This notice describes how Sterling Investment Management (Sterling) uses personal data. It outlines Sterling’s data protection obligations and your data protection rights under the regime introduced by the EU General Data Protection (Regulation 2016/679, the “General Data Protection Regulation”).
The GDPR applies to “personal data” meaning any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier.
Sterling needs to use your personal data to provide its services to you, so this notice outlines the following points about the processing of your personal data:
- Which data items are used, how they are used and who they are shared with;
- Why this is done and the lawful basis;
- Your rights and Sterling’s obligations.
WHY STERLING NEEDS TO PROCESS PERSONAL DATA
Your Data are collected to effectively and properly manage your account(s) with us. Data is stored for specific purposes and only data that is relevant to that purpose will be stored. We will use the Data for several different purposes, including to ;
- Send you requested product or service information and to market to you, for example by sending you our Managers Report or hosting networking events. The legal basis for this processing is our legitimate interest in marketing our business or, if you are an individual for data protection law purposes, your consent.
- Administer and manage delivery of our services and products to you. The legal basis for this processing is performance of our contract with you.
- Improve our websites and marketing efforts. The legal basis for this processing is our legitimate interest in continually improving our offering to you, and
- Comply with our legal obligations, such as regulatory reporting.
If at any time you wish to be removed from marketing mailing lists or for any limits to be applied with respect to marketing materials received by you, please let us know. You can do this by e-mailing your Sterling relationship manager, data protection officer or any of the Sterling Partners. Contact details are available on our contact page.
Sterling may collect data:
1. when you or an agent of yours contacts Sterling in relation to business and services offered;
2. when you complete documents or forms during the course of business with Sterling;
3. from Service Providers and other third parties that assist us in conducting business;
4. when you contact Sterling by phone, email or post; and
5. when you use the Sterling website or online services.
Sterling stores your data in electronic media. Data is safeguarded by Sterling and its Service Providers by maintaining physical and electronic security controls that are designed to comply with applicable legal standards.
The Data that is collected or held in relation to you may be transferred to, and stored at, a destination outside the European Economic Area (“EEA”). It may also be processed by staff operating outside the EEA who works for us or for one of our Service Providers. In some cases, the laws of the destination country may not provide the same level of data protection as countries within the EEA. However, all Data wherever they are held by Sterling will be afforded a high level of protection against any unauthorised or accidental disclosure, access or deletion. By submitting your Data you agree to this transfer, storing or processing.
Unfortunately, the transmission of information via the internet is not completely secure. Although Sterling will do its best to protect your Data, we cannot guarantee the security of your Data transmitted electronically. Any such transmission is at your own risk.
Types of data that might be collected
During Sterling’s relationship with you Sterling will collect and process data about you, including:
1. Information which individuals and entities provide when contacting us (including through using this website) (such as their names, postal addresses, telephone numbers, identification documents and e-mail addresses);
2. Corporate information;
3. Details of services provided to you;
4. Details of purchases and redemptions of financial instruments;
5. where permitted or required by regulators or the law, special categories of personal information such as health information or information relating to criminal convictions or offences;
6. detailed financial information, including investment portfolio details, income levels, taxation details, domicile and sources of income; and
7. information regarding relationships you have with banks and/or other financial institutions (including bank details).
Sterling uses Service Providers to conduct aspects of its business, so information may be disclosed to them and their affiliates Data that you have provided in order to fulfil the purposes for which the Data is held. These Service Providers may disclose such Data to each other and to each other’s affiliates in order to achieve the same purposes.
Sterling and its Service Providers may also be required to disclose your Data to governmental agencies, self-regulatory organisations, industry associations and similar bodies in order to fulfil legal and regulatory requirements. In addition, the laws of certain countries and states give people involved in lawsuits and other legal proceedings the right under certain circumstances to obtain information from Sterling and its Service Providers, including your Data. Sterling and its Service Providers will comply with these laws to the extent required.
Sterling will not sell your Data to any third party. Wherever possible, Service Providers are required to enter into confidentiality agreements that prohibit them from selling or improperly using your Data.
Sterling will retain your personal information for a period of up to seven years following the point where the business relationship has ceased.
It may be necessary to retain your personal information beyond this period depending on additional legal/regulatory obligations. Thereafter, Sterling will refrain from collecting any further personal information on you and shall take appropriate steps to dispose of any records containing your personal information to the extent this is operationally feasible and proportionate.
DATA SUBJECT RIGHTS
You have the following rights, in certain circumstances, in relation to your personal information:
- Right to access your personal information (in an easily readable form);
- Right to rectify your personal information;
- Right to restrict the use of your personal information (in certain specific circumstances);
- Right to request that your personal information is erased (in certain specific circumstances). Please note that the right for your data to be erased (the “right to be forgotten”) that applies in some contexts under the General Data Protection Regulation is not likely to be applicable to most, if not all, of the personal information you provide to Thornbridge, given the specific nature of the purposes for which Thornbridge uses the data, as described above;
- Right to object to processing of your personal information (in certain specific circumstances);
- Right to data portability (in certain specific circumstances);
- Right to withdraw consent (in certain specific circumstances); and
- Right to receive information regarding any entities we disclose your data to.
Where Sterling or its Service Provider(s) requires your personal information to comply with AML or other legal requirements, failure to provide this information means Sterling will not be able to accept you as a client or investor.
Sterling shall notify you of any personal information breach affecting you that is likely to result in a high risk to your rights and freedoms.
Changes to this notice
Sterling will need to update its privacy notice in response to regulatory requirements or changes to its business. The latest notice will always be available on the Sterling website (www.Sterlingim.co.uk).
How to contact Sterling
Under the GDPR, data subjects can make a complaint to the supervisory authority including the Member State in which they reside or work or the place of the alleged infringement.
Data Protection Officer, Sterling Investment Management Limited, 13 Austin Friars, London, EC2N 2HE
Cookies can be used by web servers to identity and track users as they navigate different pages on a website and to identify users returning to a website.
Cookies may be either “persistent” cookies or “session” cookies. A persistent cookie consists of a text file sent by a web server to a web browser, which will be stored by the browser and will remain valid until its set expiry date (unless deleted by the user before the expiry date). A session cookie, on the other hand, will expire at the end of the user session, when the web browser is closed.
Cookies on this website
We use both session cookies and persistent cookies on this website.
Cookies do not contain any information that personally identifies you, but personal information that we store about you may be linked, by us, to the information stored in and obtained from cookies. We may use the information we obtain from your use of our cookies for the following purposes:
- To recognise your computer when you visit our website;
- To track you as you navigate our website, and to enable the use of the some of the features on our website;
- To improve the website’s usability;
- To analyse the use of our website;
- In the administration of this website;
- To personalise content on our website for you.
THIRD PARTY COOKIES
Most browsers allow you to refuse to accept cookies. For example:
- in Internet Explorer you can refuse all cookies by clicking “Tools”, “Internet Options”, “Privacy”, and selecting “Block all cookies” using the sliding selector;
- in Firefox you can block all cookies by clicking “Tools”, “Options”, and un-checking “Accept cookies from sites” in the “Privacy” box.
- Blocking all cookies will, however, have a negative impact upon the usability of many websites. If you block cookies, you will not be able to use many of the features of this website.
You can also delete cookies already stored on your computer. The method of doing so will depend upon your web browser. Instructions are available at the following URLs.
Internet Explorer: http://support.microsoft.com/kb/278835