We are committed to protecting your privacy.
Close Brothers Commercial Finance is a business name of Close Brothers Limited and its subsidiaries, Close Brothers DAC and Close Invoice Finance Limited.
Close Brothers Limited (being a UK registered private limited company and its Irish registered branch of the same name having registration number 907899), trading as (and having as registered business names) Close Brothers Commercial Finance, Close Brothers Asset Finance, Close Brothers Motor Finance and Braemar Finance, is authorised by the Prudential Regulation Authority in the United Kingdom and is regulated by the Financial Conduct Authority and the Prudential Regulation Authority in the United Kingdom. UK registered address: 10 Crown Place, London, EC2A 4FT, registered at Companies House, Number 00195626.
Close Brothers DAC (being an Irish registered designated activity company having registration number 706530) trading as Close Brothers Commercial Finance, Close Brothers Asset Finance, Close Brothers Motor Finance and Braemar Finance and is regulated by the Central Bank of Ireland. Registered address: Swift Square, Building 1 Santry Demesne, Northwood, Dublin 9, D09 A0E4, Ireland.
Close Brothers Invoice Finance and Close Brothers Commercial Finance are registered business names of Close Invoice Finance Limited, a UK registered private limited company (and its Irish registered branch of the same name having registration number 908024). UK registered address: 10 Crown Place, London, EC2A 4FT, registered at Companies House, Number 00935949.
"We", "our" or "us" means Close Brothers Limited and its subsidiaries (including Close Brothers DAC and Close Invoice Finance Limited), affiliates and their respective parent and subsidiary companies (“Close Brothers Group”). For the purposes of data protection law, we are a data controller in respect of your personal data. We collect and use your personal data and where applicable this may include information related to your spouse/partner, directors, shareholders, partners, guarantors and owners (your “representatives”). Close Brothers is responsible for ensuring that it uses your personal data in compliance with data protection law.
If you have any questions about this notice, about how we process personal data or about your rights over your personal data, our Data Protection Officer can be contacted at firstname.lastname@example.org or DPO, Close Brothers, 10 Crown Place, London EC2A 4FT.
This notice applies to any personal data we receive from you, create or obtain from other sources and explains how it will be used by us. It is important that you take the time to read this notice so that you understand how we will use your personal data and your rights in relation to your personal data.
Personal data that we collect about you
We will collect and use the following personal data about you and your representatives:
Information you give us
- This is information about you and your representatives that you give us by filling in forms or by corresponding with us by telephone, email or otherwise. The information you give us may include your and your representatives’ name, address, email address and telephone number, financial and credit card information, employment history, health information, credit history, identification records, qualifications and vehicle or asset details.
- You must ensure that in respect of any information you provide us with, which does not relate to you (for example, information about your representatives), you have obtained the necessary consent to disclose such information and provided the individual to whom the information relates with a copy of this notice.
Information we collect or generate about you and your representatives
- Website Usage Information – Our website uses Google Analytics to automatically gather certain statistical information such as the number and frequency of visitors and their IP addresses. This information is used as aggregated statistical information about users, providing usage by IP address. This information helps us to measure how individuals use the website and our services, so that we can continually improve them.
- We sometimes record telephone conversations to resolve complaints, improve our service and for training and quality assurance purposes.
- We generate data for statistical analysis.
Information we receive from other sources
- Financial/Credit Information – We will use information provided by credit reference agencies or financial assessment providers when assessing your application for finance and to verify your or, if applicable, your representative’s identity. Such information may include some details about other credit you have taken out, any credit arrangements you have met or failed to meet, and any court judgments made against you.
- Fraud Prevention Agencies – When verifying your identity as part of our application process, we may access information recorded by fraud prevention agencies within and outside the UK and Ireland. This may include information about any criminal convictions and any allegations regarding criminal activity that relate to you.
- Intermediaries – We will receive information from dealers, brokers and introducers including your personal details, business details, contact details and relevant asset or policy details for the purposes of entering in to and administering your agreement.
- Social Media Profile – Where you have clicked through one of our promotions or event notices posted on a third party social media website such as LinkedIn, we will receive your contact information provided as part of your user profile such as your name, email address and telephone number and any other relevant business information such as your organisation’s name, address and your industry. Some of this information may be prepopulated based on your social media profile; other parts may be completed by you, as and when requested.
- Public databases – we may obtain information about individuals from public databases. We use reputable sources including but not limited to the electoral register and Companies House (UK) or the Companies Registration Office (ROI). We employ appropriate measures to assure the quality of information which we collect.
How we use your personal data
Your personal data may be used by us in the following ways:
Credit Scoring & Crime Prevention
- to verify your identity as part of the account opening process for new customers;
- for making a credit check on you. We may carry out a search with a credit reference agency who will keep a record of our enquiry against your name and which may be linked to your representatives (“associated records”). For the purposes of any application for products or services from us, you may be assessed with reference to “associated records”. Where any search or application is completed or agreement entered into involving joint parties, we may record details at credit reference agencies, as a result an “association” will be created that will link your financial records. Details of which credit reference agency we have used are available on request. We may also add to your or, if applicable, your business’s, record with the credit reference agencies details of your agreement with us, any payments you make under it and any default or failure to keep to its terms. These records will remain on the credit reference agencies’ files for 6 years after our agreement with you is settled or terminated whether settled by you or, if applicable, your business or by way of default. These credit reference agencies may create, or add to, their own record about you, or, if applicable, your business, details of our search and your application. This and other information about you or, if applicable, your business and those with whom you are linked financially may be used to make credit decisions about you or your business;
- You can find further information about how credit reference agencies (Experian, Irish Central Credit Register) may process your personal data at www.experian.co.uk/crain (UK) and www.centralcreditregister.ie or you can contact us to obtain a paper copy of this information;
- we may use credit scoring techniques and automated decision-making systems to either fully or partially assess your information. These credit scoring techniques and automated decision-making systems may consider any previous applications for finance, defaults or existing debt. The results of this decision may decide whether we provide you with our services or not. If you disagree with the results of an automated decision, you can request a review of your application;
- to carry out routine checks on your organisation’s directors and invoices to monitor the risks associated with our agreement with your organisation;
- to allow us to detect and prevent fraudulent activity including sharing personal data with fraud prevention agencies; and
- to allow us to detect and prevent money laundering activity or terrorist financing.
Products & Services
- to provide you with information, products or services that you may request from us;
- to carry out our obligations arising from any agreements you enter with us;
- to make payments;
- to recover monies;
- where we are permitted to do so, to send promotional information about our products and services via methods such as email, post, telephone, etc.; and
- to contact you via post, email or telephone in relation to the administration of your account or to carry out quality control research.
- as part of our legal and regulatory obligations, to conduct statistical analysis to improve our credit risk profile, tackle fraud, and improve our credit decisions. This may include statistical analysis on your personal data even if your application is declined by us or you decide not to complete your application with us; and
- to identify and offer you tailored products and services that are suitable for you and improve our service.
Legal basis for processing your personal data
We process your personal data pursuant to the following legal bases:
- your consent to share your personal data with third party affiliates who may wish to offer you products and services which may be of interest to you;
- taking steps (at your request) prior to entering into an agreement with you, and subsequently for the administration and performance of our agreement with you;
- to comply with our legal and regulatory obligations;
- to establish, exercise or defend our legal rights and / or for (or in connection with) legal proceedings; and
- the use of your personal data as described is necessary for our legitimate business interests which are:
- enforcing the terms and conditions of any agreement we have with you;
- the recovery of outstanding debts existing under an agreement with you;
- carrying out routine checks on your organisation’s directors and invoices to monitor the risks associated with our agreement with your organisation;
- for statistical analysis to improve our products and services; or
- to contact you about products and services that may be of interest to you. You may object at any time by contacting us at email@example.com or by calling Republic of Ireland (01) 906 9312 or Northern Ireland 028 9099 9596 or by mail addressed to Marketing Department at Close Brothers Asset Finance; Wimbledon Bridge House Hartfield Road, Wimbledon, London, England, SW19 3RU or Close Invoice Finance, Ridgeland House, 165 Dyke Road, Hove, England, BN3 1UY.
Sharing your personal data
We may disclose your personal data within the Close Brothers Group and to third party service providers in the circumstances described below:
- to ensure the delivery or maintenance of products or services you have taken out with us;
- to promote products or services similar to those you have taken out with us which may be of interest to you;
- to ensure the safety and security of our data; and
- as part of our internal research and statistical analysis activity.
We will take steps to ensure that the personal data is accessed only by personnel that have a need to do so for the purposes described in this notice.
We may also share your personal data outside of the Close Brothers Group:
- with an insurer or insurers for administration;
- with claims handlers and fraud prevention agencies;
- with any guarantor;
- with any funder in order to enable funders to assess the value of our assets;
- with any broker or introducer of an agreement with us;
- with tracing and repossession agents;
- with financial assessment providers;
- with associated audit services
- if we sell any of our business or assets, in which case we may disclose your personal data to the prospective buyer for due diligence purposes;
- if we are acquired by a third party, in which case personal data held by us about you will be disclosed to the third-party buyer;
- to third party agents or contractors (for example, the providers of our electronic data storage services or call centres) for the purposes of providing services to us; and
- to market our products and services, subject to your specific consent
- with your consent, to third party affiliates who may wish to offer you products and services which may be of interest to you.
These third parties will be subject to confidentiality requirements and they will only use your personal data as described in this privacy notice unless they notify you otherwise.
We may also share your personal data outside of the Close Brothers Group to the extent required by law, for example if we are under a duty to disclose your personal data to comply with any legal obligation including but not limited to disclosures made to:
- Credit agencies;
- Companies House (UK)
- Companies Registration Office (ROI);
- Central Credit Register (ROI),
- European Central Bank / AnaCredit (ROI) and to establish, exercise or defend our legal rights.
Transfer of personal data outside the European Economic Area
From time to time your personal information will be transferred to, stored in, or accessed from a destination outside the European Economic Area (“EEA”) or in the UK. This will include processing by other companies in the Close Brothers Group with processing for service provision taking place within the United Kingdom. When we transfer your personal data outside the EEA, we will ensure that it is protected in a manner that is consistent with how your personal data is protected by us in the EEA. This can be done in a number of ways, for instance:
the country that we send the data to might be approved by the European Commission or a relevant data protection authority; or
the recipient might have signed up to a contract based on “model contractual clauses” approved by the European Commission, or a relevant data protection authority, obliging them to protect your personal data.
In other circumstances the law may permit us to otherwise transfer your personal data outside the EEA . In all cases, however, we will ensure that any transfer of your personal data is compliant with data protection law.
You can obtain more details of the protection given to your personal data when it is transferred outside the EEA (including a copy of the standard data protection clauses which we have entered into with recipients of your personal data) by contacting us in accordance with the “Contact us” section below.
How long we keep your personal data
How long we hold your personal data for will vary. The retention period will be determined by various criteria including:
- the purpose for which we are using it – we will need to keep the data for as long as is necessary for that purpose; and
- legal obligations – laws or regulation may set a minimum period for which we have to store your personal data.
If you are a customer we will retain your personal data for 7 years following the end of our relationship with you, unless we are required by law to keep it for a longer period of time (in which case, we will keep it until the expiry of the period required by law).
You have a number of rights in relation to the personal data that we hold about you. These rights include:
- the right to object to our processing of your personal data where we process your personal data pursuant to our legitimate business interests. Please note that there may be circumstances where you object to our processing of your personal data but may be legally entitled to refuse that request;
- the right to obtain information regarding the processing of your personal data and access to the personal data which we hold about you;
- the right to withdraw your consent to our processing of your personal data at any time. Please note, however, that we may still be entitled to process your personal data if we have another legitimate reason (other than consent) for doing so;
- in some circumstances, the right to receive some personal data in a structured, commonly used and machine-readable format and/or request that we transmit those data to a third party where this is technically feasible. Please note that this right only applies to personal data which you have provided to us;
- the right to request that we rectify your personal data if it is inaccurate or incomplete;
- the right to request that we erase your personal data in certain circumstances. Please note that there may be circumstances where you ask us to erase your personal data but we are legally entitled to retain it;
- the right to request that we restrict our processing of your personal data in certain circumstances. Please note that there may be circumstances where you ask us to restrict our processing of your personal data but we are legally entitled to refuse that request;
- the right to object to any automated decision making (including profiling) which we conduct based on your personal data, which significantly affects you. Please note that there may be circumstances where you object to us conducting automated decision making but we are legally entitled to refuse that request;
- the right to object to the processing of your personal data for direct marketing purposes; and
- the right to lodge a complaint with the data protection regulator (details of which are provided below) if you think that any of your rights have been infringed by us.
You can exercise your rights by contacting us using the details set out in the “Contact us” section below.
You can find out more information about your rights by contacting the data protection regulator, the Information Commissioner (UK) or the Data Protection Commission (ROI), or by searching their respective websites at www.ico.org.uk or www.dataprotection.ie
The Central Credit Register
The Credit Reporting Act 2013 ('the Act') mandates that the Central Bank of Ireland (the 'Central Bank') establishes, maintains and operates a national mandatory database of credit information to be known as the Central Credit Register ('CCR'). The CCR provides a reliable and secure source of credit information, with an accurate picture of each borrower's total loans and guarantees reported. This matching of loans and guarantees from different lenders creates a Single Borrower View, which facilitates enhanced creditworthiness assessments and responsible lending. Find further information here.
Write to our Data Protection Officer; DPO, Close Brothers. 10 Crown Place, London EC2A 4FT,
Our Data Protection Representative at Close Brothers Commercial Finance; Swift Square, Building 1 Santry Demesne, Northwood, Dublin 9, D09 A0E4, Ireland
or Close Brothers Commercial Finance, Centrepoint, Second Floor, 24 Ormeau Avenue, Belfast BT2 8HS.
By telephone: Republic of Ireland (01) 960 9567 or Northern Ireland 028 9099 8571;
By email: firstname.lastname@example.org, DPAsset@closebrothers.com or email@example.com