top of page

LENDING SCORE LIMITED – PRIVACY POLICY

Lending Score Limited, a company registered in England and Wales, with company number, 11633476 (we, us or our), understands that protecting your personal data is important. This Privacy Policy sets out our commitment to protecting the privacy of personal data provided to us, or otherwise collected by us when providing our website, and our software solution for banks and lenders (Services) or when otherwise interacting with you.

It is important that you read this Privacy Policy together with any other detailed privacy notices we may provide when we are collecting or processing personal data about you so that you understand our privacy practices in relation to your data.
 

How we collect personal data
 

We collect personal data in a variety of ways, including:
 

  • Directly: We collect personal data which you directly provide to us, including when you sign up to our services, through the ‘contact us’ form on our website or when you request our assistance via email, or over the telephone.

  • Indirectly: We may collect personal data which you indirectly provide to us while interacting with us, such as when you use our website, when you use the Lending Score platform, in emails, over the telephone and in your online enquiries.

  • From third parties: We collect personal data from third parties, such as from your employer where they invite you to access our Services, from our AML provider when we conduct an AML check on you, and details of your use of our website from our analytics and cookie providers and marketing providers. See the “Cookies” section below for more detail on the use of cookies. We also receive personal data about our clients’ customers when we are processing personal data on their behalf. Our clients are typically lenders and banks, and we will only process your personal data where our client directs us to receive and process personal data about you (from Equifax, our client) or other sources. We call this type of data ‘Customer Data’.

  • From publicly available sources: We collect personal data from publicly available resources such as Companies House and professional networking sites such as LinkedIn.
     

The information we collect
 

Personal data: is information that relates to an identified or identifiable individual.

As a data controller (such as when you use our website, sign up to use our Services, use our Services or otherwise contact us), we may collect, use, store and disclose different kinds of personal data about you which we have listed below:
 

  • Identity Data including first name and last name.

  • Contact Data including billing address, email address and telephone numbers.

  • Financial Data including bank account and payment card details.

  • Background Verification Data including your [passport number, driver licence number, photographic identification] or other details requested as part of our onboarding process to comply with our due diligence obligations, anti-money laundering laws and related ongoing monitoring commitments.

  • Transaction Data including details about payments from you to us and other details of products you have purchased from us.

  • Technical and Usage Data including internet protocol (IP) address, your login data, your browser session and geo-location data, device and network information, statistics on page views and sessions, acquisition sources, search queries and/or browsing behaviour, information about your access and use of our website, including through the use of Internet cookies, your communications with our website, the type of browser you are using, the type of operating system you are using and the domain name of your Internet service provider.

  • Profile Data including your password for the Lending Score platform, transactions you have made through the platform and support requests you have made.

  • Marketing and Communications Data including your preferences in receiving marketing from us and our third parties and your communication preferences.

  • Professional data including where you are a worker of ours or applying for a role with us, your professional history such as your previous positions and professional experience.

  • Special Categories of Personal Data is a special category of personal data that includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data. In the course of providing our Services, we may collect, or come across such special categories of personal data, in different situations including during the course of conducting a background verification check on you. In particular, we may come across personal data with respect to criminal convictions.
     

Customer Data
 

Where we act as a data processor and process Customer Data on behalf of our clients, we may collect, use, store and disclose your identity data, contact data, and transaction data, including your bank account, deposit and savings statements, your income, your mortgage and/or rental property payments and Debt Management Plan and/or Individual Voluntary Arrangement statements. Our clients are responsible for complying with any regulations or laws that require providing notice, disclosure, and/or obtaining your consent prior to transferring Customer Data to us to process on their behalf. You should contact your bank or lender to understand their privacy practices in relation to your Customer Data.
 

Purposes and legal bases for processing
 

We collect and process personal data about you only where we have legal bases for doing so under applicable laws. We have set out below, in a table format, a description of all the ways we plan to use your personal data, and which of the legal bases we rely on to do so. We have also identified what our legitimate interests are where appropriate. Note that we may process your personal data for more than one lawful ground depending on the specific purpose for which we are using your data. Please reach out to us if you need further details about the specific legal ground we are relying on to process your personal data where more than one ground has been set out in the table below.

Table.jpg

Our disclosures of personal data to third parties

We may disclose personal data to:

 

  • our clients (where they have instructed us to);

  • our employees, contractors and/or related entities;

  • IT service providers, data storage, web-hosting and server providers such as AWS, Google, Microsoft ;

  • marketing or advertising providers such;

  • professional advisors, bankers, auditors, our insurers and insurance brokers;

  • payment systems operators such as PayPal;

  • our existing or potential agents or business partners;

  • anyone to whom our business or assets (or any part of them) are, or may (in good faith) be, transferred;

  • courts, tribunals and regulatory authorities, in the event you fail to pay for goods or services we have provided to you;

  • courts, tribunals, regulatory authorities and law enforcement officers, as required or authorised by law, in connection with any actual or prospective legal proceedings, or in order to establish, exercise or defend our legal rights; and

  • third parties to collect and process data, such as Google Analytics (To find out how Google uses data when you use third party websites or applications, please see www.google.com/policies/privacy/partners/ or any other URL Google may use from time to time), Facebook Pixel or other relevant analytics businesses]; and

  • any other third parties as required or permitted by law, such as where we receive a summons.

Google Analytics: We have enabled Google Analytics Advertising Features including Remarketing Features, Advertising Reporting Features, Demographics and Interest Reports, Store Visits, Google Display Network Impression reporting etc.. We and third-party vendors use first-party cookies (such as the Google Analytics cookie) or other first-party identifiers, and third-party cookies (such as Google advertising cookies) or other third-party identifiers together.

You can opt-out of Google Analytics Advertising Features including using a Google Analytics Opt-out Browser add-on found here. To opt-out of personalised ad delivery on the Google content network, please visit Google’s Ads Preferences Manager here or if you wish to opt-out permanently even when all cookies are deleted from your browser you can install their plugin here.  To opt out of interest-based ads on mobile devices, please follow these instructions for your mobile device: On android open the Google Settings app on your device and select “ads” to control the settings. On iOS devices with iOS 6 and above use Apple’s advertising identifier. To learn more about limiting ad tracking using this identifier, visit the settings menu on your device.
 

Overseas transfers
 

Where we disclose personal data to the third parties listed above, these third parties may store, transfer or access personal data outside of the United Kingdom. The level of data protection in countries outside of the United Kingdom may be less comprehensive than what is offered in the United Kingdom. Where we transfer your personal data outside of the United Kingdom, we will perform those transfers using appropriate safeguards in accordance with the requirements of applicable data protection laws and we will protect the transferred personal data in accordance with this Privacy Policy. This includes:
 

  • only transferring your personal data to countries that have been deemed by applicable data protection laws to provide an adequate level of protection for personal data; or

  • including standard contractual clauses in our agreements with third parties that are overseas.
     

Data retention
 

We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.

To determine the appropriate retention period for personal data, we consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements.

Your rights and controlling your personal data

Your choice: Please read this Privacy Policy carefully. If you provide personal information to us, you understand we will collect, hold, use and disclose your personal information in accordance with this Privacy Policy. You do not have to provide personal information to us, however, if you do not, it may affect our ability to provide our Services to you and your use of our Services.

Information from third parties: If we receive personal data about you from a third party, we will protect it as set out in this Privacy Policy. If you are a third party providing personal data about somebody else, you represent and warrant that you have such person’s consent to provide the personal data to us.

Access, correction, processing and portability: You may request details of the personal data that we hold about you and how we process it (commonly known as a “data subject request”). You may also have a right in accordance with applicable data protection law to have your personal data rectified or deleted, to restrict our processing of that information, to object to decisions being made based on automated processing where the decision will produce a legal effect or a similarly significant effect on you, to stop unauthorised transfers of your personal data to a third party and, in some circumstances, to have personal data relating to you transferred to you or another organisation.

Unsubscribe: To unsubscribe from our e-mail database or opt-out of communications (including marketing communications), please contact us using the details below or opt-out using the opt-out facilities provided in the communication.

Withdraw consent: Where we are relying on consent to process your personal data, you have the right to withdraw your consent at any time. However, this will not affect the lawfulness of any processing carried out before you withdraw your consent. If you withdraw your consent, we may not be able to provide certain products or services to you. We will advise you if this is the case at the time you withdraw your consent.

Complaints: If you wish to make a complaint, please contact us using the details below and provide us with full details of the complaint. We will promptly investigate your complaint and respond to you, in writing, setting out the outcome of our investigation and the steps we will take to deal with your complaint. You have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK regulator for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance. 
 

Storage and security
 

We are committed to ensuring that the personal data we collect is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures, to safeguard and secure personal data and protect it from misuse, interference, loss and unauthorised access, modification and disclosure.

While we are committed to security, we cannot guarantee the security of any information that is transmitted to or by us over the Internet. The transmission and exchange of information is carried out at your own risk.
 

Cookies
 

We may use cookies on our website from time to time. Cookies are text files placed in your computer's browser to store your preferences. For more information about the cookies we use, please see Cookie Policy.

Links to other websites
 

Our website may contain links to other party’s websites. We do not have any control over those websites and we are not responsible for the protection and privacy of any personal data which you provide whilst visiting those websites. Those websites are not governed by this Privacy Policy.
 

Amendments
 

We may change this Privacy Policy from time to time. We will notify you if we make a significant change to this Privacy Policy, by contacting you through the contact details you have provided to us and by publishing an updated version on our website.

For any questions or notices, please contact us at:

Lending Score Limited, a company registered in England and Wales, with company number, 11633476.

Email: data@lendingscore.co.uk


Last update: 01 August 2023

© LegalVision Law UK Ltd

bottom of page