This notice describes how Black Isle Capital Partners Limited (Black Isle) uses personal data. It outlines Black Isle’s data protection obligations and your data protection rights under the General Data Protection Regulation 2018 (“GDPR”).
Black Isle Capital Partners Limited is the data controller of your personal information, and this policy applies to the processing of activities by us.
Collection of your data
As part of providing our services, or information about our services, to you, and to ensure we do this in a compliant way, under the authorisation of our regulator and the General Data Protection Regulation, we must collect some personal information from our clients, potential clients, and service providers or suppliers.
We may collect your name and contact details (such as your email address, phone number or address) in order to send you information about our products and services which you might have expressed interest in. We may collect this directly from you, or through a third party. If a third party collected your name and contact details, they will only pass those details to us for marketing purposes if you have consented to them doing so. It is in our legitimate interest to use your personal information in such way. If you do not wish to receive this information, please contact us by emailing firstname.lastname@example.org or by writing to us at the following address:
Data Protection Officer
Black Isle Capital Partners Limited
7 Bell Yard
We may collect the following types of information from actual or potential customers:
- Your full name, address and contact information including but not limited to phone number and email address;
- Your date of birth and gender;
- Your professional and employment details;
- Your identification details such as your passport or driver’s licence;
- Proof of address such as a bank statement or utility bill;
- Corporate information;
- Information about your income or the source of your funds and wealth including details about your assets and liabilities;
We obtain this information through your use of our service, the onboarding process and from information provided in the course of ongoing customer communication.
We may record any communications, email, electronic, in person or otherwise, that we have with you in relation to the services we provide to you and our relationship with you. These recordings will be our sole property and constitute evidence of the communications between us.
We take care to ensure your personal information is safe, secure and is protected from misuse, interference, unauthorised access, loss, modification or disclosure. Your personal information is generally stored in our computer database. Any paper-based information is stored in secure areas. In relation to information that is held on our computer database, we apply the following guidelines:
- passwords are required to access the system and passwords are routinely checked and are not shared;
- data ownership is clearly defined and data is only held where necessary;
- all computers which contain personal information are secured both physically and electronically; and
- print reporting of data containing personal information is limited.
We expect employees who handle personal information to respect the confidentiality of customer information and the privacy of individuals.
When we consider that personal information is no longer needed, we will remove any details that will identify you or we will securely destroy the records. We may need to hold some information and maintain certain records for up to 7 years after the end of us providing services to you. This is because we are subject to regulatory requirements and anti-money laundering laws which require us to retain;
- Any documents used to comply with customer due diligence obligations;
- Supporting evidence and records of transactions with you; and
- Details of your communications and relationship with us, for a period of seven years after our business relationship with you has ended.
Collection of personal information
We may be required to disclose your personal information if requested to do so by law, or if we believe in good faith that such action is necessary;
- to comply with any legal process served on us or in circumstances where we are under a similar legal or regulatory obligation;
- to protect and defend our rights or property; or
- to act to protect the personal safety of users of the services or the public.
- If, in our sole determination, you are found to have cheated or attempted to defraud us, our Affiliates, or any other user of the Services in any way including, but not limited to, market or price manipulation, payment fraud, or any other fraudulent or prohibited transaction (including money laundering).
Where required to disclose information we reserve the right to share information, together with your identity with other financial services providers, and appropriate regulatory and legal agencies.
Transfer of personal data abroad
We may on occasion need to transfer some of your information to service providers in countries in or outside the EEA (European Economic Area). This may happen if our servers or suppliers and service providers are located elsewhere. When we transfer your personal data outside the EEA, we will ensure the data recipient is subject to the same data requirements under GDPR. By using our services and providing us with your information, you consent to the collection, transfer, storage and processing of your information outside of the EEA.
Your personal data rights
- You have the right to be informed,
- You have the right to check what personal information is held by us, at no cost,
- You have the right to have wrongly recorded data amended,
- You have the right to “be forgotten” I.e the removal of your data,
- You have the right to “Opt out”
- You have the right to object to the processing of your personal information,
- You have the right to request the restriction of the processing of your personal information,
- You have the right to request the transfer of your personal information,
- You have the right to withdraw your consent.
Concerns or complaints
If you are concerned about us any aspect of our conduct regarding your privacy, you can make a complaint. We will act upon it promptly. To make a complaint, please e-mail us at email@example.com. We will respond and address, without delay, any request, question, complaint or enquiry you have about your personal information or our conduct in processing it. If you are not satisfied with the way we handled your response, or you believe we have not adequately resolved a matter, you have the right to complain to the Information Commissioner’s Officer (the ‘ICO’). You can find further details on the ICO website at https://ico.org.uk/
You also have the right, at any time, to complain to the Information Commissioner’s Office. As an independent UK authority, the ICO upholds information rights in the public interest, promotes openness by public bodies and data privacy for individuals.
Black Isle Capital Partners Limited is registered with the Information Commissioner’s Office, registration number ZB325891.