GDPR PRIVACY NOTICE
Be-Spoke Capital (Ireland) Limited, Be-Spoke Capital (London) Limited and Be-Spoke Capital (Spain), S.L.
This GDPR Privacy Notice relates solely to Be-Spoke Capital (Ireland) Limited, Be-Spoke Capital (London) Limited and Be-Spoke Capital (Spain) S.L. in respect of their respective processing of personal data of all individuals, and shall take effect from 25th May 2018.
Be-Spoke Capital (Ireland) Limited, has its registered address at Victoria Buildings, Haddington Road; Dublin 4; Ireland. Be-Spoke Capital (London) Limited has its registered address at One Fleet Place, London, England, EC4M 7WS. Be-Spoke Capital (Spain), S.L has its principal address at Calle Fortuny 5-1; 28010 Madrid Spain.
About this Notice
For the purposes of the European Union’s General Data Protection Regulation (“GDPR”) Be-Spoke Capital (Ireland) Limited, Be-Spoke Capital (London) Limited and Be-Spoke Capital (Spain), S.L. (“we”, “our”, “us” or “Be-Spoke”) is each a data controller in respect of personal data of individuals which we may collect from time to time about our clients, prospective clients or other third parties or their employees, directors, officers or representatives (any of whom are referred to as “you” in this statement).
This Notice explains how we use your personal data.
If you are a legal entity or partnership, by engaging in the provision of services with us, you confirm to us that you have provided your employees, directors, officers or representatives with the information set out in this statement and that they have consented to us using, in accordance with this statement, any personal data about them that you provide to us in connection of our financial services business. By continuing to engage in the provision of services with us, you authorise us to use and transfer the personal data about your employees, directors, officers or representatives in accordance with this statement as amended from time to time in accordance with the “Notification of changes” section below.
What types of personal data do we collect?
We may control, process and use your “personal data” which may include names, postal addresses, e-mail addresses, telephone numbers or any other personal data that you provide to us. We may also, in appropriate cases and to the extent permitted by law, control, process and use certain “sensitive personal data” (e.g. when undertaking “Know Your Customer” (“KYC”) or anti-money laundering (“AML”) checks, we may collect information about any offences that you or your employees, directors, officers or representatives have committed). For the purposes of the relevant jurisdiction in which we receive your personal data we are respectively the data controller or the data user of your personal data.
Who might we provide your personal data to?
In the course of running our financial services business we may provide your personal data to any of the following recipients or categories of recipients:
- our employees, board members, partners, officers or representatives;
- our third party service providers, business associates, distributors, advisors or auditors (including their employees, directors, officers, sub-contractors or representatives);
- domestic and foreign regulators (“Regulators”), governments, law prevention, detection, investigation or enforcement authorities, tax, social or labour authorities (“Authorities”) and any other authorities or official bodies and their representatives;
- domestic and foreign courts, tribunals, arbitrators, ombudsmen, mediators, other dispute resolution bodies (“Courts/Tribunals”) and their representatives;
- any party who are directly relating to any one of these recipients; and
- any person that you request us or permit us to keep informed. If you no longer wish us to share your personal data with such person(s) or wish to change your preferences in this respect, please inform firstname.lastname@example.org.
When we provide your personal data to any of the above recipients, that recipient may process your personal data on our behalf or for its own purposes. If the recipient processes the personal data for its own purposes, it will be responsible for its compliance with any applicable law with regard to your personal data.
How may we use your personal data?
We may process, use or transfer your personal data for the following purposes connected to our financial services business:
- administering the provision of services between us including, without limitation, billing, internal reporting and analysis and any other ancillary matters;
- complying with any present or future law, rule, regulation, guidance, decision or directive (including those concerning anti-terrorism, fraud, AML and anticorruption) and, in appropriate cases, carrying out KYC checks and other procedures that we undertake prior to you becoming a customer of ours;
- establishing, exercising or defending rights;
- complying with demands and requests made by, or making voluntary disclosures to Regulators, governments, Authorities or Courts/Tribunals;
- obtaining advice, receiving services or providing a third party with information about matters that may impact on BeSpoke;
- providing you with marketing information relating to our products or services; and
- any other purposes that are incidental to or directly connected with the foregoing purposes or otherwise in the course of our legitimate financial services business activity.
We are entitled to process your personal data in these ways for the following reasons:
- Processing may be necessary to discharge a relevant legal or regulatory obligation.
- The processing will, in all cases, be necessary for the legitimate business interests of BeSpoke or
another person, such as:
- carrying out the ordinary or reasonable business activities of or other activities previously disclosed to you or referred to in this privacy notice;
- ensuring compliance with all legal and regulatory obligations and industry standards, and preventing fraud;
- establishing, exercising or defending legal rights or for other purposes relating to legal proceedings; and
- ensuring the security of information systems.
- In respect of any processing of sensitive personal data falling within special categories, such as any personal data relating to the political opinions of a politically exposed person, the processing will be necessary for reasons of substantial public interest.
If you do not wish to provide your personal data for any of the purposes listed immediately above except for the purpose of providing you with marketing information, we will not be able to provide our financial services to you.
For the purpose of providing you with marketing information relating to our products or services, you are providing your personal data to us on a voluntary basis.
Transfers of your personal data outside the European Economic Area
Your personal data collected by BeSpoke will be stored in BeSpoke’s servers in Ireland and may be transferred to any of the recipients identified in this statement in connection with our financial services business, some of which may be outside the EEA including but not limited to the US, and may be processed by us and any of these recipients in any country worldwide.
Where personal data is transferred outside the EEA, we will ensure that the transfer is subject to appropriate safeguards or is otherwise permitted under applicable law. For example, the country to which the personal data is transferred may be approved by the European Commission, the recipient may have agreed to model contractual clauses approved by the European Commission that oblige them to protect the personal data, or the recipient may be located in the United States and be a certified member of the EU-US Privacy Shield scheme.
You can obtain more details of the protection given to your personal data when it is transferred outside the EEA, including a copy of any standard data protection clauses entered into with recipients of your personal data, by contacting us using the details set out under “Contacting BeSpoke” below.
Updating and retaining your personal data
It is important for us to maintain accurate records of your personal data. Please inform us of any changes to or errors in your personal data as soon as possible and we will update our records accordingly.
We will only retain your personal data for as long as, in our reasonable opinion, is necessary to comply with applicable law or for the purposes for which we process your personal data (as set out in this statement).
Recording of telephone calls
To the extent permitted by and in accordance with applicable law, we may monitor and/or record your telephone calls with us.
You have a number of legal rights in relation to the personal data that we hold about you. These rights include the following:
- The right to obtain information regarding the processing of your personal data and access to the personal data that we hold about you.
- In some circumstances, the right to receive some personal data in a structured, commonly used and machine-readable format and the right to request that we transmit that data to a third party where this is technically feasible. Please note that this right only applies to personal data which you have provided to us.
- The right to request that rectify your personal data if it is inaccurate or incomplete.
- The right to request that we erase your personal data in certain circumstances. Please note that there may be circumstances where you ask us to erase your personal data but we are legally entitled to retain it.
- The right to object to, and the right to request, that we restrict our processing of your personal data in certain circumstances. Again, there may be circumstances where you object to, or ask us to restrict its processing of your personal data but we are legally entitled to continue processing your personal data or to refuse that request.
- The right to lodge a complaint with the data protection regulator (details of which are provided below) if you think that any of your rights have been infringed by us.
You can exercise your rights by contacting us using the details set out under “Contacting Be-Spoke” below. You can find out more information about your rights by contacting an EU data regulator such as the Irish Data Protection Commission, or by searching their website at www.dataprotection.ie.
You can find out more about Google’s position on privacy as regards its analytics service at http://www.google.co.uk/intl/en/analytics/privacyoverview.html
We use a number of different cookies on our site. If you do not know what cookies are, or how to control or delete them, then we recommend you visit http://www.aboutcookies.org for detailed guidance.
Cookies collect anonymous information about how visitors use our site, which is then used to help improve the site. The information collected includes the number of site visitors, where visitors come to the site from and the pages they visit. These cookies are set by this website directly and do not cover links within this site to other websites.
If you have any questions or comments on this statement please contact email@example.com.
Notification of changes
This Notice is dated 25 May 2018. From time to time we may amend this Notice without warning and an amended statement will be available by contacting firstname.lastname@example.org. This may be for a number of reasons, including changes in law, market practice or our treatment of your personal data.