INTRODUCTION
For the purpose of the Data Protection Act 2018 & General Data Protection Regulation (EU Regulation 2016/679), (“GDPR”), and the EU Data Protection Directive (Directive 95/46/EC) the data controller is Motorfinity Group Limited, 3 Northgate Terrace, Northern Road, Newark, Nottinghamshire. NG24 2EU.
Motorfinity Group Limited is a company registered in England and Wales company number 10546007 (hereinafter referred to as “we”, “our” or “us”).
We respect your privacy and feel it is important for you to know how we collect and process the information we receive from you via our website at www.financefinity.co.uk via Social Media Platforms, Third-Parties or where information is provided to us by our Appointed Representatives (known collectively as the “Service”). This Privacy Policy explains our information practices, the kinds of information we may collect, how we use and share that information, and how you can opt-out of a use or correct or change that information.
SCOPE
As used in this Privacy Policy, the term “Personal Information” shall mean any information relating to an identified or identifiable natural person, including, but not limited to person’s first and last name, email address, date of birth, contact information, passport, driving licence and financial information. This Privacy Policy applies to Personal Information that we collect and process in the course of our business.
By using the Service, you acknowledge you have read and understood the terms of this Notice. Please fully review this Notice before you use the Service or submit information to us.
An Important Note: This Privacy Policy does not apply to any of the personal information that our customers may process using our point-of-sale platform (“Customer Data”). Our customers’ respective privacy policies govern the collection and use of Customer Data. Our processing of Customer Data is governed by the contracts that we have in place with our customers, not this Privacy Policy. Any questions or requests relating to Customer Data should be directed to our customer.
INFORMATION WE MAY COLLECT FROM YOU AND OTHER SOURCES
Although the precise details of the personal information collected by us will vary according to the specific purpose for which we are collecting the information, we may collect and process the following data about you:
1. Information that you provide us by filling in forms on our social media pages or on our websites. This includes information provided at the time of registering to use our websites, subscribing to our service, posting material or requesting further services. We may also ask you for information when you report a problem with our websites.
2. if you contact us by phone, email or otherwise and is provided voluntarily, we may keep a record of that correspondence;
3. please note that we may record and monitor telephone conversations that we have with you. The sole purpose of any recording is for training and quality control purposes. Under the GDPR any personal or confidential information disclosed to us by telephone shall not be made available to any third party (unless required by law to do so) or used for marketing purposes;
4. we may also ask you to complete surveys that we use for research purposes, although you do not have to respond to them;
5. details of your visits to our websites including, but not limited to, traffic data, location data, weblogs and other communication data, whether this is required for our own billing purposes or otherwise and the resources that you access;
6. we also collect browsing, transactional and behavioural data from you to improve the service/experience we offer and for the purposes of offering you a tailored or personalised online shopping experience; and
7. we may collect information about your browsing device, including where available your IP address, operating system and browser type, for system administration and to report aggregate information to our advertisers. This is anonymous statistical data about our users’ browsing actions and patterns and does not identify any individual. We collect some of this information using Cookies. We may also collect any personal information which you allow to be shared that is part of your public profile on a third-party social network.
We may obtain and/or collect certain personal information about you from sources outside our business. We may also receive your personal information from other sources, such as: public databases, our supplier partners, joint marketing partners; social media platforms; as well as from other third parties. This other personal data helps us to:
1. provide the relevant services in an accurate manner;
2. review and improve the accuracy of the data we hold; and
3. improve and measure the effectiveness of our marketing communications, including online advertising.
USES MADE OF THE INFORMATION
We use information held about you in the following ways:
1. To ensure that content from our websites is presented in the most effective manner for you and for your browsing device.
2. to provide you with information, products or services that you request from us or which we feel may interest you, where you have consented to be contacted for such purposes.
3. to carry out our obligations arising from any contracts entered into between you and us or our Appointed Representatives or Third parties.
4. to remember your preferences e.g. if you ask not to receive marketing material, we will keep a record of this;
5. for our own (or a third party’s) lawful interests (such as marketing, internal record keeping, market research or to improve our products) provided your rights don’t override these.
6. to help us identify you and any accounts that you hold with us;
7. to notify you about changes to our service;
8. to handle queries from regulators;
9. to handle complaints;
10. to check correct processes are being followed by our Third Parties
11. administration;
12. fraud prevention and detection;
13. Invoicing;
14. security vetting.
LEGAL BASIS FOR PROCESSING YOUR PERSONAL DATA
The personal data that you provide to us in order to purchase our services or other personal data generated for transactional agreements is processed as it is necessary for the performance of a contract with you.
All other personal data is processed for our legitimate interests (as set out below) and to comply with our legal obligations.
In general, we only rely on opt-in consent as a legal basis to contact new and returning customers by electronic means and/or send direct marketing communications via email to new and returning customers.
You have the right to withdraw your consent at any time.
The following table describes our processing purposes, and on what legal basis we rely on:
Processing Purposes: | Legal basis: |
---|---|
Providing access to the Website | Legitimate interests |
Maintaining or restoring the security of the Website | Legitimate interests |
Detecting technical faults and / or errors in the transmission of electronic communications | Legitimate interests |
Account administration | Contract |
Providing products or services | Contract |
Carrying out the contractual relationship | Contract |
Providing customer care services |
Contract Legitimate interests |
Compliance with legal obligations | Legal obligation |
Defending, establishing, and exercising legal / insurance claims | Legitimate interests |
Preventing, investigating, and detecting crime, fraud and prosecuting offenders, including working with law enforcement agencies | Legal obligation |
Promoting, marketing, and advertising our products and services tailored to individual customers | Legitimate interests |
Understanding our customers’ behaviour, activities, preferences, and needs | Legitimate interests |
THE USE OF AUTOMATED DECISION MAKING
Your personal data is not used in any automated decision making (a decision made solely by automated means without any human involvement) or profiling (automated processing of personal data to evaluate certain conditions about an individual).
CHANGE OF PURPOSE
We will process your personal data for the purpose for which we collected it. If we process your personal data for another purpose that we reasonably consider to be compatible with the original purpose, we will notify you and explain the legal basis which allows us to do so.
DISCLOSURE OF YOUR INFORMATION
In order to make certain services available to you, we may need to share your personal data with third parties. We only share the personal data provided if we are satisfied that our partners or suppliers have sufficient measures in place to protect your information in the same way that we do. We never share personal data outside our organisation for marketing purposes.
We may disclose your personal information to:
1. Our trusted service providers acting on our behalf who provide services such as: web hosting, web analytics and integration, IT system providers, customer service web chat, data analysis (including data personalisation), infrastructure provision, email marketing data, review sites of our services, and other services to enable them to provide services.
2. our business partners, suppliers of financial products and services and sub-contractors for the delivery of any service to them or you. This information will not be used for marketing purposes.
3. third party suppliers who manage our financial accounting or audit process.
4. in the event that we sell or buy any business or assets, we may disclose your personal data to the prospective seller or buyer of such business or assets.
5. if we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our terms of use or terms and conditions of sale and supply and other agreements; or to protect our rights, property, or safety, including of our customers, Appointed Representatives, Third-Parties, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.
INTERNATIONAL TRANSFERS
It is sometimes necessary for us to share your data outside of the European Economic Area (EEA). This generally occurs when our service providers are located outside of the EEA, or you are based outside of the EEA.
If this happens, we will ensure that the transfer will be compliant with the relevant data protections laws including the GDPR and Data Protection Act 2018.
HOW DO WE PROTECT YOUR DATA
We are committed to keeping your personal data safe and secure and employ a number of security measures such as:
1. All information you provide to us is stored on our secure cloud-based server. No information is held on site. We currently safeguard personal data by storing it on a CRM protected by password and shall ensure that from time to time we use no lesser technical and organisational measures to safeguard personal data which is disclosed to us. Whilst we will use all reasonable efforts to safeguard such personal data, you acknowledge that the use of the internet is not entirely secure and for this reason we cannot guarantee the security or integrity of any personal data which are transferred from you or to you via the internet.
2. All information you provide to us is stored on our secure servers.
3. We use reasonable, organisational, technical and administrative measures to protect personal information under our control. Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our website; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access;
4. Any information provided by our Third-Party or Appointed Representatives is stored on a Customer Relationship Management system, which is secure, and we shall ensure that from time to time we use no lesser technical and organisational measures to safeguard personal data which is disclosed to us;
5. Our website may, from time to time, contain links to and from the websites of our third-party partner networks, social media platforms, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites should have their own privacy notices/policies and that we do not accept any responsibility or liability for these third-party websites and the notices/policies. Please check these notices/policies before you submit any personal data to these websites.
YOUR RIGHTS
We want to ensure that you remain in control of your personal data. Part of this is making sure that you understand your legal rights, which (for individuals) are as follows:
1. the right to confirmation as to whether or not we have your personal data and, if we do, to obtain a copy of it (this is known as a subject access request)
2. the right to have inaccurate data rectified
3. the right to object to your data being used for marketing or profiling
4. the right to “be forgotten”, this means you can ask for the information which we hold to be deleted from our records, but this will mean that we will be unable to continue to handle your arrangements
Where you request access to your personal data (“Access Request”) and we are unable to deal with or fulfil such Access Request, we will provide you with a reason as to why. You have the right to complain as outlined in PRIVACY QUESTIONS.
You can exercise Access Rights at any time by contacting us in accordance with the section PRIVACY QUESTIONS.
CONSEQUENCES OF NOT PROVIDING INFORMATION
We need your information in order to:
1. provide products and services to you
2. perform our contract with you
3. comply with our legal obligations
4. protect our legitimate interests and manage our business.
If you chose not to provide information, we will not be able to:
1. provide requested products or services to you
2. continue to provide/renew existing products or services.
We will tell you when we ask for information which is not a contractual requirement or
needed to comply with our legal obligations.
HOW LONG DO WE KEEP YOUR DATA?
1. We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
2. Our procedures to manage data retention is to retain customer data for 7 years.
3. The email marketing unsubscribe function will remove your details from marketing lists and confirmation of your removal will be sent to your email address.
4. We will take reasonable steps under Article 17 of the GDPR to meet data subject requests.
SPECIFIC THIRD-PARTY INTERESTS
When consent to cookies is given, some data is passed to Google. To understand how Google uses your data, please visit Google’s Privacy & Terms Site.
CHANGES TO OUR PRIVACY NOTICE
We will occasionally update this Notice, in our sole discretion. When we post changes to this Notice, we will revise the “Issue Date” at the bottom of this Notice in order to notify you of changes. We recommend that you check the Service from time to time to inform yourself of any changes in this Notice or any of our other policies. If you do not agree to any update, please do not use the Service; by continuing to access or use the Service after a change to this Notice becomes effective, you agree to and accept the revised Notice as of the Notice Issue Date.
PRIVACY QUESTIONS
1. If you have any questions about how we use your personal data that are not answered here, email: [email protected]
2. if you want to exercise your rights of Access Rights regarding your personal data, please contact us by email at: [email protected] or write to us at: Motorfinity Group Limited, 3 Northgate Terrace, Northern Road, Newark, Nottinghamshire. NG24 2EU.
3. You have the right to make a complaint at any time to the local data protection supervisory authority which, for the UK, is the Information Commissioner’s Office (ICO) (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.
Notice Issue Date: January 2024