Privacy

Privacy Notice

Our Privacy Notice explains how we use your personal data, describes the categories of personal data we process and for what purposes. We hold such information as Data Controllers in accordance with the requirements of the Data Protection Act 2018 and the UK General Data Protection Regulation (“GDPR”), together referred to as the ‘Regulations’. We are committed to collecting and using such data fairly and in accordance with the requirements of the GDPR.

‘Personal data’ is any information that relates to an identified or identifiable natural person (rather than to a legal entity, such as a company).

We take your privacy seriously and you can find out more here about your privacy rights and how we gather, use and share your personal information.

Who are we

When we say ‘Jarrovian’, ‘we’, ‘our’, or ‘us’ in this Privacy Notice, we are generally referring to the separate and distinct legal entities that make up the Jarrovian Group and the below act as controller for the personal information you provide to us. These include:

• Jarrovian Group Ltd
  (Registered Office: Saxon House, 27 Duke Street, Chelmsford, England, CM1 1HT)
• Jarrovian Wealth Limited
  is a Financial Planning and Wealth company authorised and regulated by the Financial Conduct Authority. Financial Services Register no. 770693. (Registered address: Saxon House, 27 Duke Street, Chelmsford, England, CM1 1HT)
• Jarrovian Planning and Consultancy Limited
  (Registered Office: Saxon House, 27 Duke Street, Chelmsford, England, CM1 1HT)
• Jarrovian Trust and Estate Services Limited
  (Registered Office: Saxon House, 27 Duke Street, Chelmsford, England, CM1 1HT).

It also includes any other businesses we add to this group in the future.

Your Rights

You have the right to object to how we process your personal information. You also have the right to access, correct, sometimes delete and restrict the personal information we use. In addition, you have a right to complain to us and to the data protection regulator. Contact details are shown here.

• Mahfooz Shamsuddin, email: hello@jarrovian.co.uk, or write to us at Jarrovian Wealth Ltd, Epworth House, 25 City Road, London, EC1Y 1AA.
• Information Commissioner: ico.org.uk/global/contact-us

Jump to a section

• What personal information we collect and use
• Legal basis for collecting and processing information
• Sharing and transferring personal information
• Your privacy rights
• Use of cookies
• Security
• How long do we keep your information?
• 13 or under
• Transferring your information outside of Europe
• Data protection and the EU
• Our Website and links to other websites
• Updates to our privacy notice
• How to contact us

What personal information we collect and use

We need to obtain information about you, so that we can provide the financial advice you require, including:

• personal details such as your name, identification number, date of birth, KYC documents (including a copy of your national identity card or passport), phone number, physical and electronic address, and family details such as the name of your spouse, partner, or children;
• financial information, including payment and transaction records and information relating to your assets (including fixed properties), financial statements, liabilities, taxes, revenues, earnings and investments (including your investment objectives);
• tax domicile and other tax-related documents and information;
• where applicable, professional information about you, such as your job title and work experience;
• your knowledge of and experience in investment matters;
• details of our interactions with you and the products and services you use;
• when you access our Website; data transmitted by your browser and automatically recorded by our server, including date and time of the access, name of the accessed file as well as the transmitted data volume and the performance of the access, your web browser, browser language and requesting domain and IP address (additional data will only be recorded via our Website if their disclosure is made voluntarily, e.g. in the course of a registration or request). When you visit our website, that website will contain additional information about how we use your information while you are visiting that website; and
• in some cases (where permitted by law), special categories of personal data, such as your political opinions or affiliations, health information, racial or ethnic origin, religious or philosophical beliefs, and, to the extent legally possible, information relating to criminal convictions or offences.

This information is normally obtained directly from clients in a face to face meeting. It may also be obtained by telephone, post or other means.  We may also obtain some personal information from recording calls or meetings or by making contemporaneous notes of calls or meetings.

In some cases, we collect this information from other organisations such as investment/pension/insurance providers, where you have provided authority for them to share information relating to your existing plans, public registers, public administration or other third-party sources, such as wealth screening services, fraud prevention agencies, and intermediaries that facilitate data portability.

If relevant, we will also collect information about your additional account holders, business partners (including other shareholders or beneficial owners), dependants or family members, representatives, and agents. Before providing us with this information, you should provide a copy of this notice to those individuals.

Legal basis collecting and processing information

The legal basis on which the information that you provide will be collected and processed with your explicit consent.  Where you have given us consent, you have the right to withdraw it at any time.

Depending on the purpose of the processing activity, the processing of your personal data will be one of the following:

• necessary for the legitimate interests of Jarrovian, without unduly affecting your interests or fundamental rights and freedoms;
• necessary for taking steps to enter into or executing a contract with you for the services or products you request, or for carrying out our obligations under such a contract.
• required to meet our legal or regulatory responsibilities, and make the disclosures to authorities, regulators and government bodies;
• when we use special categories of personal data, necessary for establishing, exercising or defending legal claims or where the processing relates to personal data manifestly in the public domain; and
• in limited circumstances, processed with your consent which we obtain from you from time to time (for instance where required by laws other than the UK GDPR), or processed with your explicit consent in the case of special categories of personal data such as your medical information.

To the extent Jarrovian has obtained your consent to process ordinary personal data in the past in any product-specific terms and conditions for the purposes of data protection law only, Jarrovian will no longer rely on such consent, but instead will rely on lawful grounds of compliance with a legal obligation, contractual necessity or legitimate interests (as specified in this notice), and Jarrovian’ ability to rely on that consent is hereby waived or extinguished.

Where the personal data we collect from you is needed to meet our legal or regulatory obligations or enter into an agreement with you, if we cannot collect this personal data there is a possibility we may be unable to take you as a client or provide products or services to you (in which case we will inform you accordingly).

Purposes of processing

We always process your personal data for a specific purpose and only process the personal data which is relevant to achieve that purpose. In particular, we process personal data for the following purposes:

• client on-boarding processes, including to verify your identity, and to conduct legal and other regulatory compliance checks (for example, to comply with anti-money laundering regulations, and prevent fraud);
• providing products and services to you and ensuring their proper execution.
• managing our relationship with you, including communicating with you in relation to the products and services you obtain from us and from our business partners, handling customer service-related queries and complaints.
• helping us to learn more about you as a customer, the products and services you receive, and other products and services you may be interested in receiving, including profiling based on the processing of your personal data, for instance by looking at the types of products and services that you use from us, how you like to be contacted and so on;
• taking steps to improve our products and services and our use of technology, including testing and upgrading of systems and processes, and conducting market research to understand how to improve of our existing products and services or learn about other products and services we can provide;
• contacting you for direct marketing purposes about products and services we think will be of interest to you, and our other business partners;
• meeting our on-going regulatory and compliance obligations (e.g. laws of the financial sector, anti-money-laundering and tax laws), including in relation to recording and monitoring communications, disclosures to tax authorities, financial service regulators and other regulatory and governmental bodies, and investigating or preventing crime;
• ensuring the safety of our customers, employees and other stakeholders;
• undertaking transactional and statistical analysis, and related research; and
• any other purposes we notify to you from time to time.

Sharing and transferring personal information

We usually share personal data with other Jarrovian Group companies to ensure a consistently high service standard across Jarrovian and provide services and products to you.

We will not transfer your personal information to anyone unless we have a valid purpose and we will only disclose it to the following parties:

Third Parties

When providing products and services to you, we will share personal data with persons acting on your behalf or otherwise involved in the transaction (depending on the type of product or service you receive from us), including, where relevant the following:

• Insurance Providers
• Pension Providers
• Annuity providers
• Investment Providers
• Investment Platforms
• Providers of pension transfer comparison reports
• Compliance Advisers
• Legal Advisers
• any intermediary to whom we provide introductions or referrals.

Service Providers

In some instances, we also share personal data with our suppliers, including Jarrovian Group companies and other business partners who provide services to us.  When we do so we take steps to ensure they meet our data security standards, so that your personal data remains secure.

Third parties who have entered into contractual arrangements with us to provide services we need to carry out our everyday business activities such as:

• Partner support specialists.
• Our Insurers.
• Document management providers.
• Back office system providers,
• Secure login and email providers.
• Storage warehouses.
• IT suppliers.
• Outsourced business process management providers
• Subcontractors,
• Marketing providers.
• Compliance consultants
• Communication services.
• Selected third parties in connection with any sale, transfer, or disposal of our business.
• Actuaries, auditors, lawyers, and tax advisers.

Public or regulatory authorities

If required from time to time, we disclose personal data to public authorities, regulators or governmental bodies, including when required by law or regulation, under a code of practice or conduct, or when these authorities or bodies require us to do so. These include:

• Data protection authorities.
• Financial crime and fraud detection agencies.
• The police, HMRC and other crime prevention and detection agencies.
• If you exercise your right to data portability, we will usually disclose your personal data to an intermediary that facilitates data portability in accordance with applicable law and regulations.
• We will disclose personal data where required to exercise or protect legal rights, including ours and those of our employees or other stakeholders, or in response to requests from individuals or their representatives who seek to protect their legal rights or such rights of others.

How long do we store your data?

We keep your personal information securely for as long as we need to for the purpose of providing you with financial advice under the terms of our service/fee agreement (contract) or for as long as we are required to by relevant regulations.

Your Privacy Rights

You have the right to see what personal information we hold about you and you can ask us to correct inaccuracies, delete or restrict personal information or ask for some of your personal information to be provided to someone else. You have the right to object to how we use your personal information. If you need to contact us in relation to any of your rights or wish to make a complaint about how we have used your personal information directly to us or to the Information Commissioner’s Office, you can use the contact details indicated on the section ‘Your Rights’.

• Right to withdraw consent: Where you have given us your consent to use personal information, you can withdraw your consent at any time.
• Access to your personal information: You can request access to a copy of your personal information.  We will not normally charge for providing this information to you.
• Portability: You can ask us to provide you or a third party with some of the personal information that we hold about you in a commonly used electronic form.
• Rectification: You can ask us to change or complete any inaccurate or incomplete personal information held about you.
• Erasure: You can ask us to delete your personal information where it is no longer necessary for us to use it, you have withdrawn consent, or where we have no lawful basis for keeping it. Note that we might be required by regulations to retain your information even if you want it to be deleted.
• Right to object: You can object to our processing of your personal information.
• Restriction: You can ask us to restrict the personal information we use about you where you have asked for it to be erased or where you have objected to our use of it.

Use of cookies

What are cookies?

Cookies are small files saved to the user’s computer’s hard drive that track, save and store information about the user’s interactions and usage of our website. This allows the website, through its server to provide the users with a tailored experience within this website.

What do we use cookies for?

We may use cookies to remember personal settings you have chosen at our website. In no other context do we use cookies to collect information that identifies you personally. Most of the cookies we set are automatically deleted from your computer when you leave our website or shortly afterwards.

We use anonymous session cookies (short-term cookies that disappear when you close your browser) to help you navigate the website and make the most of the features. If you log into the website, application or a course as a registered user, your session cookie will also contain your user ID so that we can check which services you are allowed to access.

Our website uses tracking software to monitor its visitors to better understand how they use it. This software is provided by Google Analytics which uses cookies to track visitor usage. The software will save a cookie to your computer’s hard drive in order to track and monitor your engagement and usage of the website, but will not store, save or collect personal information.

Should you wish to deny the use and saving of cookies from our website onto your computer’s hard drive, you should take necessary steps within your web browser’s security settings to block all cookies from our website and its external serving vendors.

Security

We take security measures to protect your information including:

• limiting access to our building(s) to those that we believe are entitled to be there (by use of passes, key card access and other related technologies);
• implementing access controls to our information technology, such as firewalls, ID verification and logical segmentation and/ or physical separation of our systems and information;
• never asking you for your passwords;
• advising you never to enter your account number or password into an email or after following a link from an email.

Security Note

As complete data security cannot be guaranteed for communication via e-mails, instant messaging and similar means of communication, we would recommend sending any particularly confidential information by an alternative secure means.

How long do we keep your data?

Jarrovian will not retain your personal information longer than necessary. We will hold onto the information you provide either while your account is in existence, or as needed to be able to provide the product and services to you, or for as long as is necessary to provide support-related reporting and trend analysis only.

If legally required or if it is reasonably necessary to meet regulatory requirements, resolve disputes, prevent fraud and abuse, or enforce our Terms and Conditions, we may also retain some of your information for a limited period of time as required, or it is no longer needed to provide the product and services to you.

18 or Under

We are concerned to protect the privacy of children aged 13 or under. If you are aged 13 or under‚ please get your parent/guardian’s permission beforehand whenever you provide us with personal information.

If you have parental responsibility for children under the age of 13, it is also very likely that we will record information on our systems that relates to those children and potentially, to their Special Category Personal Data.

Transferring your information outside of Europe

As part of the product and services offered to you, the information which you provide to us may be transferred to countries outside the European Union (“EU”). These countries may not have similar data protection laws to the UK. By submitting your personal data, you’re agreeing to this transfer, storing or processing. If we transfer your information outside of the EU in this way, we will take steps to ensure that appropriate security measures are taken with the aim of ensuring that your privacy rights continue to be protected as outlined in this Privacy Notice.

If you use our products and services while you are outside the EU, your information may be transferred outside the EU in order to provide you with those services.

Data protection and the EU

At the end of the Brexit transition period, EU GDPR was kept in UK law as the UK GDPR.

The Data Protection Act 2018 and Privacy and Electronic Communications Regulation (PECR) will continue to apply alongside the UK GDPR. This means that in practice there is little change to the core data protection principles, rights and obligations found in the UK GDPR.

Following the new trade deal with the EU at the end of the Brexit transition period, the UK Government legislated so that UK firms could continue to lawfully send personal data from the UK to the EEA and 13 other countries deemed by the EU as ensuring an adequate level of protection of personal data.

On 28 June 2021, the EU Commission confirmed that the UK’s data protection laws are robust enough to ensure data can safely flow to the UK from the EU without firms having to make changes to their data protection practices. These decisions are expected to last until 27 June 2025.

The Information Commissioner’s Office (ICO) is the regulator for data protection issues in the UK. The ICO continually updates its guidance to reflect the agreed provisions and we will ensure our business remains fully compliant.

Our Website and links to other websites

We take a proactive approach to user privacy and ensure the necessary steps are taken to protect the privacy of its users throughout their visiting experience. Our website complies with all UK national laws and requirements for user privacy.

Our website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy notice of every website you visit.

In addition, if you linked to our website from a third party site, we cannot be responsible for the privacy policies and practices of the owners and operators of that third party site and recommend that you check the privacy notice of that third party site.

Updates to our Privacy Notice

This Privacy Notice was updated in October 2022.  This Privacy Notice may be updated periodically and without prior notice to you to reflect changes in our personal information practices.  We will post a prominent notice on relevant websites to notify you of any significant changes to our Privacy Notice and indicate at the top of the Notice when it was most recently updated. If we update our Privacy Notice, in certain circumstances, we may seek your consent.

How to Contact Us

If you have any questions or comments about our Privacy Notice, Jarrovian’s privacy practices or if you would like us to update information or preferences you provided to us, you may write or e-mail us at:

Jarrovian Group Ltd

Mahfooz Shamsuddin
Chief Information Officer

Epworth House
25 City Road
London
EC1Y 1AA

Email: hello@jarrovian.co.uk
Phone: 0330 0585 000