Recovery loan scheme is live - contact us today 01473 553 430

Privacy Policy

Who we are

Our staff have years of expertise as brokers and lenders, which we feel gives our customers a unique offering of having a wide range of knowledge to best suit. We are not a comparison site, we do not offer headline rates, our responsibility to you is to find the best personal solution available from our panel of lenders.

  • Our registered address: RJCJ Financial Limited (T/A Jones & Co Finance)
    • Company number: 10784725
    • Bennett Corner House, 33 Coleshill Street, Sutton Coldfield, England, B72 1SD
  • Registered in England and Wales. Company number: 10784725.

Who regulates us?

Our Data Protection Register number is ZA469851. The data controller is RJCJ Financial Limited. 

Please read this Privacy Policy carefully as in contains important information on how we will use your data. If you have any questions in relation to this, please feel free to call us on 01473 553430 or you can write to us at our registered office address, or email, 

We are committed to keeping your information private. By your ‘information’ we mean any information about you or anyone associated with you that you or a third party provides to us, as a result of the application process. Information will only be shared with selected lenders to process any application or as agreed by you in advance. 

When we collect and use personal information about you we become responsible for this information. When we do this, we are regulated by the GDPR. Under this regulation we are known as a ‘data controller’ of that personal information. 

By personal information, we mean information which can be used to identify you. For the purposes of this privacy policy, where we refer to “you” or “your” we are referring to individuals and the company whose information we process, this includes business owners and any key personnel from the party making the application or entering into an agreement. This may include financial associates, directors or shareholders. By making any application with us, it is important you gain full consent of all related parties and you have the authority to allow us to perform the credit searches on their behalf.

Jones & Co Finance or it’s panel of lenders may obtain personal information from you by: 

Directly from yourself, from e.g. order form/application documents/telephone/email; 

Through the course of an agreement either directly from you, your association or with a business supplier/brokers who introduce you to us; 

From third party organisations such as Credit Reference Agencies (‘CRAs’) and Fraud Prevention Agencies (‘FPA’); 

We may also obtain personal information from either monitoring or recording calls. We will record and monitor telephone calls for training, auditing, resolving queries and to improve overall quality and service delivery. When we process your personal information, this will be either for our legitimate business interest, to comply with our legal obligations, to perform a contract with you or where we have your consent

For us to provide you with any products or services we will need to process your name, address and date of birth. In certain circumstances we may be required to obtain additional personal information about you. 

To process an application, we may use your contact details, such as your name, address and contact details as well as your date of birth. This information can be used to create a contract, any legal obligations and for our own legitimate business interests 

Our panel of lenders may use the following to make a credit decision: 

Information you provide to us directly; 

Information we receive from third party credit reference and fraud agencies; 

Information we obtained through the course of an agreement or previous agreements; and 

Information we receive from third parties. 

For this purpose of processing we will share your personal information with CRA’s and FPA’s. The information could be used for: 

CRA’s will add a search footprint onto your credit file when we have conducted a credit search, this may be seen by other lenders. 

If you are making a joint application, or tell us you have a spouse or financial associate we and the CRA’s or FPA’s may link your records together. This means that each other’s personal information (including information the CRA or FPA already holds) will be taken into account with all future credit applications by either or both of you. These links will remain on your and their files until such time as you or your partner successfully files for a ‘disassociation’ with the CRA’s to break that link. Therefore you should make sure you discuss this with them and share this Privacy Policy, before lodging an application. 

We might add to your CRA or FPA records details of your agreements, this may include any defaults or failure to keep to the terms of your agreement and when a payment is overdue. 

CRA’s or FPA’s could pass this personal information onto other companies who have no relation to us who conduct either credit or fraud prevention checks. 

We process and use this personal information in order to comply with our legal obligations and for our own legitimate business interest. 

The identities of the CRAs, their role also as fraud prevention agencies, the information they hold, the ways in which they use and share personal information, information retention periods and your information protection rights with the CRAs are explained in more detail at CRAIN is also accessible from each of the three CRAs – clicking on any of these three links will also take you to the same CRAIN document: 




Who we share your personal information with is dependent on the products or services we provide to you. For the majority of our products and services we will share your personal information with our funders, brokers, suppliers, CRA’s and FPA’s. 

The personal information we have about you is usually gathered from you direct or through the course of an agreement, from public domain or third parties. In some circumstances we will transfer and obtain personal information from third parties where it is necessary for purposes such as credit checking and fraud prevention or for marketing purposes. 

We have adopted appropriate security measures to ensure your personal information remains secure. This prevents your personal information from being accidentally lost, used or accessed in an unauthorised way. We limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality. 

We also have procedures in place to deal with any suspected information security breach. We will notify you and any applicable regulator of a suspected information security breach where we are legally required to do so. 

In providing our products and services to you we may transfer your personal information outside the European Economic Area (‘EEA’). Any transfer of your personal information will be in accordance with our legal obligations to ensure the safeguarding of your personal information during such transfer. If you would like more information or the details of the safeguards we have in place to protect your personal information please contact our DPO using the details set out in Section 1. 

Under the GDPR you have a number of rights in terms of how we use your personal information. You have the right to object how we use your personal information. You also have the right to access the personal information we hold about you. You can also ask us to delete, restrict or correct any inaccuracies in your information. You can also ask us to provide some of your information to a Third Party. 

The length of time we keep your personal information for is dependent on how the information is used and recorded. We will never retain your personal information for longer than the purposes we require it for or is necessary for us to retain. Generally this will be up to seven years after the end of the agreement or application in order to comply with our legal obligations. 

If you would like more information about how long we keep your information please contact our DPO using the details listed in Section 1. If you are unhappy with how we process and use your personal information you can make a complaint directly to us, you can do this by contacting our DPO with the details listed in Section 1. 

We hope that we can resolve any query or concern you raise with us directly, however if we are unable to do so the GDPR also gives you right to lodge a complaint with a supervisory authority. The supervisory authority in the UK is the Information Commissioner’s Office (“ICO”) who may be contacted at