Century Business Finance Ltd Privacy Notice
Here at Century Business Finance Ltd, we take your privacy seriously; please take the time to read and understand our Privacy Notice.
Who we are
Century Business Finance Ltd (“we”) are Commercial Finance Brokers based at The Gloucesters, Strixton Manor Business Centre, Strixton, Northamptonshire, NN29 7PA. Our nominated representative for the purposes of data protection is Jon Maloney who can be contacted using the postal address given above or by email via firstname.lastname@example.org. We will be the Data Controller for the purposes of the UK data protection regime.
We act as a Broker for our customers. We are authorised and regulated by the Financial Conduct Authority.
Information we will collect about you
We may collect the following personal data about you (along with other non-personal data):
- Verification Details e.g. Name, Date of Birth, National Insurance Number, Driver’s Licence Number;
- Contact Details e.g. address, telephone number, email address;
- Home ownership details and details of any or all of the properties you own;
- Service Details e.g. what services you require from us
- Location Details.
The information collected about you may come from you or from external sources such as credit reference agencies and fraud prevention agencies.
How we will use the Information about you and our lawful basis for doing so
We will use your personal data for the following purposes:
- To respond to your service enquiry;
- To carry out our obligations arising from any contracts entered into between you and us;
- To notify you about any changes to our service;
- To provide you with information about other products or services we offer that may be of interest to you;
- To provide you with information, products and services you request from us ;
- To approach lenders on your behalf to arrange the funding you require;
- To make lender decisions;
- For fraud prevention;
- For audit purposes;
- For statistical analysis;
- For credit reference checks;
- For Electronic Identity Verification;
Our lawful bases for handling your personal data in the above ways are: (1) because it is necessary for performance of a contract with you; (2) because it is a legal obligation upon us; or (3) because we have obtained your consent. Where we are relying upon your consent, you have right to withdraw such consent at any time by emailing our data protection representative.
We need your basic personal data in order to provide you with an accurate recommendation for your personal circumstances. The processing of your personal data may be necessary because you have asked us to take specific steps before entering into a contract. You do not have to provide us with personal data we request but if you do not provide us with the required personal data we may not be able to provide the required services to you.
How we share your information
We may share your personal information with the following:
- Our employees and officers
- Commercial lenders
- Specialist funders
- Credit reference agencies
- Fraud prevention agencies
- Credit enforcement agencies
- Data destruction agencies
- Third party companies and organisations who offer services that may be of assistance to you where we cannot provide the service you require (in this instance, we would only ever share your personal data with your prior permission).
For further information on how your information is used, how we maintain the security of your information and your rights to access/alter and change information we hold about you, please contact email@example.com
From time to time, we would like to contact you by post, email, telephone and text with details of Products, Information, News and Competitions. We will only contact you in this way and for these purposes if you have given your consent.
Where we store your personal data
We have a data protection regime in place to oversee the effective and secure processing of your personal data.
Your data is stored electronically on our cloud encrypted server; our server is based in the UK. For the purposes of IT hosting and maintenance, your personal data may be transferred to servers within the European Union.
Paper-based records are kept in locked cabinets in secure office premises. All client files/data are backed up to ensure maximum security of confidential information is maintained.
How long we keep your personal data
We are required to keep your basic personal data, such as name, address, and contact details. This will be kept indefinitely by us within the European Union so that we can comply with the rules and guidance dictated by the Financial Conduct Authority and Professional Indemnity Terms and Conditions as set by our insurer.
Other personal data will be retained for no longer than necessary to protect our commercial and operational interests, which include fraud prevention, use in legal proceedings and for taxation purposes.
The information used for marketing will be kept by us until you notify us that you no longer wish to appear on our marketing database.
If you would like more information on our data retention periods, please contact us at firstname.lastname@example.org
What are your rights
As a Data Subject, you have the following rights:
- The right to request a copy of all personal data we hold about you (a fee will be payable for excessive requests);
- The right to request correction of personal data we hold about you if it incorrect or incomplete;
- The right to deletion of personal data we hold about you where there is no compelling reason for us to continue to hold it;
- The right to restrict our data processing activities;
- The right to request transfer of your personal data to a third party;
- The right to object to processing if the lawful basis is legitimate interest or performance of a task in the public interest or if the processing is direct marketing;
- The right to file a complaint with the ICO (www.ico.org.uk).
If you wish to raise a complaint on how we have handled your personal data, you can contact our Data Protection Manager who will investigate the matter.