• Red Flags Ai complies with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

• We collect and process personal data lawfully, fairly, and transparently.

• We apply data minimisation and retain data only for as long as necessary.

• We maintain records of processing activities and conduct regular privacy audits.

• Users have full GDPR rights, including access, rectification, erasure, and portability.

See our Privacy Policy for full details.

• Red Flags Ai does not directly provide financial services, but due diligence reporting may highlight risks relevant to AML/CTF compliance.

• Our Services are designed to support brokers, traders, and agencies in identifying red flags such as:

  • Shell companies or suspicious jurisdictions.

  • Sanctioned individuals or entities.

  • Inconsistent or unverifiable documentation.

• We integrate checks against sanctions and watchlists (OFAC, HM Treasury, Interpol, etc.) as part of our methodology.

• The Red Flags Ai scoring model is proprietary.

• Only the final score, risk band, and interpretive summary are disclosed in reports.

• Underlying formulas, weightings, and triggers remain confidential.

• Red Flags Ai operates in compliance with international sanctions regimes, including those imposed by:

  • UK Office of Financial Sanctions Implementation (OFSI).

  • US Office of Foreign Assets Control (OFAC).

  • EU Sanctions Lists.

• Reports may flag potential sanctions exposure, but customers remain responsible for their own compliance obligations before entering into transactions.

• All intellectual property in the Red Flags Ai platform, reports, and proprietary scoring methodology remains the property of Red Flags Ai Ltd.

• Customers are granted a limited licence for internal business use only.

• Reverse engineering, copying, or resale of reports is strictly prohibited.

• Red Flags Ai accepts no responsibility for any loss, damage, or decision made on the basis of a report.

• Use of the service is entirely at your own risk.

• To the fullest extent permitted by law, we disclaim all liability for errors, omissions, or delays in our reporting.

• Each report is generated with the intention of helping you avoid potential losses, and should be used to assist with your due diligence process, not to be used as the final word in your decision making.

• We follow ISO 27001–aligned information security principles, including encryption in transit and at rest, access controls, and audit logging.

• Regular vulnerability scanning and penetration testing are carried out to identify and address risks.

• Staff access to data is strictly limited to operational necessity and bound by confidentiality agreements.

• Reports are for informational purposes only and do not constitute legal, compliance, financial, or investment advice.

• Red Flags Ai makes no guarantee of absolute accuracy or completeness of third-party or AI-generated information, as it sources information that is available on the web.

• Customers are solely responsible for compliance with applicable laws and regulations in their jurisdictions.

• Red Flags Ai Ltd is a company registered in the United Kingdom.

• Our services and agreements are governed by the laws of England and Wales.

• Disputes are subject to the exclusive jurisdiction of the courts of England and Wales.

• We encourage transparency and accountability. If you suspect misuse of our Services or have compliance concerns, please contact:

  📧 contact@redflags-ai.com

• This Legal & Regulatory Compliance page may be updated periodically to reflect changes in laws, regulations, or our business practices. Updates will be effective upon posting.