IFAC Ltd.

ALL COURSES START AT 10AM and finish between 11AM and 12midday

June 16th	SMF16 COMPLIANCE DIRECTOR TRAINING
June 18th	M&A IN RETAIL FINANCIAL SERVICES - A GUIDE
June 25th	INTRODUCERS AND APPOINTED REPRESENTATIVES

Privacy Policy

IFAC Ltd. takes the privacy of personal data seriously and the legal and compliant treatment of this data is at the core of our operations.

We therefore ask you to please read the following important information which explains how we collect, store and use your personal data.

IFAC Ltd. is registered under the Data Protection Act (DPA) 1998. The General Data Protection Regulation (GDPR) has revised provisions of the DPA 1998 from 2018, and as such our privacy policy has been amended accordingly.

1. Who are we?

IFAC Ltd is a financial services compliance firm, offering compliance and support activities to restricted/independent Financial Advisers who themselves advise individuals, trustees and their businesses on financial products and wealth management.

IFAC Ltd. (Company No. 05386389) has its registered office at Andoversford Business Park, Cheltenham, Gloucestershire, GL54 4LB, United Kingdom.

2. What do we mean by Personal Data?

By personal data (or personal information), we mean information that relates to you and is used to identify you, either directly or in conjunction with other material we hold.

3. How do we collect information from you?

We collect personal information about you as and when you consent to us doing so by signing our Data Consent forms, or by indicating consent on our online forms. We gather your consent in writing before entering into business relations with you.

4. What type of information do we collect?

The information we collect may include your name, address, email address and phone number. Furthermore, information about your health, lifestyle and finances can be collected depending whether it is necessary for the advice we are providing.

We may also ask for evidence of your identity, for example your passport, driving license, proof of residence or income.

5. Why do we collect information from you?

We use your personal information for the following:

Provision of services and account management: To provide you with the information, products and services you have requested from us.
To comply with legislation in relation to anti money laundering regulations and the Financial Services Act.

6. How do we protect your personal information?

Any personal information we collect, record, or use in any way, be it on computer, hard copy or in any other form, is secured through our safeguarding processes to ensure that we meet our obligations under the Data Protection Act 1998.

7. What are your rights surrounding your personal information?

The GDPR enhances your rights surrounding your personal data. This includes:

The right to be informed - we will provide you with a copy of this privacy policy before seeking your consent to store/process your personal data.
The right of access - you have the right to request a copy of any personal information we hold on you. This will be provided in a structured format, free of charge, within 30 days of your request. Requests can be made in writing, by phone or by email, to any of our contact details provided below.
- Data Protection Officer, Andoversford Business Park, Cheltenham, Gloucestershire, GL54 4LB, United Kingdom.
- 01242 807010
- gdpr@ifac.eu
The right to rectification - you have the right to request us to rectify any of your personal data which you believe is inaccurate or incomplete. We will respond within one month (this can be extended by two months where the request for rectification is complex). Requests can be made in writing, by phone or by email, to any of our contact details provided above.
The right to erasure - you have the right to request 'to be forgotten', i.e. for us to delete all records of your personal data. We will comply with your request, unless we have a legal obligation to continue to hold your personal data, in which case we will inform you of the reason we are unable to complete your request.
The right to restrict processing - you have the right to 'block' or suppress processing of personal data - in this case we will retain just enough information about you to ensure that the restriction is respected in future.
The right to data portability - you may request a copy of your personal data, in order to use it for your own purposes across different services, e.g. moving it from one IT environment to another in a safe and secure way. We will provide the data in a structured, commonly used and machine-readable form, e.g. CSV files. This will be provided free of charge and within one month (this can be extended by two months where the request is complex).
The right to object - you have the right to object to us processing your personal data for direct marketing purposes, and historical or statistical purposes, and we will respect this request as soon as we receive it (by post / email / phone, details of which are provided above).

8. Who do we share your personal information with?

We will only share your personal data with third parties when it is necessary for the service you have asked us to provide, and we will have contracts/safeguards in place to ensure that they treat the privacy of your personal data with the same importance as we do. You will be advised of the specific third parties with whom we may share your data.

These third parties, amongst others, may include:

The Financial Conduct Authority
iPipeline
Twenty7Tec
Defaqto
External File Checkers
Xero
EazyCollect
Paypal
Mailchimp
Contract Express
Broker Admin Technologies Ltd (BAT)

9. Updates to this Policy

This Privacy Policy will be reviewed periodically and updated to comply with any new legislation.

This policy was last updated in July 2018.