General Data Protection Regulation (GDPR) from 25th May 2018
Clients & Suppliers
Paragon Independent Limited (“we” “us” “our”) and our Appointed Representatives are committed to protecting and respecting your privacy. We are the data controller and will process your personal data in accordance with the Data Protection Act 1998 as amended or replaced by the General Data Protection Regulation 2016 and any national laws which relate to the processing of personal data (“data protection legislation”).
Please read the following carefully to understand our views and practices regarding your Data and how we will treat it.
This policy applies to information we collect about:
Visitors to our website
Existing & New / Potential Clients
2. VISITORS TO OUR WEBSITE
We may collect and process personal data about you in the following circumstances:
2.1.1 when you complete the online contact form on our website (“Site”) providing us with your name, email address and contact number;
2.1.2 whenever you provide information to us when reporting a problem with our Site, making a complaint, making an enquiry or contacting us for any other reason. If you contact us, we may keep a record of that correspondence;
2.1.3 when you visit our website we will retain details such as traffic data, location data, weblogs and other communication data, and the resources that you access (see section 2.1.7 on Cookies below); and
2.1.4 whenever you disclose your information to us, or we collect information from you in any other way, through our Site.
2.1.5 We may also collect data in the following ways:
2.1.6 We may collect information about your device, including where available your Internet Protocol address, for reasons of fraud protection. We may also collect information about your device’s operating system and browser type, for system administration. This is statistical data about our users' browsing actions and patterns, and does not identify any individual.
2.1.7 Our Site uses some unobtrusive cookies to distinguish you from other users of our Site. This helps us to provide you with a good experience when you browse our Site and also allows us to improve our Site.
We may use your personal data for our legitimate interests in order to:
2.1.8 provide you with information, or services that you requested from us;
2.1.9 respond to an enquiry submitted via our online contact form;
2.1.10 ensure that content from our Site is presented in the most effective manner for you and for your device;
2.1.11 improve our Site and services;
2.1.12 process and deal with any complaints or enquiries made by you.
Our Site may, from time to time, contain links to and from the websites of third parties. Please note that if you follow a link to any of these websites, such websites will apply different terms to the collection and privacy of your personal data and we do not accept any responsibility or liability for these policies. Please check before you submit your information to these websites.
3. EXISTING & NEW / POTENTIAL CLIENTS
We will collect details such as name, address, email address, contact numbers, date of birth, national insurance number and financial information in order to provide services to existing & new / potential clients. We may also receive details of credit checks undertaken where you have supplied these to us.
We will share client personal information with our employees, including our self-employed Advisers, to manage our relationship with you and we will retain customer personal data for an indefinite period for regulatory purposes.
We will use your personal data provided to comply with our contractual obligations arising from the agreements we enter into with our clients and share the data with financial institutions who can assist in the provision of financial services to clients including product providers, lenders, banks, insurers, fund managers and platform providers.
We will use client personal data for our legitimate interests including:
3.1.1 sharing personal data with Tenet as they provide compliance support services to us. Further details regarding how Tenet will use client personal data can be found on it’s website at www.tenetgroup.co.uk or by contacting Tenet on 0113 239 0011;
3.1.2 with your consent, obtaining your sensitive personal data (known as special category data) including information about, for example, your health, sexual orientation and ethnic origin, from you and third parties such as employers and credit reference agencies, fraud prevention agencies and other similar organisations, in order to provide you with the services, for example where you require advice on protection or annuity products.
We will not transfer any client personal data outside the European Economic Area (“EEA”).
We will collect details such as contact names, address, email address and telephone number in order to contact you about goods and/or services we have ordered from you, to comply with our contractual obligations and to place further orders. We may share your personal data with our employees to manage our relationship with you and we will keep your personal data for as long as we require your goods and/or services subject to a maximum of six years from the date of our last contact with you. We will not transfer your personal data outside the EEA.
5. LEGAL BASIS FOR PROCESSING YOUR PERSONAL DATA
In accordance with data protection legislation we are required to notify you of the legal basis upon which we process your personal data. We process your personal data for the following reasons:
5.1.1 for performance of a contract we enter into with you;
5.1.2 where necessary for compliance with a legal obligation we are subject to; and
5.1.3 for our legitimate interests.
6. DISCLOSURE OF YOUR DATA TO THIRD PARTIES
In addition to the third parties mentioned previously in this policy, we may disclose your personal data to third parties for the following legitimate business purposes:
6.1.1 staff members, including our self-employed Advisers, in order to facilitate the provision of services to you;
6.1.2 IT software providers that host our website and store data on our behalf; and
6.1.3 to a prospective buyer of some or all of our business or assets, in which case personal data including your data will also be one of the transferred assets.
We may disclose your personal data to the police, regulatory bodies, legal advisers or similar third parties where we are under a legal duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our agreements; or to protect our rights, property, or safety of our clients, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.
We will not sell or distribute your personal data to other organisations.
7. CROSS-BORDER DATA TRANSFERS
We do not transfer personal data outside the EEA. Where this is required in the future, we will ensure that safeguards are in place so that such transfers comply with data protection legislation.
8. DATA SECURITY
We have implemented appropriate physical, technical and organisational measures designed to secure your information against accidental loss and unauthorised access, use, alteration or disclosure. In addition, we limit access to personal data to those employees and other third parties that have a legitimate business need for such access.
We utilise a daily back up procedure for our server and this is kept off site. All systems are adequately password protected.
Our client database is held on the web based Intelligent Office (iO) system and consequently held on their servers, which is also password protected.
In terms of third party support, Link Systems, trading as L.S.A Systems Ltd, is based locally and we hold a full service contract with this firm.
Our office premises are situated within a large, alarmed, building. Our main office door is double locked and internal doors are locked when the office is not in use. We have a fire extinguisher within the office. All client paper records are stored in locked, fireproof, cabinets.
9. ACCESS TO, UPDATING, DELETING AND RESTRICTING USE OF YOUR DATA
It is important that the personal data we hold about you is accurate and current. Please keep us informed if the personal data we hold about you changes.
Data protection legislation gives you certain rights in relation to your personal data. You have the right to object to the processing of your personal data in certain circumstances and to withdraw your consent to the processing of your personal data where this has been provided.
You can also ask us to undertake the following:
9.1.1 update or amend your personal data if you feel this is inaccurate;
9.1.2 remove your personal data from our database entirely;
9.1.3 send you copies of your personal data in a commonly used format and transfer your information to another entity where you have supplied this to us, and we process this electronically with your consent or where necessary for the performance of a contract;
9.1.4 restrict the use of your personal data; and
9.1.5 provide you with access to information held about you and for this to be provided in an intelligible form.
We may request specific information from you to help us confirm your identity. Data protection legislation may allow or require us to refuse to provide you with access to some or all the personal data that we hold about you or to comply with any requests made in accordance with your rights referred to above. If we cannot provide you with access to your personal data, or process any other request we receive, we will inform you of the reasons why, subject to any legal or regulatory restrictions.
Please send any requests relating to the above to our Privacy Officer, Simon Marns, at Paragon Independent Limited, Cornwallis House, Howard Chase, Basildon, Essex SS14 3BB specifying your name and the action you would like us to undertake.
11. CONTACT US
Last updated May 2018.
Investments Basildon ~ Investment Advisor Essex ~ Investment advice Wickford