Privacy Policy

Jarsatt Ltd (Company number 1641620), also known as ForestCloud Payments and/or ForestCloud Pay, a company incorporated in British Virgin Islands  and having its registered office at Quijano Chambers P.O. Box 3159 Road Town, Tortola (“ForestCloud” or “We” or “Us”) are committed to protecting your information and respecting your privacy.

This Privacy and Cookies Policy together with the Forestcloud Service Agreement (the “Agreement”) set out the basis on which any personal data we collect from you, or which you provide to us, through our website (“Website”) or in connection with your ForestCloud Account and ForestCloud Services will be processed by us. You accept the terms of this Privacy and Cookies Policy when you sign up for or use our products, services or any other features, technologies or functionalities offered by us on our website, application or through any other means (collectively the “Services"). Additionally, this Privacy and Cookies Policy may change from time to time and your use of the Services indicates your acceptance to the current version of the Privacy and Cookies Policy. Please read this Privacy and Cookies Policy carefully to understand our practices regarding your personal data, how we use it and how we will treat it.

Changes to this Privacy and Cookies Policy

We may update this Privacy and Cookies Policy from time to time by posting a new version on our website and the revised policy will be immediately effective. You should check this page from time to time to ensure you are happy with any changes made, indicated by your continued use of the Services or the further provision of your personal information.

Information we collect

We may collect and process the following data about:

  • Details you provide to us for the purpose of completing the application process. This will include both personal information, business details, and financial information that you link to your ForestCloud Account.
  • ‍Information that you provide to us through communication or feedback whilst you or your organisation uses the Services.
  • Information from outside sources such as credit bureau, customer service providers, our partners and third party organizations to fulfil our legal obligations and prevent fraud and money laundering.
  • Details of your visits to our Website or Mobile Applications including but not limited to your IP address, log-in times, operating system, location data and other communication data.
  • Data related to payment transactions carried out through the Services.

How we use your information

We use information held about you in the following ways:

  • ‍Assessing applications for Services, managing your account and updating your records.
  • Carrying out your instructions to receive payments.
  • Processing customer service enquiries or complaints and improving internal customer training.
  • Performing statistical analysis, market research, or marketing services.
  • Developing and improving our products, services, and website content.
  • Allowing you to participate in interactive features of the Website and the Mobile Application.
  • Identifying, preventing or tackling fraud, money laundering and other crime and enhancing the security of our service.

We may share your information with third parties in relation to the above activities where we use them to process information and provide services on our behalf. We carefully select our third party relationships and your information will be protected, in accordance with the applicable data protection legislation, and by strict confidentiality obligations which all members of our staff and that of third parties are subject to.

Storing your personal data

Where is my data stored?

The data that we collect from you may be transferred to, and stored at, destinations outside the European Economic Area (“EEA”), some of which do not have data protection laws equivalent to those in force in the EEA, for the reasons set out below:

  • ‍Where our group companies store or process your data in accordance with our internal operational requirements and procedures in order to administer the services you require or in connection with anti-fraud measures.
  • Where you have consented to receive marketing material from our group companies.
  • Where our anti-fraud agencies, credit reference agencies and other service providers are based outside the EEA and require access to your data to perform their obligations to us and provide services to you.
  • If you have been referred to us by a third party and that third party is entitled to a commission payment.

We have taken and will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy and Cookies Policy no matter where it is located.


We give the greatest priority to compliance with EU data protection and other privacy laws to which we are subject to and are committed to ensuring that your information is secure. To prevent unauthorized access or disclosure of information we have physical, electronic and managerial procedures in place to keep your information secure. Once logged into your ForestCloud Account, all internet communication is secured using Secure Sockets Layer (SSL) technology with high security 128bit encryption certified by Verisign Secured.

However, this high level of protection can only be effective if you follow certain security practices yourself. You must never share your ForestCloud Account or login details with anyone. If you are concerned that your details have been compromised, you should contact customer service immediately. Details of how to contact customer service are available from the “Contact” section of the Website.

Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site. Any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.

Record retention

We are required by law to retain certain records for a period of at least seven years after closure of your ForestCloud Account which will include data such as your name, contact details, customer number and transaction history, etc. Otherwise, we will delete and destroy all personal data that we hold about you when you (or we) terminate your ForestCloud Account.

Disclosure of your information

Group companies

We may disclose your personal information to any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries. This may be necessary in order to, among other things, fulfil your request, process your payment details, provide better services, provide support services , monitor fraudulent activities and for our business purposes. The disclosure may entail a transfer outside the EEA as mentioned above in this Privacy and Cookies Policy.

Fraud and credit reference agencies (CRAs)

When you open a ForestCloud Account, at intervals of up to every 3 months and at any other time we feel is necessary to do so to protect our financial interests and prevent money laundering or fraud we will share information about you and your ForestCloud Account, financial history and transactions as part of our normal business operations with our banks, payment facilitator partners, credit/debit card processing services, identity verification service providers and credit reference agencies. We can provide you with a list of the credit reference agencies we use upon your written request to the email address set out in the Contact Us section below.

If we believe our financial interests are at risk, we may conduct a credit check of the director, partner, or member that signs the agreement on behalf of the organisation. The CRAs will record details of the search which will form part of your credit history and may be seen by other lenders. This will leave a footprint on the credit file of the main applicant and the business. The CRA supply us with public and shared credit and fraud prevention information and information on all applications will be sent to CRAs and recorded by them. CRAs may create a record of the name and address of your business and its proprietors if there is not one already. If you are a director, we will seek confirmation from CRAs that the residential address that you provide is the same as that shown on the restricted register of directors’ usual addresses at Companies House. We reserve the right to credit search you further, at our discretion, over a period of 12 months from the date of the initial credit search to manage your account with us.

To prevent crime, money laundering and to recover debt, we may exchange information with fraud prevention agencies (FPAs), debt recovery agencies and other organizations including other financial institutions. If false or inaccurate information is identified, details will be passed on to fraud prevention agencies and other organisations involved in crime and fraud prevention.

Intermediary businesses

If you grant an application access to your ForestCloud Account, we will share your transaction history and account information at the most granular level with the entity who you grant access to. You can block access to your ForestCloud Account at any time by contacting ForestCloud.


With your permission we may use your personal details to give you information about products and services available from ourselves and other members of our group company, which may be of interest to you. If personal information is passed on, it is only such information as would allow them to contact you, by telephone, email, post, mobile messaging and other means.

You may instruct us not to process your personal data for marketing purposes by email to the following address at any time:

We will not share your information with third parties accept where outlined in this Privacy and Cookies Policy. If we intend to use your data for any marketing purposes outside of this policy we will inform you and you will have the right to prevent this by “opting out” through check boxes.

We are not responsible for the privacy policies or practices of third party organisations.

Other disclosures

We may also disclose your personal information to:

  • ‍A prospective buyer of our business or portion of our business or a buyer of a substantial number of the shares in our business
  • Where required by law or by the rules and regulations of the Card Schemes
  • Regulatory authorities, in the course of actual or prospective legal proceedings or to governmental authorities, as reasonably required or requested.

Communicating with you

We may contact you by email to the primary email address registered with your ForestCloud Account or by telephone to the primary mobile number registered with your ForestCloud Account.

You may also receive system-generated transactional emails, SMS’ or phone calls such as confirmation of uploads, notification of receipt of payment, notification of password changes etc. which are necessary for the proper operation and administration of your ForestCloud Account.


If you do receive such an email or are asked for your password by anyone claiming to work for us please forward the email or report the incident by email by contacting customer service.

IP addresses and cookies

When using our Website or mobile applications we may collect information about your computer and about your visits. We may obtain information about your general internet usage by using a cookie file which is stored on the hard drive of your computer or mobile device. By using our Website or mobile application, you accept we may collect and use this information as outlined below.

What is a cookie?

A cookie is a small data file which contains information that is transferred to the hard drive of the device from which you access our site. For more comprehensive information about how cookies work, see Cookies are widely used in order to make websites work, or work more efficiently, as well as to provide information to the owners of the site.

Types of cookies and consent

In order to comply with legislation, we have reviewed the use of cookies on our site and have implemented measures to ensure that you are aware of these cookies and give your consent for placing of some or all of these cookies, except for those which are necessary for the services you have requested (as explained below).

In summary, we use the following types of cookies:

  • ‍Cookies which are essential for our site to operate, such as those which identify you so you can log into your ForestCloud Account. These cookies will always be activated.
  • Cookies which are necessary to assist in meeting our regulatory compliance obligations, such as anti-money laundering and anti-fraud obligations, and prevent your ForestCloud Account from being hijacked. These cookies will always be activated.
  • Cookies that help us to improve our site and to deliver a better and more personalised service to you.
  • Cookies that enable us to link to our group companies’ websites.
  • Some cookies are not related to us or our group companies. When you visit a page with content embedded from, for example, YouTube or Twitter, you may be presented with cookies from these websites. We do not control the dissemination of these cookies: you should check the third party websites for more information about these cookies.

Blocking cookies

You can block cookies by activating the setting on your browser which allows you to refuse the setting of all or some cookies. However, if you use your browser settings to block all cookies (including essential cookies) you may not be able to access all or parts of our site. Our system will issue cookies as soon as you visit our site unless you have adjusted your browser setting so that it will refuse cookies.

Contact us

Questions, comments and requests regarding this Privacy and Cookies Policy are welcomed and should be addressed to:


Post: Data protection Officer, Jarsatt Ltd. Quijano Chambers, P.O. Box 3159, Road Town, Tortola, British Virgin Islands.