Yodelar Investments Limited takes your privacy seriously. We will only use your personal information to enable us to offer and provide our services.
Information is held to assess the potential suitability for both parties prior to any Client Agreement. Thereafter, we collect personal data in order to perform any contractual obligations and in accordance with regulatory and compliance requirements for the various business activities we undertake.
We will hold limited personal data on business suppliers and contacts due to the nature of our business and these will be managed in line with our policies.
Where we have a direct agreement with you, we will hold your data under our capacity as Data Controller. Where we provide an indirect service to you through a mutual party, e.g. your employer, we will act as Data Processor/Sub-processor. The Data controller will have the obligation for notification under the Data Protection Regulations. Where appropriate, the nature of the information held might include both personal and special category data about your personal and financial circumstances.
The Information Commissioner’s Office (ICO) is the UK’s independent authority set up to uphold information rights in the public interest, promoting openness by public bodies and data privacy for individuals. We are registered with the ICO. You can find out more information and guidance from the ICO. Their website which included their up to date contact details is www.ico.org.uk.
As the legislation and guidance continues to be updated, particularly to reflect the increasing use of technology and data, we will ensure we continue to meet the latest requirements to give you with confidence to trust us with your personal information and therefore enable us to provide our services. We have policies, procedures & processes in place to control how we collect, retain and manage such information, if you would like to know more, please let us know.
We reserve the right to make changes to this statement as necessary. When we do so we will make previous versions available on request so you can see what these changes are. If any such changes alter key provisions within this statement, or its meaning, we will notify you of those changes in advance.
This Privacy Notice sets out what information we may hold and how we will protect your data, in line with the current legislation, through appropriate organisation and technical security measures and processes. It also describes your rights in relation to that data.
If you need any further clarification, then please ask.
We are obliged to put in place controls to prevent our business being used to facilitate money laundering and other forms of financial crime. We will therefore verify your identity before undertaking any business with you. To do this we may use electronic identity verification systems and we may conduct these checks from time to time throughout our relationship, not just at the beginning. The check may leave a footprint on your credit file but it will not affect your credit rating.
If you wish to register a complaint, please write to Compliance Officer, Yodelar Investments, 130 Old Street, London, EC1V 9BD or telephone 0844 798 1270.
A summary of our complaints handling procedures for the reasonable and prompt handling of complaints is available on request.
If you cannot settle your complaint with us, you may be entitled to refer it to the Financial Ombudsman Service at www.financial-ombudsman.org.uk or by contacting them on 0800 023 4567.
|Basic personal details||Name, Date of Birth|
|Basic contact details||Address, email, phone number|
|Core personal details||NI, residency, nationality, gender, marital status|
|Basic financial relationships||Bank & account details, providers and policy numbers|
|Core circumstances||Needs, objectives, what is happening|
|Core financial details||Income/expenditure/assets/liabilities|
|Third party connections||Solicitors / accountants / business partners / introducers|
|Representative information||Powers of attorney, children’s details|
|Basic private information||Height/weight/lifestyle (such as alcohol/smoking habits)/general health|
|Private medical information||Medical history/treatments etc.|
|Sensitive and special category data||Religious preferences e.g. where required for specific Ethical Investing, criminal record/speeding tickets e.g. where required for insurance cover|
Anything you choose to disclose to us during discussions and conversations, such as details of pets, holidays or other information will normally be recorded as part of the meeting notes, and may include details about other individuals who are not party to this agreement.
We will ask for your permission, through our Client Agreement, to capture your personal data and we will provide you with details of our regulatory and legislative responsibilities as an Independent Financial Adviser and take the necessary steps to complete our acceptance procedures including verifying your identity before developing our relationship further. We will record and share sufficient information to enable us to consider establishing any contractual relationship. Should you choose not to proceed with a contractual relationship, by not signing our Client Agreement, and therefore do not become a client, then any information previously supplied will be handled in line with our retention policy.
In order to carry out the terms of our engagement you agree to provide us with your personal information and understand that failure to do so will negatively impact the services we provide.
We will record and share sufficient information to enable us to complete any agreed recommendation. Unless you enter into an ongoing client agreement then we will not be responsible for updating and maintaining your details and related information. Where we are subsequently provided with further information, such as provider correspondence, we will not be required to retain this information in your file.
There is likely to be significant sharing of information between the different parties to ensure your information is up to date, including provider valuations, transactions etc. We will continue to keep your record active and up to date in line with our policy.
When visiting our website, via www.yodelar.com we may use features that retain your IP address and record data on which pages you are visiting on our site. We may also issue cookies to enable certain features to function properly, track traffic on our website or improve user experience in other ways.
Where you are provided with access to the portal these will be subject to additional terms and conditions that will be presented when you log in for acceptance to enable you to use the service. An up to date version will also be available in your portal.
Depending on your own settings or the policies of social media and messaging services such as Facebook, LinkedIn or Twitter, you may be providing Yodelar Investments and other organisations access to certain information. You should check with those services to ensure that you are happy with that information being shared.
Sometimes, we may need to pass your personal information to other organisations (e.g. if you apply to take out a financial product or service we’ll need to pass certain personal details to the product or service provider). Your personal information may be transferred electronically (e.g. by email or over the internet).
Each organisation to whom we may pass your details also have their own obligations to deal with your personal information appropriately.
Sometimes a product or service may be administered from a country outside the United Kingdom. Any country within the European Economic Area (“EEA”), or countries that have an equivalence agreement for Data Protection, is considered sufficient to be treated as if it is in the United Kingdom. If this does not apply to the country to where the data has been transferred, then we will put in place sufficient process and controls, which may include contractual obligations, to ensure that your information is adequately protected.
As part of our Terms of Engagement, you provide informed consent to the transfer of personal information in accordance with the protections outlined above. If you are concerned about any aspect of these privacy arrangements, please speak to us.
Under the Data Protection Regulations, as a data subject, you have the following rights;
To exercise any request associated with your rights as a data subject, please contact our Data Protection Team on 0844 798 1270 or in writing to 130 Old Street, London, EC1V 9BD or email@example.com
If you are still unsatisfied you have the right to complain to the Information Commissioner’s Office. Contact details can be found at www.ico.org.uk.
Should you wish to amend or withdraw your existing consent with regards data sharing, communications and marketing preferences you can do so at any time; please speak with your Financial Planner or contact the Data Protection Team as noted above.
Data will be retained in line with our retention policy which states that this will be for the duration of our client relationship and thereafter a minimum of 5 years. Please be aware that, due to the regulatory environment in which we operate, it is possible, but should not be relied upon, that your information may be retained indefinitely. This approach would be in support of legal and regulatory requirements, or where it is felt that a legitimate interest remains.
We have considered the legal basis applicable to the retention and management of the personal data held within the business and will only hold such data in line with our policies and procedures.
Your agreement to our Client Agreement provides a legal basis for us to collect and retain sufficient personal and special category data to deliver the agreed service and to meet our legal, regulatory and contractual obligations under that agreement. You should only sign the Fee and Service Agreement where you are happy to be proceed on this basis.
If you become a client of either our parent company, Yodelar Group Limited, or its associated undertakings, we will not share more than limited information with them unless we have your permission to do so. Unless otherwise advised, any given instruction to share information will be applied both ways and will enable information to be shared in both directions. Any shared data will be collected and held specifically for the fulfilment of our service and in line with our Firm’s policies.
Where you choose to provide voluntary information, you are giving your ‘Explicit Consent’ for this information to be recorded. You have the right to request that this information is deleted, however if we believe this voluntary information should be retained as being relevant to the service we provide, we are not obligated to delete such information.
Out with any meetings, our minimum communication requirement to deliver our contractual, regulatory and legal obligations is by post. However, where possible we prefer to communicate with you by the most appropriate method and this may be by phone call, SMS message, email or online.
You are not required to agree to us communicating with you using these additional methods, however this would help to deliver a more timely and enhanced service and we invite you to provide details of your preferred methods of communication.
Where we provide a service to both you and your spouse/partner, we are happy to accept your permission to liaise and share your data with the other party. Where a reciprocal consent is received, this can include portal access and will allow you, as a couple, to review your entire financial position.
With regard to any third-party relationships that you may have with accountants, solicitors or other professional advisers, we are happy to accept your permission to liaise with them and to share certain information with them.
Our contractual obligations to deliver financial planning and ongoing service provides the legal basis for much of the information we will share with you during our relationship, including relevant communications. Where we believe that relevant informative communications would enhance our service and provide additional value, we will carefully assess their relevance to your specific circumstance before providing these to you.
If at any time you consider such additional information to be no longer relevant, please let us know and we will cease similar communications thereafter.
Beyond these focussed communications, we also prepare various materials capturing into current topics, technical briefings, and market commentaries that we feel may be appropriate for you to be aware of more generally. These will be distributed in line with your preferences.
You can update your preferences at any time by contacting us.
We will only communicate and share information where we have the necessary legal basis or consent to do so. Your preferences can be updated at any time.
We aim to honour your communication preferences in all dealings however, for the avoidance of doubt we may still record any details you have provided, and may contact you by such alternative means, regardless of your latest preferences, where we feel this is necessary to fulfil our legal, regulatory and/or contractual obligations.
Please be aware that the right to ‘withdraw’ consent does not apply to contractual, legal and/or regulatory required information.
Both parties have an obligation to ensure the information provided and recorded is accurate and up to date. As part of this agreement you are committing to providing accurate and up to date information.
Where we provide you with an ongoing service, you commit to notify us if things change, and we are committed to ensuring that we keep your information reflective of your current circumstances and position so we can continue to deliver the services agreed.
Please notify us immediately if you believe any of the information we hold is not accurate and we will review, verify and update appropriate.
You have the right to request a copy of the personal information we hold about you at any time and this will be provided, at no cost to you, in line with our policy. To exercise this right, please contact the Data Protection Team on 0844 798 1270 or write to Yodelar Investments Limited, 130 Old Street, London, EC1V 9BD or firstname.lastname@example.org.
We will primarily hold your information electronically. We use systems which are held locally, with third parties, and may use cloud solutions and these will be managed in line with our policies.
We will hold manual records and paperwork from time to time and these will be managed in line with our policies.
Our policies and procedures state how we select, manage, and mitigate the data protection risk associated with sharing your information with other parties to enable us to fulfil our obligations to you.
Some of these solutions are ‘in house’, provided by the wider Yodelar Group, others are external and include specialists, back office support businesses, secure document storage, single product providers, multi-product providers or research tools and calculators. As part of our commitment to the protection of your personal data, we have undertaken due diligence on such third parties and reconfirmed the basis of our relationship where necessary.
The table below provides examples of the extent to which personal data could be shared with third parties.
|Third party description||Information categories|
|Back office administration, General Business Management, IT & Marketing||All categories, including sensitive and special category data, where collected.|
|Research tools and quote systems||Basic contact details, core personal details, core financial details and basic private information. Where potentially relevant for the product eligibility/pricing other categories such as Private Medical Info may be shared.|
|Regulator - FCA||All categories, including sensitive and special category data, where collected, as a result of a regulatory inspection.|
|Specialists - including Professional Indemnity Insurers, Compliance Consultants and Data Protection Officer Consultant||Any and all personal data could be shared, including sensitive and special category data, for example, in the event of a technical challenge, a file review, a complaint, a data breach or a Data Subject rights request.|
|Product and platform providers||Quote tools will pass information to providers to assist in the application process. On implementing our recommendation with the provider, you will have a direct relationship with them. Each provider will be a Data controller for the purposes of the Data Protection Regulations and they will be responsible for complying with the regulations in respect of the information they collect as a result of the application. This could be any, or all, of the categories of data and the detail required will be defined by each provider.|
|Document storage||All data categories as included within the physical archived file record.|