We are committed to protecting your personal information and ensuring that it is used fairly and responsibly. This Notice explains how we use any personal information we collect about you.
General Data Protection Regulation (GDPR)
P J Aiken Ltd is a registered Data Controller under the GDPR 2018: registration number Z9506523. Our registration can be found via the Information Commissioner’s website.
Why we need to collect and use your personal data
The primary legal basis that we intend to use for the processing of your data is for the performance of our contract with you. The information that we collect about you is essential for us to be able to carry out the services that you require from us effectively. Without collecting your personal data we would be unable to fulfil our legal and regulatory obligations.
We collect information about you when you engage us for financial planning. This information will relate to your personal and financial circumstances. It may also include special categories of personal data such as data about your health if this is necessary for the provision of our services. Information you provide to us to enable us to make appropriate investment recommendations may include:
- Name, address, date of birth, National Insurance number, email address, health details if required, personal details of your family members if provided; and/or
- Where you are a corporate customer, details about your staff (including, where applicable, their family members), and may include information obtained from third parties; and/or
- Where you are a trustee of a trust, the details of all trustees and other beneficial owners, settlors and protectors as we deem appropriate;
- Non-personal data may include your assets, your income and expenditure details and your portfolio details, including investments and policies.
Who might we share your information with?
To effectively deliver our services to you we may send your details to third parties such as those that we engage for professional compliance, accountancy or legal services as well as product and platform providers that we use to arrange financial products for you.
Where it is necessary for your personal data to be forwarded to a third party we will use appropriate security measures to protect your data in transit. Where we can, we will use secure portals. We will also employ encryption and in some cases secure folders.
We may disclose your information to future owners of our business or where we are required by law to do so.
Except for the above provisions, we will not pass your details to any other third party, without your express permission.
You can access the information we hold about you.
You have the right to request a copy of the personal information we hold about you. You can make a request to us at any time in writing or by email, details below.
When your personal data is processed by automated means you have the right to ask us to move it to another organisation for their use.
If you believe that any information we are holding about you is incorrect or incomplete, please write to or email us as soon as possible. We will promptly correct any information found to be incorrect.
How long will we keep your information?
In principle, your personal data should not be held for longer than is required under the terms of our contract for services with you. However, we are subject to regulatory requirements to retain data for specified minimum periods. We also reserve the right to retain data for longer than this due to the possibility that it may be required to defend a future claim against us. In any case, we will not retain your personal data for longer than 5 years past the time of your death.
Can you ask for your data to be deleted?
You have the right to request deletion of your personal data. We will comply with this request, subject to the restrictions of our regulatory obligations and legitimate interests as noted above.
What you can do if you are unhappy with how your personal data is processed?
You also have a right to lodge a complaint with the supervisory authority for data protection. In the UK this is:
Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire. SK9 5AF
How to contact us