< Back to Home

Privacy Notice

Introduction

Bayforest Capital Limited (the “Company”) is dedicated to safeguarding your personal data. This privacy notice outlines how we collect, process, and protect your data when you interact with us as an investor. It applies to all investors in the Company’s funds and related entities globally.

The Company complies with data protection laws including the EU General Data Protection Regulation (“GDPR”), the UK GDPR, the Cayman Islands Data Protection Act, 2017 (“DPL”), and other applicable regulations. This notice informs you about your rights and how your personal data is handled.

Who We Are

For data protection purposes, Bayforest Capital Limited acts as the data controller for your personal data. In specific situations, service providers, such as fund administrators or investment managers, may also act as data controllers.

What Data We Collect

We may collect and process the following categories of personal data:

  • Identity Data: Name, date of birth, nationality, passport details, and government identification numbers.
  • Contact Data: Residential and business address, email address, and phone numbers.
  • Financial Data: Bank account information, investment details, and transaction history.
  • Compliance Data: Tax identification numbers, source of funds, anti-money laundering (AML) documentation, and related correspondence records.
  • Professional Data: Employment and professional background details.
  • Communication Records: Call records, email correspondence, and other communications exchanged with the Company.
  • Identity Data: Name, date of birth, nationality, passport details, and government identification numbers.
  • Contact Data: Residential and business address, email address, and phone numbers.
  • Financial Data: Bank account information, investment details, and transaction history.
  • Compliance Data: Tax identification numbers, source of funds, and anti-money laundering (AML) documentation.
  • Professional Data: Employment and professional background details.

How We Collect Your Data

We collect your personal data through the following means:

  • Information provided by you in application forms and related documentation.
  • Communications, including written, electronic, or verbal correspondence.
  • Third-party sources, such as public databases, financial advisers, or service providers performing compliance checks.

Purpose and Legal Basis for Processing

We process your personal data only where we have a lawful basis to do so under applicable data protection laws, including the GDPR and UK GDPR. Your personal data is processed for the following purposes:

  • Legal Compliance: To comply with legal and regulatory obligations, including anti- money laundering (“AML”), counter-terrorist financing (“CTF”), sanctions screening, tax reporting, and related regulatory requirements.
  • Contractual Performance: To administer your investment, manage subscriptions and redemptions, maintain investor records, and provide related investor services.
  • Legitimate Interests: To maintain accurate records, improve our services, protect our systems and business operations, prevent fraud, and manage legal or operational risks, provided such interests are not overridden by your rights and freedoms.
  • Consent: Where required by applicable law, we will obtain your consent before processing personal data for specific purposes.

Special Categories of Data

We do not intentionally process sensitive personal data (e.g., health, race, religion). Any incidental collection will be handled in compliance with applicable laws.

Automated Decision-Making

We do not make decisions about you based solely on automated processing, including profiling, where such decisions would produce legal effects concerning you or otherwise significantly affect you.

Website Usage Data and Cookies

When you visit our website, we may automatically collect certain technical information, including IP address, browser type, operating system, device information, referring URLs, and information regarding your interaction with our website.

We may use cookies, analytics tools, and similar technologies to improve website functionality, monitor website performance, enhance user experience, and support security measures.

You may configure your browser settings to refuse or restrict cookies; however, some parts of the website may not function properly as a result.

Data Sharing

Your personal data may be shared with:

  • Fund service providers, such as administrators, custodians, and auditors.
  • Regulatory authorities, as required by applicable laws.
  • Affiliates within the Company’s group for administrative or compliance purposes.
  • Third-party IT and cloud service providers under strict contractual safeguards.

Data Transfers

We may transfer your personal data to jurisdictions outside the European Economic Area (“EEA”), the United Kingdom, or the Cayman Islands. Where such transfers occur, we implement appropriate safeguards in accordance with applicable data protection laws.

These safeguards may include:

  • standard contractual clauses approved by relevant regulators;
  • binding corporate rules;
  • reliance on adequacy decisions; or
  • certifications such as the EU-U.S. Data Privacy Framework, where applicable.

Where required, we also conduct transfer risk assessments and implement supplementary technical and organizational safeguards to ensure an adequate level of protection for transferred personal data.

Data Retention

We retain personal data for as long as necessary to fulfill legal, regulatory, and operational obligations. Typically, data is retained for seven years after the end of your relationship with us, unless a longer retention period is required by law.

Your Rights

Depending on your jurisdiction, you may have the following rights:

  • Access: Request access to your data.
  • Correction: Request correction of inaccuracies.
  • Deletion: Request deletion of your data in certain circumstances.
  • Restriction: Request limitation on data processing.
  • Objection: Object to processing based on legitimate interests.
  • Data Portability: Request transfer of your data to another party.

To exercise your rights, please contact us using the information provided below. Certain rights may be subject to legal or contractual restrictions. We may request additional information to verify your identity before responding to requests relating to your personal data.

You also have the right to lodge a complaint with a competent data protection supervisory authority, including the UK Information Commissioner’s Office (“ICO”) where applicable.

Security Measures

We implement robust technical and organizational measures to safeguard your personal data from unauthorized access, loss, or misuse. These measures include encryption, access controls, and routine security assessments.

Updates to This Notice

This privacy notice may be updated periodically. Substantial updates will be communicated, and the revised notice will be available on our website.

Contact Information

For questions or to exercise your data rights, please contact:

Email: legal@bayforest.ai

Bayforest Capital Limited
3 Orchard Place, SW1H 0BF,
London, United Kingdom

This privacy notice is effective as of 01 May 2026.