Anonymous debt planning for your tenants and employees - no logins, no data stored.

DebtRiot gives housing associations, EAP providers and employers a private, branded debt planning tool. Your users work out their own repayment plan in the browser. Nothing is collected. Nothing is stored. You get aggregate insight - never individual data.

No personal data stored UK GDPR compliant ICO registered · ZC115123 Built for UK procurement

Built for organisations that care about confidentiality

Most people struggling with debt are also worried about privacy. Asking them to create an account - even for a helpful tool - is enough to make them close the tab. DebtRiot removes that barrier entirely.

Users plan in the browser. No account. No login. No personal data collected or stored. When a session ends, nothing remains. Your organisation never becomes a processor of your tenants' or employees' financial data.

You receive anonymous, aggregate telemetry only - usage patterns, completion journeys, anonymous debt profiles, and outcome reporting for DWP/CRF compliance. Comprehensive insight without individual exposure.

How it works

Four steps. No data touches your servers.

Your users plan privately. You see only aggregate, anonymous insight.

1

You share a branded link

We give you a unique URL — for example, yourassociation.debtriot.co.uk/app. You share it in your welcome pack, financial wellbeing communications, or tenancy support materials. No IT work required.

2

Users plan privately in their browser

No account. No login. No name, email or National Insurance number ever asked for. Your tenant or employee enters their debts, compares repayment strategies, and sees exactly what their options look like — all within their browser session.

3

Aggregate insight reaches your dashboard

Anonymous, aggregate metrics only — usage patterns, completion journeys, strategy choices, charity signposting effectiveness, and anonymous debt profiles. Auto-generated monthly and annual reports ready for DWP and CRF outcome reporting. No individual data. Ever.

4

Users download their own PDF plan

Anyone who wants to keep their plan downloads it directly to their own device. The PDF is generated entirely in the browser — it is never sent to our servers, never stored anywhere. The user owns their plan. You never see it.

What you get

Built for UK organisations. Different by design.

Not adapted from a US product. Not a generic financial wellness platform. Built for the UK, from the ground up.

UK-native calculation engine APR, EAR, and UK-standard interest calculations. No US rate assumptions, no dollar figures, no terminology your users will not recognise.
No login barrier No account creation. No email address. No password. Users arrive at the link with a single access code and start immediately — friction removed at the point where it matters most.
Five repayment strategies Avalanche, snowball, two hybrids, and cash flow index — with interactive charts so users can see exactly what each approach costs them.
Single access code One shared access code per organisation. Users return anytime to update their plan — no individual accounts, no stored data on your side. JSON file upload supports plan continuity across sessions.
Aggregate insight dashboard Usage patterns, completion journeys, strategy choices, charity signposting effectiveness, and anonymous debt profiles. Auto-generated monthly and annual reports ready for DWP and CRF outcome reporting. No individual data. Ever.
PDF, XLSX and JSON export Users can download their repayment plan as a printable PDF, detailed XLSX spreadsheet, or JSON file. A tangible output they can act on — no account needed to save their work.
DPA included as standard A UK GDPR Article 28 Data Processing Agreement is included with every subscription. Your procurement and DPO teams will not need to draft one from scratch.
Who it's for

Three sectors. One platform.

Housing Associations

Tenants in arrears or at risk of arrears often need structured debt planning before they can meaningfully engage with a money advisor. DebtRiot gives them a private first step — without putting your organisation in scope for personal financial data.

  • Share via welcome packs or tenancy support communications
  • Procurement-aware for housing sector frameworks
  • No IT integration required
  • DPA included as standard

EAP Providers

Financial stress is one of the leading drivers of EAP referrals. Most EAP platforms offer signposting, not tools. DebtRiot gives your clients' employees something they can act on immediately — privately, without disclosing anything to their employer.

  • Branded subdomain per client employer
  • Aggregate insight only — employer sees no individual data
  • Zero personal data ever processed
  • Complements existing coaching or counselling referral

Employers

Financial wellbeing is now a mainstream employer concern — but most financial wellbeing platforms require employees to create accounts and hand over sensitive data. DebtRiot provides the planning tool without the data risk or the account barrier.

  • Share via intranet, Slack, or wellbeing comms
  • Employees never identified — complete privacy
  • HR and payroll teams see only aggregate insight
  • Reduced data incident exposure for the employer

What we collect. What we don't. Who sees what.

This section is for data protection officers, procurement leads, and IT teams who need to understand exactly what happens to data when your tenants or employees use DebtRiot.

The short answer: we collect nothing that identifies an individual. All debt figures, strategy choices, and repayment calculations remain in the user's browser for the duration of their session. When the session ends, they are gone. The PDF plan is generated locally on the user's device - it is never transmitted to our servers.

What we store are anonymous aggregate counts - event counters per organisation per month, recording usage patterns, strategy choices, completion journeys, and charity signposting effectiveness. No individual identifiers, no debt figures, no demographics. The aggregates cannot be traced back to a person and cannot be combined with other data to identify anyone. They are stored in a UK-accessible cloud database (Upstash, EU-West region) and retained long-term to enable 6-month trend analysis and outcome reporting for DWP and CRF requirements.

A UK GDPR Article 28 Data Processing Agreement is included as standard with every subscription. Your DPO does not need to draft one. We provide it at the point of signature.

ICO registration: ZC115123 · Registered: Miss Monika Pankiewicz, sole trader, Cardiff, Wales

Data point Collected? Where stored Who sees it Retained
Name Not collected
Email address Not collected
Debt figures entered Not collected Browser session only User only Cleared on session end
PDF plan content Not collected User's device only User only Never transmitted
IP address Not collected
Demographics Not collected
Session events (anonymous) Aggregate counts only Upstash Redis, EU-West Your org admin + DebtRiot Long-term (trend analysis)
Strategy choices (anonymous) Aggregate counts only Upstash Redis, EU-West Your org admin + DebtRiot Long-term (trend analysis)
Completion funnel (anonymous) Aggregate counts only Upstash Redis, EU-West Your org admin + DebtRiot Long-term (trend analysis)
Charity click events (anonymous) Aggregate counts only Upstash Redis, EU-West Your org admin + DebtRiot Long-term (trend analysis)
Pricing

Discovery period before annual contract.

Pricing is based on organisation size. We don't offer free pilots — the lack of commitment leads to poor integration on both sides. Instead, we offer a 3-month paid Discovery period with a clear exit clause.

Every Discovery period includes full access to all features, a branded subdomain, admin dashboard, training, and a Data Processing Agreement. Automated provisioning means you're live within 48 hours of contract signing — no setup fees.

Book a Discovery call →

3-month paid Discovery · clear exit clause · no auto-renewal

Questions we hear from procurement and DPO teams

  • No. We provision a branded URL for your organisation — for example, yourassociation.debtriot.co.uk/app. Your team shares that link however you normally communicate with tenants or employees: email, welcome packs, intranet, Slack. There is no software to install, no integration with your systems, and no API connection required. Your IT team does not need to be involved at any point.

  • DebtRiot collects no personal data from end users. Debt figures, strategy choices, and repayment calculations exist only in the user's browser session — they are never transmitted to our servers. The PDF plan is generated on the user's device. What we store are anonymous aggregate counts — event counters per organisation per month, recording usage patterns and strategy choices. None of this can be traced to an individual. A UK GDPR Article 28 Data Processing Agreement is included with every subscription. ICO registration number: ZC115123.

  • No. DebtRiot is a calculation and planning tool — it presents mathematical comparisons of different repayment strategies based on numbers the user enters. It does not recommend specific products, advise users to take on credit, or make any regulated financial recommendation. It is comparable to a mortgage calculator — a tool that helps someone understand their options, not advice telling them what to do. Your organisation does not require FCA authorisation to offer access to a debt calculation tool.

  • Yes — WCAG 2.2 AA. Accessibility was a requirement from day one: semantic HTML, keyboard navigation, screen reader compatibility, and verified colour contrast. A formal accessibility statement is available on request, including known limitations and our ongoing improvement programme. If your organisation has specific accessibility requirements, please include these in your Discovery enquiry and we will review them with you.

  • No. The Discovery period is 3 months and includes full access to all features. There's no automatic renewal — at the end of Discovery, we hold a review meeting and you decide whether to proceed to annual contract. If not, the link is decommissioned and your admin dashboard is closed. No invoice, no chaser, no rollover. If you decide to continue, the annual contract begins month 4 with terms agreed at the review meeting.

  • Yes. We apply your organisation's name, logo, brand colour, and branded subdomain URL (for example, yourassociation.debtriot.co.uk/app) to the interface. The end-user experience feels native to your organisation. A small "Powered by DebtRiot" attribution appears in the footer. Full white-labelling — removing all DebtRiot branding entirely — is available for Enterprise tier and is priced on enquiry. If you need to discuss specific branding requirements during Discovery, include that in your enquiry.

  • Yes — a DPA is required under UK GDPR Article 28 whenever a controller engages a processor. Because DebtRiot processes only anonymous aggregate data (no personal data), the practical data risk during Discovery is near-zero. We provide a standard DPA at the point of contract signing. It's a short document — plain English, no legal negotiations required. If your DPO has specific requirements, we are happy to discuss amendments before signing.

Ready to offer your tenants or employees a private debt planning tool?

The pilot is free, takes 48 hours to set up, and requires no IT work on your side. If you have questions before requesting, email us and we will reply within one working day.

Book a Discovery call → Download our DPA →

DebtRiot is operated by Monika Pankiewicz, sole trader, Cardiff, Wales. ICO registration: ZC115123. Professionally insured. Trademark application filed, Class 42.