This notice describes how we use personal data. It outlines our data protection obligations and your data protection rights under the Data Protection Act 2018 and General Data Protection Regulation 2018 (“GDPR”). Our policy is to protect your privacy and your personal information. This Privacy Policy sets out the information we collect from you in order for you to use our services, and how we manage that data and our reasons for holding it. We respect the confidentiality of your information and your right to privacy and are bound by the General Data Protection Regulation and relevant laws and regulations. We train our employees who handle personal information to respect the confidentiality of customer information and the privacy of individuals in line with this regulation. We process a very limited amount of personal data. We may, however, collect the following types of information through our website, third parties, and information provided in the course of ongoing communication; Your full name Your email address Your phone number Your country/city of residence Your professional and employment details We may record and hold any communications and data (obtained electronically, by telephone, or in person) in our secure CRM server in the case that we have a legitimate interest to do so. The information collected will be used for the purposes of administering the relationship between us, monitoring and analysing our activities and complying with applicable legal or regulatory requirements. This may include general business administration, including communicating with you, where necessary communicating with service providers on your behalf, risk monitoring and administration of IT systems. If we consider your information to no longer be required or you have requested no further contact from us, your data will be archived in order to eliminate further outreach. The timeframe personal data is held for may vary subject to legal and regulatory obligations. If you are currently or have been a client of us, we shall retain much of your information for five years further to the closure of your account, unless regulatory requirements dictate otherwise. To fulfil our contract with you as a client, we may share information with third parties, examples of which are detailed below: IT providers and services providers in order maintain the provision of our services. Appointed auditors, accountants, lawyers and other professional advisers. (Only to the extent that they require access to the information to provide advice). ID verification and fraud prevention agencies and other organisations that allow us to complete the relevant regulatory checks. Providers of investments or services we recommend, including providers of pensions, offshore bonds, onshore bonds, trusts, investment platforms, discretionary management services, custodians, insurance products or other such products or services. (We may also at times be required to share information with the auditors appointed by the providers of such products or services). The Financial Conduct Authority, the Information Commissioner's Office, or any relevant regulatory authority where they are entitled to require disclosure. If required to do so to meet applicable law, a Court Order or market rules and codes of practice applicable to the circumstances at the time. Relevant authorities to investigate or prevent fraud or activities believed to be illegal or otherwise in breach of applicable law. If tax regulations require us to collect information about tax residency, then in certain circumstances (including if we do not receive a valid self-certification from you), we may be obliged to share information about your account with the relevant tax authority, who may in turn pass this on to tax authorities based in other jurisdictions. Transfer of data outside of the European Economic Area (EEA) We will not lend or sell your information to third parties without your permission. Your personal information may need to be shared with our service providers and this may involve transferring it to countries outside the European Economic Area (EEA). Where this is required, we will ensure that this in accordance with current data protection legislation by only transferring your data to jurisdictions where there is a European Commission adequacy decision in place. Where this is not the case, we will use model clauses, approved by the European Commission, obliging them to protect personal data in accordance with GDPR. Your personal data rights The UK GDPR provides the following rights for individuals in relation to the personal data that we may hold about you: The right to be informed The right of access The right to rectification The right to erasure The right to restrict processing The right to data portability The right to object Rights in relation to automated decision making and profiling Make a request or complaint If you wish to act on any of the above rights or if you are concerned about us any aspect of our conduct regarding your privacy, please email us at admin@fortisf.partners. We will respond and address, without delay, any request, question, complaint or enquiry you have about your personal information or our conduct in processing it free of charge. If you are not satisfied with the way we handled your response, or you believe we have not adequately resolved a matter, you have the right to complain to the Information Commissioner’s Officer (the ‘ICO’). You can find further details on the ICO website at https://ico.org.uk/. As an independent UK authority, the ICO upholds information rights in the public interest, and promotes openness by public bodies and data privacy for individuals. We will endeavour to keep your information accurate, however if at any time after providing information it becomes out of date, then please notify us directly and we shall remove, amend or update the information within a reasonable time frame, in accordance with legislative requirements. We do not sell or share any information about individual users. From time to time we may update this Privacy Policy and will notify you of these changes by posting the updated terms on our website.