How We Protect Your Data

All information you provide to us is stored on our secure servers. Any payment transactions will be encrypted using Transport Layer Security technology. We take reasonable measures to help protect information about you from loss, theft, misuse and unauthorized access, disclosure, alteration and destruction. If you feel your interaction with us is no longer secure (e.g., you believe your log in or other security credentials have been compromised), please contact us immediately.

8. Your Rights

If your data is processed by us in the DIFC, the following information applies to your Personal Information that we have processed or collected.

Purposes of processing and legal basis for processing: As explained above, we process Personal Information in various ways depending upon your use of our Services.  We process Personal Information on the following legal bases: (1) with your consent; (2) as necessary to perform our agreement to provide Services; and (3) as necessary for our legitimate interests in providing the Services where those interests do not override your fundamental rights and freedom related to data privacy.  Where we process Personal Information that is special category data (i.e., biometric data or data which may reveal political opinions), we process Personal Information on the additional legal basis that such processing is necessary for substantial public interest reasons (e.g., to prevent or detect unlawful acts).

Right to lodge a complaint: Users who have their data processed by us in the DIFC have the right to lodge a complaint about our data collection and processing actions with the supervisory authority concerned. Contact details for data protection authorities are available below.

Personal Information that we collect may be transferred to, and stored and processed in, the United States or any other country in which we or our affiliates, subcontractors, or partner payment processors maintain facilities. The laws in the U.S. and other countries regarding personal information may be different from the laws of your state or country.  Any such transfers will comply with safeguards as required by relevant law. It may also be processed by staff operating outside the DIFC who work for us or for one of our payment processors. Such staff may be engaged in, among other things, the fulfilment of your payment order, the processing of your payment details and the provision of support services. By submitting your personal data, you agree to this transfer, storing or processing.

Individual Rights: If your data is processed by us in the DIFC you are entitled to certain rights under the DIFC Data Protection Regulations over Personal Information that we have processed or collected. We have listed below how these rights operate in the context of using Taptap Send’s Services. You may contact us at to request the exercise of these rights. We will make every effort to respond promptly, and in any case within 30 days of your request. We may take measures to verify your identity before processing a request.

9. Our Partners

Our Services may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates.  If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility for them.  Please check these policies before you submit any personal data to these websites.

10. Changes to this Policy
Any changes we may make to our Privacy Policy will be posted on this page and, where appropriate, notified to you by e-mail or in the App. Please check back frequently to see any updates or changes to our privacy policy.

Contact us

If you have any questions about this Privacy Policy, please contact our DPO at If you feel that we have not addressed your questions or concerns adequately, you may make a complaint with the Data Protection Commissioner in the DIFC. You may access their details via