Privacy Policy

Last Updated: 18 March 2025

Introduction

Warren BV (“Warren,” “we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, share, and protect personal data when you use our wealth enablement platform. Our platform includes mobile applications (iOS and Android) and a web portal designed to enhance financial well-being for companies’ employees, contractors, and their dependents through software, digital tools, education, and AI-powered coaching. We process personal data in accordance with applicable data protection laws, including the EU General Data Protection Regulation (GDPR), and we implement strict data access controls to safeguard your information.

By using Warren’s services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with any part of this Policy, please do not use the platform. We may update this Policy from time to time (see “Changes to This Privacy Policy” below). If you have any questions, feel free to contact us using the details provided at the end of this Policy.

Personal Data We Collect

We only collect personal data that is necessary for the purposes explained in this Policy. The types of data we may collect include:

We collect most personal data directly from you when you sign up or use the platform’s features. In some cases, we may receive data from third parties with your permission – for example, if you connect your bank accounts through an integrated financial data service, or if your employer provides basic enrollment information to allow your access. We will not collect any special categories of personal data (such as health, genetic, or biometric data) unless it is strictly necessary (for instance, biometric ID verification for compliance) and, in such cases, we will do so in accordance with the law and with your explicit consent where required.

How We Use Your Personal Data

Warren uses your personal data to operate, provide, and improve our financial wellness platform and services. We always ensure that we have a valid legal basis (such as your consent, fulfilling our contract with you, complying with a legal obligation, or our legitimate interest) for each use of your data. Specifically, we use personal data for the following purposes:

We will not use your personal data for purposes that are unrelated to the services you sign up for, unless we obtain your consent or have another lawful basis for doing so. We do not sell or rent your personal information to third parties for their own marketing or commercial purposes.

Third-Party Service Providers and Data Sharing

We treat your personal data with care and confidentiality. We may share your information only in the following circumstances and with appropriate safeguards:

Importantly, we do NOT share your personal data with your employer (or sponsoring company) unless you explicitly instruct us to or as part of a clear program feature that you opt into. If your employer has provided you access to Warren as a benefit, they may receive aggregated, anonymized insights about the overall workforce’s financial wellness (for example, average improvement in financial wellness scores or total number of employees reaching savings goals). These reports will never include any of your personal or identifiable financial details without your consent. Your individual financial information, habits, and coaching discussions remain private to you, Warren, and our authorized service providers as outlined above.

International Data Transfers

Warren is based in the European Union (EU), and we strive to store and process data within the EU/European Economic Area (EEA) whenever possible. However, some of our third-party service providers or affiliates may be located outside of your home country, including in countries outside the EU/EEA. If we need to transfer your personal data to a country that is not recognized by the European Commission as providing an adequate level of data protection (for example, to the United States), we will ensure appropriate safeguards are in place to protect your information.

When transferring data internationally, we rely on one or more of the following legal safeguards:

You have the right to request more information about our international data transfers and obtain a copy of the relevant safeguards (such as SCCs). To do so, please contact us using the information in the “Contact Us” section below.

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, and to comply with legal and contractual requirements. The specific retention periods depend on the type of data and the purposes of processing. For example:

Once the applicable retention period expires or the purpose of processing has been achieved, we will either securely delete or irreversibly anonymize your personal data so that it can no longer be associated with you. If deletion or anonymization is not immediately feasible (for example, because the data is stored in backup archives), we will securely store and isolate the data from any further use until deletion is possible.

Your Rights and Choices

As a user of our platform and, if you are in the EU or a similar jurisdiction, as a data subject under GDPR, you have certain rights regarding your personal data. Warren is committed to honoring your rights and has established processes to enable you to exercise them. Your principal data protection rights include:

You can exercise your rights at any time by contacting us (see “Contact Us” below). We will respond to your request in accordance with applicable law, usually within one month. Please note that for security reasons, we may need to verify your identity before fulfilling certain requests (such as providing access to data or deleting data) to ensure that your personal data is not disclosed to someone impersonating you.

Data Security Measures

Warren takes the security of your personal data very seriously. We have implemented a robust set of technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction. These measures include:

Despite our stringent measures, no system can be guaranteed 100% secure. However, we continuously update and improve our security practices to mitigate risks as much as possible. In the unlikely event of a data breach that poses a risk to your rights and freedoms, we will notify you and the appropriate supervisory authorities as required by law.

Children’s Privacy

Our platform is primarily intended for use by adults (such as employees and contractors) in the context of financial wellness. It is not directed to children under the age of 18 for independent use. We do not knowingly collect personal data from children under 18 without appropriate consent. If you are a parent or guardian using Warren for the benefit of a dependent child (e.g. teaching them financial skills or managing savings for them), you must provide any necessary consent and supervision. If we become aware that we have collected personal data directly from a child under 18 without verifiable parental consent, we will take steps to delete that information.

If you have any concerns about your child’s personal data in our platform, please contact us and we will work with you to address the issue.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make changes, we will revise the “Last Updated” date at the top of this Policy. If the changes are significant, we may also provide a more prominent notice or seek your consent as required by law (for example, by notifying you via our app or by email of the update).

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of the Warren platform after any changes to this Policy constitutes your acceptance of the updated terms (to the extent permitted by law). If you do not agree with any updates or changes, you should stop using the platform and you may exercise your rights as described herein.

Contact Us

Warren BV is the data controller responsible for the processing of your personal data in the context of our wealth enablement platform. If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

Warren BV

Email: privacy@warren.eu (for privacy inquiries or to exercise your data protection rights)
Support: support@warren.eu (for general support or account-related questions)

We will endeavor to respond to your inquiry as soon as possible, and no later than within the timeframes required by law. Your privacy is important to us, and we welcome your feedback and questions as we strive to protect and respect your personal data.