We are committed to protecting and respecting your privacy. We collect, store and use information in accordance with the General Data Protection Regulations (EU) 2016/679 (the "GDPR"), the UK Data Protection Act 2018 and any other relevant legislation and regulations as amended from time to time. For the purposes of the GDPR, we are the data controller of any personal data we collect, hold or process about you.
Please do not provide us with such consent if you do not want that information to be used by us in this manner.
3. How we may collect and/or receive your personal information
This is collected and/or received by us when you:
- Use or access our Website;
- Fill in forms on our Website, including any information you provide when you register, create or modify an online account with us;
- Communicate with us by email, telephone, in writing, through our Website or via social media;
- Use or access our Website (including, but not limited to, traffic data and data in relation to the resources you access);
- Respond to surveys or questionnaires you may be asked to complete;
- Manage recruitment and any employment applications and processes.
In running and maintaining our platform and services we may collect and process the following data:
- When you register for our services or register for information from us (“User”), we collect information such as your name, phone number, e-mail, company details, country, and a password.
- We also collect your IP address, browser type, operating system, mobile carrier, and your ISP, and receive the URLs of sites from which you arrive or leave the Nucoro website, or sites that have embedded Nucoro platform technology.
- We collect information through cookies and other technologies that allow us to recognize you and customize your experience.
- As a User you will also be responsible for the other personal data you include in your company profile including the name and job title of any colleagues you include.
- Nucoro also collects collect and process personal information in the following circumstances:
- When you give us your personal information by phone, email, and via our websites. This includes but isn’t limited to information you give us when you register with us, request information, work with us, request literature, or sign up for newsletters. The information you give us can include your name, address, email address and other contact information. It can also include your financial information and other personal details.
- When you visit our website: we automatically collect information which includes: the Internet Protocol (IP) address used to connect your computer to the internet, your login information, your geographic location, your browser and browser plug-in type and version, and your operating system and platform. We also collect information about your visit, including the source of your visit, and the full click path and mouse movement through our sites (including date and time). This includes the services you viewed, searches you made on our sites, page response times, download errors, length of visits to certain pages, page interaction information (such as page scrolling, mouse clicks, mouse movements and keyed text), and how you navigated away from any page and any phone number you use to call our support services.
- When we email you: from time to time when you open an email we’ve sent you, we automatically collect information including your geographic location, browser type and version, the device, and the operating system and platform you’re using. We also collect information about your email consumption, including the full click path from within and on to our sites (including date and time), and whether you opened, deleted, forwarded, printed or unsubscribed from the email, and also how long the email was open.
- When we receive your information from third parties: We may receive information about you from third parties such as credit reference agencies, payment service providers, or analytics providers.
If we don’t receive all of the personal information we’ve requested from you, then our partners may not be able to provide services through our platform for your benefit or use your information for business purposes.
We may also collect your personal information from publicly available information such as information on third party websites or from partners and joint ventures and other companies under common control (together, the "Affiliates").
4. What is personal information?
The types of personal information we receive, store and use may include:
- Data provided by you to verify your identity, including your title, name, gender, address, telephone numbers, passport details, National Insurance no., email address and date of birth;
- Your account information (including your username and password);
- Your financial details including your bank account details, online banking information, credit or debit card number and transaction and credit information;
- Information about your interactions you may have with us and our staff, including interactions via email, telephone or through our Website;
- Information regarding your personal or professional interests, employment status, demographics, experiences with our products, and contact preferences in order to provide you with further services or information about our products and services;
- Any other information we require to assess your knowledge and experience in investing including your financial situation and investment goals; and
- Records of transactions, dealing & payment instructions and without limitation all data generated through the operation of your account with; our firm, bankers, executing brokers, custodians and professional advisors.
5. Changes in your personal information
In order to ensure our records are accurate and updated we may make periodic requests for you to confirm any or all of the relevant data items that we hold.
We would ask that where you are aware of a material change in your own data set e.g. Change of address, name, contact no., email address or similar you notify us in a timely fashion via firstname.lastname@example.org. Where such changes might, in our opinion, affect the operation or functionality of the account we may ask for documentary evidence to verify the new data.
6. How we use personal information
We use the personal information we collect and receive to help us understand your needs and to help us provide you with a better service. In particular, we (including third party data processors, agents and subcontractors acting on our behalf) collect, store and process your personal information.
We process your data relying on any of the following grounds which apply to the collection and processing of your data: i) consent; or ii) where the processing is necessary for the performance of a contract with you; or iii) to meet our legal compliance obligations; or iv) under the legitimate interests ground. Nucoro’s legitimate business interest, and purpose of our processing your data, is to provide data and information on the firms and funds in the investment management industry.
Processing your data also allows us to administer your account and customize the service we provide you and other Users as well as to send you service or promotional communications through email and notices on the Nucoro web platform.
When you receive newsletters or promotional emails from Nucoro, we will use personalized unique links or similar technologies to determine whether the email has been opened and which links you click. This enables us to provide you with email communications or other information that are more targeted to your needs. We will rely on our legitimate interests to do this, meaning the provision of electronic direct marketing of our data, services and products, unless legislation requires us to obtain your consent, in which case we will request this from you.
Specifically, we process your data for the following reasons:
- To allow you to use the various features of our Website;
- To provide our platform services to you in connection with our legitimate business interests, including carrying out any obligations specified in any contracts between us;
- For purposes related to providing our platform services to you, including verifying and authenticating your identity, processing your payments, completing transactions and processing your purchasing requests;
- To improve and tailor our platform services and train our staff;
- For our own internal record-keeping requirements;
- To help protect your account and prevent unauthorised access to your account;
- To meet our regulatory & anti-money laundering obligations;
- To assist in the detection, prevention of fraud and financial crime;
- For market research, analysis, testing, monitoring, risk management, audit and administrative purposes;
- To contact you, for example, to send service communications through our Website, email or any other medium such as to notify of material information relevant to our legitimate business interest including when you check your dashboard or when financial transfers (receipts or payments) have been made on your behalf;
- To inform our business decisions, and to deliver a relevant experience;
- If we learn of your insolvency or bankruptcy (or any insolvency proceedings), we will transfer your details to the Official Receiver or appointed insolvency practitioner(s);
- To check instructions you’ve given us or to resolve disputes including to establish, exercise or defend our legal rights;
- To let you know about any changes we make to our platform and services;
- To process any job application you submit, or that an agency submits for you;
- To request your feedback on a product or service via a third party we have chosen (we will only share your name and email address);
- Gathering data for analysis and research, and to provide management information or other services internally and to third parties;
- To administer our sites and for internal operations, including troubleshooting, data analysis, load management, testing, research, statistical and survey purposes;
- To improve our sites to make sure that our content is as effective as we can for you and for the service we provide;
- To allow you to participate in any interactive features of our platform or sites;
- To monitor, record, store and use any telephone, email or other communication with you. We will update your records with any new information you or a third party give us, and we’ll add it to any information we already have;
- When you call us or contact us we’ll collect the information and may keep a copy of the call or email for our records and for security purposes. We’ll also use your information to help improve our efficiency and effectiveness;
- To deal with any enquiries or issues you have about how we collect, store and use your information, or any requests made by you for a copy of the information we hold about you; and
- For internal corporate reporting, business administration, ensuring adequate insurance coverage for our business, ensuring the security of company facilities, research and development, and to identify and implement business efficiencies.
7. Do we share personal information with anyone else?
We may disclose personal information we collect or receive:
- To you, your lawfully appointed attorney-in-fact or those we reasonably believe to be acting on your behalf;
- To third parties to provide a service to, or perform a function for us, or you, or who are otherwise appointed by us in connection with the services we offer including those who are acting as our agent or sub-contractor, including, without limitation, data processing service providers executing brokers, custodians and our legal and professional advisors;
- To third parties in connection with a proposed or actual financing, securitisation, insuring, merger, restructure, sale, acquisition, assignment or other disposal of all or any part of our business or assets or the assets of any Affiliate or to anyone whom we may transfer our rights and/or obligations for the purposes of evaluating / performing the proposed transaction; and
- To any entity to whom we are required by any applicable law, regulation or legal process, to disclose the data. We would advise that on such occasions we may be restricted by law from notifying you of such disclosure.
However, we never store or disclose your financial account log-in information (such as your online banking username and passwords) to anyone. Furthermore, we will never ask you for your banking username, passwords or such information. Please contact us directly at email@example.com if you have concerns about being asked to provide this information.
8. Marketing Communications
Only when you have provided your explicit consent will we send you marketing communications electronically (e-mail or text). Such communications may relate to goods, products, services or opportunities which are in our legitimate business interest and substantively similar to those that you have previously purchased, invested or expressed an interest in or if you have explicitly consented to us contacting you in this way.
Please do not provide us with such consent if you do not want that information to be used by us in this manner.
During the setting up of your account, you will have the choice as to whether you wish to provide your explicit consent to receive marketing communications from us and/or third parties. You can change your marketing preferences at any time by contacting us at firstname.lastname@example.org.
Where we hold your email address and you have not proceeded to open an account or make an explicit request to receive any marketing communications, unless otherwise instructed, and in the absence of a response we will delete such email address from our records after one year.
9. Statistical information
We may aggregate information about you with information about other users of our Website or services to create anonymised statistical data about users. This is statistical data that does not identify you nor contain any of your personal data. We may distribute any such aggregate information to third parties we work with in the legitimate interests of the business.
10. Information security
We take the security of your personal data very seriously, and we use appropriate technologies and procedures to protect your personal information.
We keep our data security procedures up to widely accepted international standards and only work with recognised suppliers. In addition, we review our policies regularly and update them whenever needed to protect you, and to meet our business needs, changes in technology, and regulatory requirements.
Here are examples of the ways we protect your data:
a) We have appropriate technical and organisational measures in place to protect you against accidental loss and unauthorised access, use, destruction or disclosure of your data.
b) We have a business continuity and disaster recovery plan that is designed to help us offer our services and protect our people and assets no matter what happens.
c) We place appropriate restrictions on access to personal information.
d) We implement measures and controls, including monitoring and physical measures, to store and transfer data securely.
e) We complete data protection impact assessments in accordance with legal requirements and our business policies.
f) We provide data security training for our employees.
g) We use a stringent approach to vendor risk management.
The internet is an open medium and we can’t guarantee that any information you send to us by email or via our platform won’t be intercepted or tampered with. Any transmission is at your own risk. Once we’ve received your information, we use strict procedures and security features to try to prevent unauthorised access.
11. How long do we retain your data?
Contact details are stored for varying lengths depending on the nature and purpose for which it was collected. Nucoro will review your personal data periodically to ensure it is still necessary to be retained for the purpose for which it was collected.
“Page View” data, meaning statistics as to which firm has accessed your firm profile on our web product and how often, is kept for the lifetime of the product so that we can understand changes to usage patterns over time.
Billing data is kept for the lifetime of our contract with you and then ongoing for seven years to comply with tax legislation.
Backups of our products are retained for a year. However, we have processes to ensure if a restore is required Subject Rights are maintained.
Financial data is retained in accordance with statutory and regulatory requirements.
Marketing and sales data is retained and limited in accordance with this policy.
12. Third party links
Our website may contain links to enable you to visit third-party websites, mobile sites and mobile applications. Please note that while we try to work with reputable parties we do not have any control over these third-party websites, mobile sites or mobile applications.
Therefore, we are not responsible for the protection and privacy of any information that you provide whilst visiting such sites.
We would therefore strongly recommend that if you have any concerns you should review their relevant Privacy / Data protection policy prior to providing them with any personal data.
13. Data storage
Personal information we collect from you may be transferred to and stored in destinations outside the UK and the European Economic Area ("EEA") and may be subject to be processed by staff operating outside the UK and EEA. Countries outside the UK and EEA may not offer the same levels of data protection as the UK and EEA.
By the use of our services and or Website, and by submitting your personal information to us, you agree that your personal information may be transferred, stored and processed outside of the UK and EEA.
We will take steps reasonably necessary to ensure that your data is treated securely and in accordance with this Policy. You should be aware that transmission of information via the internet is not entirely secure and we cannot guarantee the security of any data you transmit to our Website via the internet or any other means.
We will retain your personal information and other information which we have collected or received to the extent required by applicable laws and as we may require for operational and legal purposes.
14. Access to information
You have a right under the GDPR to access information we hold about you by contacting us at email@example.com. Please include your name and address and any other information which may identify you. We will not charge you for any reasonable and or periodic requests to access this information.
You will have the right to instruct us to move, copy or transfer your personal data from one IT environment to another in a safe and secure way, without any hindrance to usability. Where you request a transfer of your data we reserve the right to maintain a copy in line with our regulatory and statutory obligations. In addition, we may redact or remove any proprietary information relating to the activities of our firm or its affiliates.
15. What are your rights in relation to our use of your information?
You have rights under data protection law in relation to our use of your information, including to:
- Request access to your information, which you can do by emailing firstname.lastname@example.org stating you are submitting a Subject Access Request;
- Update or amend your information if it is inaccurate or incomplete by emailing email@example.com requesting an update;
- Object to certain uses of your personal data (which includes direct marketing and processing based on legitimate interests and processing for purposes of scientific or historical research and statistics) on grounds relating to your particular situation by emailing firstname.lastname@example.org;
- Withdraw any consents you have provided in respect of our use of your information either by clicking unsubscribe links in emails or emailing email@example.com;
- Request the return of information you have provided to us, to use for your own purposes (often called your right to data portability) where the processing is based on your consent or for the performance of a contract, and the processing is carried out by automated means; and
- Lodge a complaint with the Information Commissioner’s Office (https://www.ico.org.uk/global/contact-us/email/) or other relevant supervisory authority.
We may need to ask you for further information and identification to help us to comply with this request. More information about these rights can be found at https://ico.org.uk/for-the-public/. If you have any questions about these rights, or you would like to exercise any of them, please contact us at firstname.lastname@example.org.
16. Right to have your data deleted
You have the right to ask us to delete your personal data without undue delay and we shall comply where one of the following grounds applies:
- Your personal data is no longer necessary in relation to the purposes for which it was collected or otherwise processed;
- There is no other legal ground for us processing;
- You object to the processing pursuant to Article 21(1) and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Article 21(2);
- Your personal data has been unlawfully processed; or
- Your personal data must be erased for compliance with a legal obligation in the UK or a Member State law to which we are subject (note we will require written evidence of such legal obligation);
Please note that any personal data we hold in relation to the opening and or operation of your account with us may be subject to our record keeping obligations as provided by the Financial Conduct Authority in the UK. If you require further information, please email us at email@example.com
Cookies generally fall into one of the following categories:
- Strictly necessary cookies which are cookies that are required to allow you to use a website and its features;
- Performance cookies which recognise and collect information about how visitors use a website to create aggregated, anonymous information that does not identify the visitor;
- Functionality cookies which allow the website to remember you and provide a more personalised service to you; and
- Targeting or advertising cookies which are used to deliver adverts relevant to you.
Our Website uses the following types of cookies: strictly necessary cookies, performance cookies, functionality cookies and those, where you have provided explicit consent, targeting or advertising cookies. Some of our cookies may remain on your device between your browsing sessions.
You can disable our cookies by changing the settings on your browser but doing so might mean you are unable to use certain features of our Website.
18. Contacting us
If you have any questions or comments on this policy or you would like to request a copy of your personal information, you can contact us at firstname.lastname@example.org.