Information We Collect

When you use our services, we collect information that helps us deliver accurate financial analysis and improve your experience. This includes data you provide directly and information gathered automatically.

Data You Provide

• Contact details including your name, email address, phone number, and postal address
• Account credentials and authentication information for secure access
• Financial information relevant to analysis services, such as income ranges and investment preferences
• Communication preferences and feedback you share with our team
• Payment information processed through secure third-party providers

Automatically Collected Information

• Device information including IP address, browser type, and operating system
• Usage patterns showing how you navigate and interact with our platform
• Session data and timestamps for security monitoring
• Cookies and similar tracking technologies to enhance functionality

How We Use Your Information

We use your data exclusively to provide and improve our financial analysis services. Every piece of information serves a specific purpose in delivering value to you.

• Delivering personalised financial analysis and presenting results tailored to your situation
• Communicating with you about your account, services, and relevant updates
• Processing payments and maintaining accurate financial records
• Improving our platform based on usage patterns and user feedback
• Ensuring security and preventing fraudulent activity
• Complying with legal obligations under UK financial regulations
• Sending service updates and educational content you've opted to receive

Legal Basis for Processing

Under UK GDPR, we process your personal data based on several legal grounds. Understanding these helps you know your rights.

• Contract Performance: Processing necessary to deliver the services you've requested
• Legitimate Interest: Improving our services and ensuring platform security
• Legal Obligation: Complying with financial regulations and legal requirements
• Consent: Marketing communications and optional features you've agreed to

Data Sharing and Third Parties

We work with carefully selected partners to deliver our services. Any data sharing is done with strict confidentiality agreements and security requirements.

Service Providers

We share information with trusted vendors who help us operate:

• Cloud hosting providers for secure data storage
• Payment processors who handle transactions securely
• Email service providers for communications
• Analytics platforms to understand service usage

Legal Disclosures

We may disclose your information when legally required, such as responding to court orders, regulatory requests, or protecting our legal rights. These situations are rare and handled carefully.

Your Rights and Choices

UK GDPR gives you significant control over your personal data. Here's what you can do:

• Access: Request a copy of all personal data we hold about you
• Correction: Ask us to update inaccurate or incomplete information
• Deletion: Request removal of your data when no longer needed
• Restriction: Limit how we process your information in certain circumstances
• Portability: Receive your data in a structured, machine-readable format
• Objection: Oppose processing based on legitimate interests
• Withdraw Consent: Revoke permission for consent-based processing anytime

To exercise these rights, contact us using the details at the bottom of this page. We'll respond within one month, as required by law.

Data Security Measures

We take security seriously and employ multiple layers of protection to safeguard your information.

• Encryption in transit using industry-standard TLS protocols
• Encrypted storage for sensitive personal and financial data
• Regular security audits and vulnerability assessments
• Access controls limiting staff access to necessary data only
• Secure authentication with password requirements and optional two-factor authentication
• Regular backups stored in secure, geographically distributed locations
• Incident response procedures for rapid breach detection and mitigation

While we implement robust security, no system is completely impenetrable. We encourage you to use strong passwords and keep your login credentials confidential.

Data Retention

We keep your information only as long as necessary for the purposes described in this policy.

When retention periods expire, we securely delete or anonymise your data. Some information may be retained longer if required by law or for legitimate legal purposes.

Cookies and Tracking

Our website uses cookies to enhance functionality and understand how visitors use our platform. You can control cookie preferences through your browser settings.

Types of Cookies We Use

• Essential Cookies: Required for core functionality like login and security
• Functional Cookies: Remember your preferences and settings
• Analytics Cookies: Help us understand usage patterns to improve the platform
• Marketing Cookies: Used only with your consent to deliver relevant content

You can refuse cookies through your browser settings, though this may limit some functionality. Most browsers also offer "Do Not Track" signals which we respect.

International Data Transfers

Your data is primarily stored and processed within the United Kingdom. When we use service providers based outside the UK, we ensure appropriate safeguards are in place.

These safeguards include Standard Contractual Clauses approved by UK authorities, adequacy decisions recognising equivalent protection levels, or other legally approved mechanisms. We carefully vet all international partners for their data protection practices.

Children's Privacy

Our services are designed for adults and we don't knowingly collect information from individuals under 18. If we discover we've inadvertently gathered data from a minor, we'll delete it promptly. Parents or guardians who believe we may have information about a child should contact us immediately.

Changes to This Policy

We review and update this privacy policy periodically to reflect changes in our practices or legal requirements. When we make significant changes, we'll notify you via email or prominent notice on our website.

The "Last updated" date at the top shows when the current version became effective. Continued use of our services after changes constitutes acceptance of the updated policy.

Supervisory Authority

You have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's supervisory authority for data protection matters, if you believe we've mishandled your personal data.

However, we'd appreciate the opportunity to address your concerns directly first. Most issues can be resolved quickly through direct communication with our team.