Privacy Policy

Last updated: January 2024

This Privacy Policy describes how active-asset ("we", "our", or "us") collects, uses, and shares information about you when you use our website and services. We take your privacy seriously and are committed to protecting your personal data.

Information We Collect

Information You Provide

When you interact with our services, you may provide us with certain information directly:

  • Contact details such as your name and email address when you reach out to us
  • Financial information you share during consultations to receive our guidance services
  • Communication records including emails and notes from our sessions
  • Feedback and survey responses you choose to share

Information Collected Automatically

When you visit our website, certain information may be collected automatically:

  • Device information including browser type, operating system, and screen resolution
  • Usage data such as pages visited, time spent on pages, and navigation patterns
  • IP address and approximate geographic location
  • Referral information showing how you arrived at our website

How We Use Your Information

We use the information we collect for the following purposes:

  • To provide and improve our financial guidance services
  • To respond to your enquiries and communicate with you about your consultations
  • To personalise your experience and tailor our guidance to your needs
  • To analyse website usage and improve our online presence
  • To comply with legal obligations and protect our legitimate interests
  • To send service-related communications that you cannot opt out of

Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Contractual necessity: Processing required to provide services you have requested
  • Legitimate interests: Processing necessary for our business operations, provided it does not override your fundamental rights
  • Consent: Processing based on your explicit consent, which you may withdraw at any time
  • Legal compliance: Processing required to meet our legal obligations

Data Sharing and Disclosure

We do not sell your personal information. We may share your data in limited circumstances:

  • With service providers who assist in operating our website and delivering services, bound by confidentiality agreements
  • When required by law, court order, or governmental request
  • To protect our rights, property, or safety, or that of our users
  • In connection with a business transfer, merger, or acquisition, with appropriate safeguards

Data Retention

We retain your personal information only for as long as necessary to fulfil the purposes for which it was collected, including:

  • Active client records: Retained during our working relationship and for six years thereafter
  • Email communications: Retained for three years after the last interaction
  • Website analytics: Aggregated data retained indefinitely; identifiable data deleted after 26 months

Your Rights

Under applicable data protection laws, you have certain rights regarding your personal information:

  • Access: Request a copy of the personal data we hold about you
  • Rectification: Request correction of inaccurate or incomplete data
  • Erasure: Request deletion of your data in certain circumstances
  • Restriction: Request limitation of how we process your data
  • Portability: Receive your data in a structured, machine-readable format
  • Objection: Object to processing based on legitimate interests

To exercise any of these rights, contact us at [email protected].

Data Security

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit and at rest
  • Regular security assessments and updates
  • Access controls limiting who can view personal data
  • Staff training on data protection practices

International Transfers

Your information may be transferred to and processed in countries outside the United Kingdom. When this occurs, we ensure appropriate safeguards are in place, such as standard contractual clauses approved by relevant authorities.

Children's Privacy

Our services are not directed at individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected such information, please contact us immediately.

Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will notify you of significant changes by posting the updated policy on our website with a revised "last updated" date.

Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

active-asset
27 Finsbury Square
London EC2A 1PL
United Kingdom
[email protected]

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe we have not handled your personal data appropriately.