Bridgestones are committed to protecting the privacy and security of your personal information.
This Privacy Notice describes how we collect and use personal information about you during and after your contractual relationship with us, in accordance with the General Data Protection Regulation (GDPR) and data protection legislation.
Bridgestones and any Insolvency Practitioner appointed to your case are “data controllers”. This means that we are responsible for deciding how we hold and use personal information about you. We are required under data protection legislation to notify you of the information contained in this privacy notice.
This notice does not form part of any contract to provide services. We may update this notice at any time.
It is important that you read this notice, together with any other privacy notice we may provide on specific occasions when we are collecting or processing personal information about you, so that you are aware of how and why we are using such information.
The personal information we collect from you will vary depending on which services you engage us to deliver.
The personal information we will collect, store, and use may include:
We collect personal information about you either from you directly or from third parties we work with including companies who introduce you to us; creditors; credit reference agencies; public information sources; and government agencies.
We may obtain electronic verification of identity. This information is processed for a lawful purpose to comply with Anti-Money laundering legislation.
We will not collect any personal information from you that we do not need.
We will use your personal information in the following circumstances:
Where we need to perform the contract, we have entered into with you.
Where we need to comply with a legal obligation.
Where it is necessary for our legitimate interests or those of a third party and your interests and fundamental rights do not override those interests.
Our purposes for processing your data
This will depend on the services you engage us to deliver but may include:
contacting you by post, email or telephone
verifying your identity
maintaining records in accordance with legal and regulatory obligations
providing debt counselling services to you
administering a Voluntary Arrangement, Voluntary Liquidation or other insolvency process
processing financial transactions
To detect, investigate, report, and seek to prevent financial crime.
We may share your personal information with third parties where required by law, where it is necessary to administer the working relationship with you or where we have another legitimate interest in doing so.
Recipients of your data may include third-party service providers; other related business entities; a regulator or to otherwise comply with the law.
Where we do so, we will require third parties to respect the security of your data and to treat it in accordance with the law.
We are required by the Proceeds of Crime Act and Money Laundering legislation to maintain identification procedures for all new clients and therefore, utilise the services of Credit Reference Agencies (CRA’s) to obtain electronic verification of identity. The CRA’s, along with the Information Commissioner (ICO) have developed a common form of privacy notice that the financial services industry has incorporated into their privacy policies. To that end, the CRA we use is called TransUnion (formerly Callcredit). In order to view their privacy notice, please see the link below of the TransUnion Bureau Privacy Notice:
https://www.callcredit.co.uk/legal-information/bureau-privacy-notice
We may transfer your personal information outside the United Kingdom. If we do, you can expect a similar degree of protection in respect of your personal information.
We have put in place appropriate security measures to prevent your personal information from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal information to those employees, agents, contractors and other third parties who have a business need to know.
We have put in place procedures to deal with any suspected data security breach and will notify you and any applicable regulator of a suspected breach where we are legally required to do so.
We will only retain your personal information for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
If you do not provide personal data, it is likely to be impossible for Bridgestones to enter into, or to continue with, a contractual relationship with you.
Bridgestones reserves the right to update this privacy notice at any time, and we will provide you with a new privacy notice when we make any substantial updates. We may also notify you in other ways from time to time about the processing of your personal information.
