PRIVACY NOTICE

Your privacy is important to us. This notice (“Privacy Notice”) is provided by Tresidor Investment Management LLP (“we” or “us”) and sets out our policies with respect to collection, sharing and use of personal information.

Tresidor is subject to the UK General Data Protection Regulation (“UK GDPR”), and if it handles the data of EU persons (which includes EU clients and investors), the General Data Protection Regulation EU 2016/679 (“EU GDPR”). Henceforth, unless otherwise stated all references to GDPR are to both UK and EU GDPR (“Data Protection Law”).

How we collect information about you

We may collect personal data about you through:

  • information provided directly to us by you or another person on your behalf, through our website, by email or post, or in person;

  • information that we obtain in relation to any transactions between you and us; or

  • recording and monitoring of telephone conversations and electronic communications with you as described below.

We may also, in some circumstances, receive personal information about you from third parties, such as service providers or trading counterparties, regulatory or law enforcement agencies, credit reference agencies and agencies conducting background checks. Personal information may also be obtained from publicly accessible sources of information, such as public databases, industry associations, social media and online professional networks.

Why we collect information about you

We collect your personal information to fulfil our contractual obligations, our statutory and regulatory obligations and/or the legitimate interests of Tresidor or its clients and for other purposes for which Tresidor has a lawful basis under privacy laws, for the purposes of administering the relationship between us including communications, auditing and risk monitoring, assessing and processing information required for compliant marketing of our products and services to you or the businesses with which you are associated, monitoring and analysing our activities, and complying with applicable legal, regulatory or industry standards and requirements.

We will use one of the permitted grounds under the applicable law to process your information. Such grounds include instances where you have given your consent and cases where your consent is not required under applicable law, such as where we are required to comply with a legal obligation, or where we or a third party determine that it is necessary for our legitimate interests to collect and use your personal information.

The legitimate interests to collect your personal information may include any of the purposes identified above and any other purpose where we or a third party have determined that you have a reasonable expectation for us or a third party to collect or use your personal information for such purpose. Examples include administration in the performance of a contract, processing information in order to discharge a relevant legal or regulatory obligation,  ensuring compliance with all legal and regulatory obligations and industry standards, carrying out reasonable business as described in this notice, establishing, exercising or defending legal rights or other purposes relating to legal proceedings and preventing cyber security breaches. You have the right to object to the use of your personal data for direct marketing purposes.

What are the consequences of failing to provide your personal information?

As a regulated financial services firm, we are subject to legal and regulatory obligations that may require us to collect and store your personal information, such as the requirements to comply with the applicable law on prevention of financial crime, tax and regulatory reporting, or the rules on recording and monitoring of communications (as described below).

We may also need to collect and use your personal information for the purposes of entering into or performance of a contractual arrangement between us.

A refusal to provide us with personal information may, depending on the purpose for which your personal information is required, have various consequences such as us being unable to communicate with you, the termination of any service or other contractual arrangement between us, or, where we have a reasonable suspicion of illegal activity, we may be required to make a report to regulatory or enforcement agencies.

The types of personal data we may collect and use

The categories of personal data we may collect will depend on the nature of our relationship with you and the purpose of which information is being collected. Such personal data may include names, residential addresses or other contact details, signature, nationality, date and place of birth, national insurance or other tax identification number, photographs, copies of identification documents, bank account details, information about assets or net worth, credit history, criminal and administrative offences, source of funds details, or other sensitive information, such as certain special categories of personal data contained in relevant documents or materials.

Do we use automated decision-making processes?

No.

Do we share your personal information with third parties?

We may (to the extent relevant to the purpose for which we collect your information), share your personal data with third parties, such as:

  • our affiliates or other entities that are part of our group or with our clients;

  • any person to whom we have a right or obligation to disclose personal data, or where we determine that disclosure is necessary to protect or defend our rights or property, including with regulators, courts of law, governmental, regulatory or law enforcement agencies;

  • our internet, IT, telecommunications and other service providers, including legal advisers, accountants, payroll administrators, insurance and employee benefits providers and administrators;

  • service providers and trading counterparties to our clients, including placement agents or distributors, brokers, banks, trading venues, clearing houses, custodians, corporate services providers, administrators of our funds, and providers of customer relationship management tools;

  • credit reference agencies and other third parties conducting background checks in the context of employment or client, counterparty, or investment due diligence;

  • any person, as directed by you; or

  • any person to whom we transfer any of our rights or obligations under any agreement, or in connection with a sale, merger or consolidation of our business or other transfer of our assets, whether voluntarily or by operation of law, or who is otherwise deemed to be our successor or transferee.

Transfers of personal information to countries outside of the UK

Due to the international nature of our business, your personal data may be transferred to countries outside of the UK, such as to jurisdictions where we or our clients conduct business or have a service provider, including countries that may not have the same level of data protection as that afforded by the UK GDPR. In these circumstances, we take steps to ensure that the recipient agrees to keep your information confidential and that it is held securely in accordance with the requirements of UK GDPR, such as (i) transferring to countries where the UK has determined that third-country offers equivalent protection for personal data (‘adequacy regulations’), which includes countries in the European Economic Area (‘EEA’) (ii) If there are no adequacy regulations in relation to the country of data transfer, where the UK has determined the data transfer is subject to ‘appropriate safeguards’ including where the transfers will be subject to UK binding corporate rules (only relevant between members within a group of undertakings or engaged in a joint economic activity), and/or standard contractual clauses issued by the Information Commissioner’s Office or (iii) If there are no adequacy regulations or appropriate safeguards in relation to the country of data transfer, where transfers are covered by ‘exceptions’ including where the individual has explicitly consented to the proposed transfer after being made aware of the potential risks or where the transfer is necessary for the performance, or conclusion, of a contract.

For how long do we keep your personal information?

We will generally keep personal information about you for as long as necessary in relation to the purpose for which it was collected, or for such longer period if required under applicable law or necessary for the purposes of our other legitimate interests.

The applicable retention period will depend on various factors, such as any legal obligation to which we or our service providers are subject as well as on whether you decide to exercise your right to request the deletion of your information from our systems. As a minimum, information about you will be retained for the entire duration of any business relationship we may have with you, and for a minimum period of five years after the termination of any such relationship.

We will, from time to time, review the purpose for which we have collected information about you and decide whether to retain it, update it, or securely delete it, if the information is no longer required.

Recording and monitoring of communications

We may record and monitor telephone conversations and electronic communications with you for the purposes of:

  • ascertaining the details of instructions given, the terms on which any transaction was executed or any other relevant circumstances;

  • ensuring compliance with our regulatory obligations; or

  • detecting and preventing the commission of financial crime.

Copies of recordings will be stored for a period of five years, or such other longer period as we may determine from time to time.

What are your rights?

You have certain rights under Data Protection Law in respect of the personal data we hold about you and which you may exercise. These rights are:

  • to be informed about the collection and use of your personal data;

  • to request confirmation of whether your personal data has been processed and to access to your information;

  • to request rectification of inaccurate or incomplete information;

  • to request erasure of your information (a “right to be forgotten”) in accordance with Data Protection Law;

  • to restrict the processing of your information in certain circumstances where the accuracy of the data is contested by you;

  • to object to our use of your information, such as where we have considered such use to be necessary for our legitimate interests (e.g. in the case of direct marketing activities);

  • where relevant, to request the portability of your information;where you have given consent to the processing of your data, to withdraw your consent; and

  • to lodge a complaint with the competent supervisory authority.

How to contact us

If you have any questions about this Privacy Notice or wish to exercise your rights as above including requests with regards to the personal data we hold about you, you may contact us via the methods below:

·         by email at marc.sharman@tresidor.com or

·         in writing to Tresidor Investment Management LLP, 72 Welbeck Street, London W1G 0AY.

Information provided to data subjects, whether as a result of the exercise of a data subject’s rights or when informing the individual that their personal data is being collected and its purpose, will be free of charge. However, where such requests are excessive or manifestly unfounded then Tresidor reserves the right to charge a reasonable fee.

Questions and complaints

If you have any questions or concerns about the handling of your personal data or about this policy please contact us via the methods above.

You also have the right to complain to the Information Commissioner’s Office (ICO). Further information is available from the ICO’s website.