Our staff have years of expertise as brokers and lenders, which we feel gives our customers a unique offering of having a wide range of knowledge to best suit. We are not a comparison site, we do not offer headline rates, our responsibility to you is to find the best personal solution available from our panel of lenders.
Our Data Protection Register number is ZA469851. The data controller is RJCJ Financial Limited.
We are committed to keeping your information private. By your ‘information’ we mean any information about you or anyone associated with you that you or a third party provides to us, as a result of the application process. Information will only be shared with selected lenders to process any application or as agreed by you in advance.
When we collect and use personal information about you we become responsible for this information. When we do this, we are regulated by the GDPR. Under this regulation we are known as a ‘data controller’ of that personal information.
Jones & Co Finance or it’s panel of lenders may obtain personal information from you by:
Directly from yourself, from e.g. order form/application documents/telephone/email;
Through the course of an agreement either directly from you, your association or with a business supplier/brokers who introduce you to us;
From third party organisations such as Credit Reference Agencies (‘CRAs’) and Fraud Prevention Agencies (‘FPA’);
We may also obtain personal information from either monitoring or recording calls. We will record and monitor telephone calls for training, auditing, resolving queries and to improve overall quality and service delivery. When we process your personal information, this will be either for our legitimate business interest, to comply with our legal obligations, to perform a contract with you or where we have your consent
For us to provide you with any products or services we will need to process your name, address and date of birth. In certain circumstances we may be required to obtain additional personal information about you.
To process an application, we may use your contact details, such as your name, address and contact details as well as your date of birth. This information can be used to create a contract, any legal obligations and for our own legitimate business interests
Our panel of lenders may use the following to make a credit decision:
Information you provide to us directly;
Information we receive from third party credit reference and fraud agencies;
Information we obtained through the course of an agreement or previous agreements; and
Information we receive from third parties.
For this purpose of processing we will share your personal information with CRA’s and FPA’s. The information could be used for:
CRA’s will add a search footprint onto your credit file when we have conducted a credit search, this may be seen by other lenders.
We might add to your CRA or FPA records details of your agreements, this may include any defaults or failure to keep to the terms of your agreement and when a payment is overdue.
CRA’s or FPA’s could pass this personal information onto other companies who have no relation to us who conduct either credit or fraud prevention checks.
We process and use this personal information in order to comply with our legal obligations and for our own legitimate business interest.
The identities of the CRAs, their role also as fraud prevention agencies, the information they hold, the ways in which they use and share personal information, information retention periods and your information protection rights with the CRAs are explained in more detail at http://www.experian.co.uk/crain/index.html CRAIN is also accessible from each of the three CRAs – clicking on any of these three links will also take you to the same CRAIN document:
Who we share your personal information with is dependent on the products or services we provide to you. For the majority of our products and services we will share your personal information with our funders, brokers, suppliers, CRA’s and FPA’s.
The personal information we have about you is usually gathered from you direct or through the course of an agreement, from public domain or third parties. In some circumstances we will transfer and obtain personal information from third parties where it is necessary for purposes such as credit checking and fraud prevention or for marketing purposes.
We have adopted appropriate security measures to ensure your personal information remains secure. This prevents your personal information from being accidentally lost, used or accessed in an unauthorised way. We limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.
We also have procedures in place to deal with any suspected information security breach. We will notify you and any applicable regulator of a suspected information security breach where we are legally required to do so.
In providing our products and services to you we may transfer your personal information outside the European Economic Area (‘EEA’). Any transfer of your personal information will be in accordance with our legal obligations to ensure the safeguarding of your personal information during such transfer. If you would like more information or the details of the safeguards we have in place to protect your personal information please contact our DPO using the details set out in Section 1.
Under the GDPR you have a number of rights in terms of how we use your personal information. You have the right to object how we use your personal information. You also have the right to access the personal information we hold about you. You can also ask us to delete, restrict or correct any inaccuracies in your information. You can also ask us to provide some of your information to a Third Party.
The length of time we keep your personal information for is dependent on how the information is used and recorded. We will never retain your personal information for longer than the purposes we require it for or is necessary for us to retain. Generally this will be up to seven years after the end of the agreement or application in order to comply with our legal obligations.
If you would like more information about how long we keep your information please contact our DPO using the details listed in Section 1. If you are unhappy with how we process and use your personal information you can make a complaint directly to us, you can do this by contacting our DPO with the details listed in Section 1.
We hope that we can resolve any query or concern you raise with us directly, however if we are unable to do so the GDPR also gives you right to lodge a complaint with a supervisory authority. The supervisory authority in the UK is the Information Commissioner’s Office (“ICO”) who may be contacted at https://ico.org.uk/concerns/