We are a registered data controller of personal data under the Data Protection Act 1998, registration number ZA120452.
The information we collect about you can include information which, on its own or together with other information, can be used to identify you as an individual (“Personal Information”). We also collect other information which does not personally identify you. All of this can include:
Information That You Provide Us:
When you visit certain sections of the Services, we may ask you to provide us with specific information, including (but not limited to):
Services Usage Information:
We may receive and store certain types of Internet usage information whenever you use the Services such as:
Registration: when you register for the Services, you must complete a registration form and provide personally identifiable information. You may also be asked to choose a password.
Support: information given when you contact us or report a problem with the Services.
Transaction Information: If you conduct a financial transaction on the Services, you may be required to provide certain financial information, including contact information and debit or credit card details. We will use this information to complete the transaction that you have requested. [We do not store any of your payment card details.] This information is encrypted, securely stored and processed by HSBC (as may be updated from time to time) so that we can bill you in accordance with your initial fee.
Third Parties/Public sources: we may collect information from third parties or from public sources. This information may be used in various ways such as to verify your identity and to carry out AML checks.
As applicable, the information you provide may be used to (this list is not exhaustive):
We may share your Personal Information with third party partners, suppliers and sub-contractors who work with us to provide the Services to you in order to support, improve or amend any Services. We may also share your non-Personal Information with data analysis services.
We may share your Personal Information with selected third parties in order to enable us to provide you with information about that third party’s goods and services which we consider may be of interest to you.
We may employ the services of third parties to assist us in certain areas of our business i.e. website hosting, sending marketing emails etc. It may be the case that we have to disclose Personal Information to those third parties in order to enable them to provide those services to us. We will at all times retain control of your Personal Information and those third parties may only use your Personal Information for the purposes of providing those services to us.
We will not share your information with third party advertisers except with your consent. We do not disclose Personal Information about identifiable individuals to advertisers, but we may provide them with aggregate and/or anonymised information about our users to help advertisers reach the kind of audience they want to target. We may make use of the information we have collected from you to enable us to comply with our advertisers' wishes by displaying their advertisement to that target audience.
We may disclose your Personal Information to any member of Accounts Direct Group which means our ultimate holding company and its subsidiaries, as defined in s1159 Companies Act 2006.
If you are a European Union citizen, you have the right to ask us not to use your Personal Information for marketing purposes. Your can exercise your right to prevent such processing by checking certain boxes on the forms we use to collect your data. You can also exercise the right at any time by contacting us at firstname.lastname@example.org. EU data protection legislation gives EU citizens the right to access information held about you. You may at any time request details of Personal Information which we hold about you, which we will supply on verification of your identity and payment of the standard £10 charge under the Data Protection Act 1998. If you believe that any information we are holding on you is incorrect or incomplete, you can change this in your user account. Alternatively, you may email us and we will promptly correct any information found to be incorrect within 30 days.
We may disclose your information (including Personal Information) to third parties if we sell or buy appropriate business or assets, in which case we may disclose your Personal Information to the prospective or actual seller or buyer of such business or assets. If we or substantially all of our assets are merged with or acquired by a third party, Personal Information held by us about our customers will be one of the transferred assets. We may share or disclose your information (including Personal Information) with third parties if we are under a legal duty to do so, or in order to enforce or apply any terms and conditions applying to any of the Services; or to protect our rights, property, or the safety of our customers or others.
We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure we have put in place reasonable physical, electronic and managerial procedures to safeguard and secure the information we collect online.
All private information is protected by a dedicated SSL certificate. We also perform daily offsite backups, and your data is available for export at any time.
The server is housed with Godaddy. The data centres are located within secure compounds; entry to the buildings is via unique access codes and covered by 24 hour on-site security and motion detection CCTV. Unfortunately though, the transmission of information via the Internet is not completely secure. Although we will do our best to protect your Personal Information, we cannot guarantee the security of your data transmitted to our servers via any of our Services; any transmission is at your own risk.
Our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this Privacy Statement. You should exercise caution and look at the privacy statement applicable to the website in question.
In relation to our provision and administration of the Services, we are the data controller under the United Kingdom's Data Protection Act 1998. In other circumstances we may be a data processor. We respect your right to privacy and will only process Personal Information you provide to us in accordance with the Data Protection Act 1998, the Privacy and Electronic Communications (EC Directive) Regulations 2003 and other applicable privacy laws.