Privacy Policy

Last updated: February 13, 2026

1. Introduction

SKOLVIA LTD ("we", "us", "our"), a company registered in England and Wales under company number 17029932, with its registered office at 153-159 Bow Road, London, England, E3 2SE, is committed to protecting and respecting your privacy.

This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit our website skolvia.international, use our services, or otherwise interact with us. Our services include asset recovery, fraud investigation, blockchain transaction analysis, cybersecurity consulting, and related information technology consultancy activities.

By accessing or using our services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with the terms of this policy, please do not access our website or use our services.

2. Information We Collect

2.1 Personal Data You Provide

We may collect the following personal information that you voluntarily provide to us:

• Identity Data: full name, date of birth, nationality, government-issued identification documents.
• Contact Data: email address, telephone number, postal address.
• Financial Data: bank account details, cryptocurrency wallet addresses, transaction records relevant to our investigation and recovery services.
• Case Data: information you provide in relation to fraud investigations, asset recovery cases, or cybersecurity incidents, including correspondence, evidence, and supporting documentation.
• Communication Data: records of correspondence with us, including emails, live chat transcripts, and phone call records.
• Account Data: username, password, and account preferences if you create an account with us.

2.2 Usage Data

When you access our website, we automatically collect certain information, including:

• IP address and approximate geographic location.
• Browser type and version, operating system, and device information.
• Pages visited, time spent on pages, referring URLs, and navigation paths.
• Date and time of access, clickstream data, and interaction patterns.

2.3 Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and store information about your interactions with our website. For detailed information about the cookies we use, please refer to our Cookie Policy.

3. How We Use Your Information

We use the information we collect for the following purposes:

• Service Delivery: to provide our asset recovery, fraud investigation, blockchain analysis, and cybersecurity services.
• Case Management: to manage and progress your case, conduct investigations, prepare reports, and communicate findings.
• Communication: to respond to your enquiries, provide customer support (available 24/7), and send service-related notifications.
• Improvement: to analyse usage patterns and improve our website, services, AI-driven tools, and machine learning models.
• Legal Compliance: to comply with applicable laws, regulations, and legal processes, including anti-money laundering (AML) and know-your-customer (KYC) requirements.
• Security: to detect, prevent, and address fraud, security breaches, and other harmful activities.
• Marketing: with your consent, to send you information about our services, industry insights, and updates that may be of interest to you.

4. Legal Basis for Processing

Under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, we process your personal data on the following legal bases:

• Contractual Necessity: processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract (e.g., providing investigation and recovery services).
• Legitimate Interests: processing is necessary for our legitimate interests, such as improving our services, ensuring network security, and conducting business analytics, provided these interests are not overridden by your rights.
• Legal Obligation: processing is necessary to comply with a legal obligation to which we are subject, including regulatory and law enforcement requirements.
• Consent: where you have given clear consent for us to process your personal data for a specific purpose, such as receiving marketing communications.

5. Data Sharing and Disclosure

We may share your personal information with the following categories of recipients:

• Service Providers: trusted third-party companies that assist us in operating our business, such as IT infrastructure providers, cloud hosting services, and analytics platforms.
• Professional Advisors: lawyers, accountants, auditors, and insurers who provide professional services to us.
• Law Enforcement and Regulatory Bodies: where required by law, regulation, or legal process, or where necessary to protect our rights, property, or safety, or the rights, property, or safety of others.
• Blockchain Analytics Partners: specialised partners who assist in tracing and analysing blockchain transactions as part of our investigation services.
• Business Transfers: in connection with any merger, acquisition, reorganisation, or sale of assets, your personal data may be transferred as part of that transaction.

We do not sell your personal data to third parties. All third parties with whom we share data are required to respect the security of your personal data and to treat it in accordance with applicable law.

6. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including to satisfy any legal, regulatory, accounting, or reporting requirements. The retention period depends on the context of the data and our obligations:

• Case-related data: retained for a minimum of six (6) years after the conclusion of a case, in accordance with legal and regulatory requirements.
• Account data: retained for the duration of your account and for up to two (2) years after account closure.
• Marketing data: retained until you withdraw your consent or unsubscribe.
• Website usage data: typically retained for up to twenty-four (24) months.

7. Your Rights

Under the UK GDPR, you have the following rights in relation to your personal data:

• Right of Access: you have the right to request a copy of the personal data we hold about you.
• Right to Rectification: you have the right to request that we correct any inaccurate or incomplete personal data.
• Right to Erasure: you have the right to request that we delete your personal data in certain circumstances.
• Right to Restriction of Processing: you have the right to request that we restrict the processing of your personal data in certain circumstances.
• Right to Data Portability: you have the right to receive your personal data in a structured, commonly used, and machine-readable format.
• Right to Object: you have the right to object to the processing of your personal data where we rely on legitimate interests as our legal basis.
• Right to Withdraw Consent: where processing is based on consent, you have the right to withdraw that consent at any time without affecting the lawfulness of processing carried out before withdrawal.
• Right to Lodge a Complaint: you have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe your data protection rights have been violated. The ICO can be contacted at ico.org.uk.

To exercise any of these rights, please contact us using the details provided in the "Contact Us" section below. We will respond to your request within one (1) month of receipt.

8. International Data Transfers

Due to the global nature of our services, particularly in blockchain analysis and cross-border fraud investigations, your personal data may be transferred to and processed in countries outside the United Kingdom. Where such transfers occur, we ensure that appropriate safeguards are in place, including:

• Transfers to countries that have been deemed to provide an adequate level of data protection by the UK Secretary of State.
• Use of International Data Transfer Agreements (IDTAs) or the UK Addendum to the EU Standard Contractual Clauses.
• Other legally recognised transfer mechanisms as appropriate.

9. Security of Your Data

We take the security of your personal data seriously and implement appropriate technical and organisational measures to protect it against unauthorised access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit and at rest using industry-standard protocols.
• Access controls and authentication mechanisms to limit data access to authorised personnel.
• Regular security assessments, penetration testing, and vulnerability scanning.
• Employee training on data protection and information security best practices.
• Incident response procedures to address any data breaches promptly and effectively.

While we strive to protect your personal data, no method of transmission over the Internet or method of electronic storage is completely secure. We cannot guarantee absolute security.

10. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have collected personal data from a child without appropriate parental consent, we will take steps to delete that information as soon as possible. If you believe that we may have collected information from a child, please contact us immediately.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will notify you by posting the updated policy on our website with a revised "Last updated" date. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please contact us:

Company number: 17029932 (registered in England and Wales)