Privacy Policy

Last updated: 5th May 2025

Finsso Financials Ltd (“we”, “our”, or “us”) is committed to protecting the privacy and security of your personal data. This Privacy Policy explains how we collect, use, store, and protect your information in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and relevant industry regulations including those of the Financial Conduct Authority (FCA).

This policy applies to all visitors, clients, and users of our website and services.

1. Who We Are

Finsso Financials Ltd is a mortgage and insurance broking firm registered in the United Kingdom. As a data controller, we are registered with the Information Commissioner’s Office (ICO) under registration number [Insert ICO Registration Number].

If you have questions about this policy, please contact:
Email: info@finsso.co.uk
Postal Address: [Insert full business address]

2. What Information We Collect

We may collect and process the following categories of personal data:

a. Information you provide directly:

Full name, email address, phone number
Date of birth, address, employment status, income
Mortgage and insurance requirements
ID verification documents (e.g., passport, utility bills)
Financial details (e.g., bank account, credit reports)
Consent preferences
b. Automatically collected data (via website):

IP address, browser type, device information
Website usage, page interaction, and navigation paths
Cookie data (see Section 7 below)
c. Third-party data:

Information from credit reference agencies, lenders, insurers, or public records to assess eligibility and suitability of financial products. 

3. Legal Basis for Processing Your Data

We process your personal data under the following lawful bases:

Consent – where you have given explicit permission.
Contract – to take steps at your request or fulfill our agreement with you.
Legal obligation – to comply with UK laws and FCA rules.
Legitimate interests – where it is in our interest to do so and not overridden by your rights. 

4. How We Use Your Data

We use your data to:

Provide mortgage and insurance advice
Match you with suitable lenders or insurers
Conduct identity and credit checks
Respond to your queries
Maintain compliance with legal and regulatory obligations
Improve website functionality and user experience
Send communications (with your consent) 

5. Data Sharing

We only share your personal data when necessary, including with:

Lenders and insurance providers
Credit reference and fraud prevention agencies
IT and hosting service providers
Legal or regulatory authorities (e.g., FCA, HMRC) as required by law
Professional advisers (e.g., auditors, solicitors)
We will never sell your data or share it with third parties for marketing purposes without your explicit consent.

6. International Data Transfers

We may transfer personal data outside the UK or EEA when required (e.g., for secure cloud storage). In such cases, we ensure appropriate safeguards are in place (such as Standard Contractual Clauses or adequacy decisions).

7. Cookies and Tracking Technologies

Our website uses cookies to:

Enhance user experience
Analyse site usage
Enable secure account access
You can manage your cookie preferences via your browser settings. For more information, refer to our separate [Cookie Policy].

8. Data Retention

We retain your data only as long as necessary for the purpose it was collected. In general:

Customer data: retained for up to 6 years to comply with financial and legal obligations.
Marketing consent: reviewed every 2 years
Inactive accounts: anonymised or deleted after 12 months of inactivity 

9. Your Rights

Under the UK GDPR, you have the following rights:

Access – request a copy of your personal data
Rectification – correct inaccurate or incomplete data
Erasure – request deletion of your data (in certain circumstances)
Restriction – request a pause in processing
Portability – request a copy in a portable format
Objection – to direct marketing or processing based on legitimate interests
Withdraw consent – where processing is based on consent
To exercise any of these rights, contact us at info@finsso.co.uk.

If you’re not satisfied, you can also contact the Information Commissioner’s Office (ICO) at www.ico.org.uk.

10. Data Security

We employ strong organisational and technical safeguards including:

SSL encryption on our website
Secure cloud storage
Access controls and multi-factor authentication
Staff training and data protection protocols
We also require third parties to implement adequate security measures.

11. Marketing Communications

We will only send you marketing communications if you have opted in. You can unsubscribe at any time by:

Contacting us directly at info@finsso.co.uk 

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in legal or regulatory requirements or our business practices. We will notify you of significant changes via email or website notice.