Privacy Policy

Our website address is: https://fintechwales.org.

We ask that you read this website privacy policy carefully as it contains important information on who we are, how and why we collect, store, use and share personal information, your rights in relation to your personal information and on how to contact us and supervisory authorities in the event you have a complaint.

This website privacy policy is divided into the following sections:

  • Who we are
  • Our website
  • Our collection and use of your personal information
  • Transfer of your information out of the EEA
  • Cookies and similar technologies
  • Marketing
  • Your rights
  • Keeping your personal information secure
  • How to complain
  • Changes to this website privacy policy
  • How to contact us

Who we are

This website is operated by FinTech Wales We are the home of FinTech in Wales and are an organisation dedicated to connecting and empowering businesses and professionals working in the FinTech sector in Wales. We collect, use and are responsible for certain personal information about you. When we do so we are regulated under the General Data Protection Regulation which applies across the European Union (including in the United Kingdom) and we are responsible as ‘controller’ of that personal information for the purposes of those laws.

Our website

This privacy policy relates to your use of our website, fintechwales.org only.

Throughout our website we may link to other websites owned and operated by certain trusted third parties to provide you with information about ourselves and our partners which may be of interest to you. These other third party websites may also gather information about you in accordance with their own separate privacy policies. For privacy information relating to these other third party websites, please consult their privacy policies as appropriate.

Our collection and use of your personal information

We collect personal information about you when you [access our website, contact us, send us feedback, post material to our website and compete customer surveys or participate in competitions via our website.

We collect this personal information from you either directly, such as when you contact us or indirectly, such as your browsing activity while on our website (see ‘Cookies’ below).

The personal information we collect about you depends on the particular activities carried out through our website. Such information includes:

  • your name, address and contact details
  • details of any feedback you give us by phone, email, post or via social media
  • information about the services we provide to you

We use this personal information to:

  • provide you with updates regarding our activities and services
  • notify you of any changes to our website or to our services that may affect you
  • improve our services

This website is not intended for use by children under the age of 13 and we do not knowingly collect or use personal information relating to children.

Our legal basis for processing your personal information

When we use your personal information we are required to have a legal basis for doing so. There are various different legal bases upon which we may rely, depending on what personal information we process and why.

The legal bases we may rely on include:

  • consent: where you have given us clear consent for us to process your personal information for a specific purpose
  • contract: where our use of your personal information is necessary for a contract we have with you, or because you have asked us to take specific steps before entering into a contract
  • legal obligation: where our use of your personal information is necessary for us to comply with the law (not including contractual obligations)
  • legitimate interests: where our use of your personal information is necessary for our legitimate interests or the legitimate interests of a third party (unless there is a good reason to protect your personal information which overrides our legitimate interests)

Further information—the personal information we collect, when and how we use it

For further details on when we collect personal information, what we collect as well as how we use it, please read the following sections:

When information is collected

When you register for email updates from us

What information we ask for

Contact details: your name and email address

How and why we use your information

Contact details: your name and email address

We ask for this:

  • to add you to our contact mailing list
  • to communicate with you

We rely on Consent as the lawful basis for collecting and using your personal information.

We will keep this information until:

  • you unsubscribe from our mailing list
  • we remove you from our mailing list
  • the expiry of a period of 10 years

When information is collected

When you contact us to make an enquiry or complaint

What information we ask for

Contact details: your name, email address and telephone number (if applicable)

How and why we use your information

Contact details: your name, email address and telephone number (if applicable)

Your data will be used to contact you in relation to your enquiry or complaint.

We rely on Consent as the lawful basis for collecting and using your personal information.

We will keep this information until: Your data will be stored for as long as it is required to deal with your enquiry or complaint and will be removed from our records within 6 months of the date of resolution of your complaint.

Who we share your personal information with

We will share personal information with law enforcement or other authorities if required by applicable law.

We will not share your personal information with any other third party.

Whether information has to be provided by you, and if so why

We require you to provide your name and email address) to enable us to keep in contact with you. We will inform you at the point of collecting information from you, whether you are required to provide the information to us.

Transfer of your information out of the EEA

We require you to provide your name and email address) to enable us to keep in contact with you. We will inform you at the point of collecting information from you, whether you are required to provide the information to us.

We may transfer your personal information to the following which are located outside the European Economic Area (EEA) as follows:

  • United States in order to use the servers of Mailchimp.

Such countries do not have the same data protection laws as the United Kingdom and EEA. Whilst the European Commission has not given a formal decision that [such countries] provide an adequate level of data protection similar to those which apply in the United Kingdom and EEA, any transfer of your personal information will be subject to a [provide details of the appropriate or suitable relevant safeguards eg European Commission approved contract] (as permitted under [Insert relevant GDPR Article permitting the transfer eg Article 46(5), which the Article 29 Working Party guidance confirms must be specified] of the General Data Protection Regulation that are designed to help safeguard your privacy rights and give you remedies in the unlikely event of a misuse of your personal information. To obtain a copy of the such [safeguards] [insert details of where they have been made available (where possible providing a link to the mechanism or information.]If you would like further information please contact [us OR [insert details], our Data Protection Officer (see ‘How to contact us’ below). We will not otherwise transfer your personal data outside of the [United Kingdom OR EEA] or to any organisation (or subordinate bodies) governed by public international law or which is set up under any agreement between two or more countries.

Cookies and similar technologies

A cookie is a small text file which is placed onto your device (eg computer, smartphone or other electronic device) when you use our website. We use cookies on our website. These help us recognise you and your device and store some information about your preferences or past actions.

For further information on our use of cookies, please see our Cookie Policy.

For further information on cookies generally visit www.aboutcookies.org or www.allaboutcookies.org.

Marketing

We would like to send you information about upcoming events, newsletters, FinTech Wales updates and products and services which may be of interest to you. Where we have your consent or it is in our legitimate interests to do so, we may do this by email..

We will only ask whether you would like us to send you marketing messages when you tick the relevant boxes when you insert your details for the first time. Click here finstage.wpengine.com to see what this form looks like.

If you have previously agreed to being contacted in this way, you can unsubscribe at any time by:

—contacting us at [email protected]

—using the ‘unsubscribe’ link in emails

It may take up to 10 working days for this to take place.

For more information on your rights in relation to marketing, see ‘Your rights’ below.

Your rights

Under the General Data Protection Regulation you have a number of important rights free of charge. In summary, those include rights to:

  • fair processing of information and transparency over how we use your use personal information
  • access to your personal information and to certain other supplementary information that this Privacy Notice is already designed to address
  • require us to correct any mistakes in your information which we hold
  • require the erasure of personal information concerning you in certain situations
  • receive the personal information concerning you which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to a third party in certain situations
  • object at any time to processing of personal information concerning you for direct marketing
  • object to decisions being taken by automated means which produce legal effects concerning you or similarly significantly affect you
  • object in certain other situations to our continued processing of your personal information
  • otherwise restrict our processing of your personal information in certain circumstances
  • claim compensation for damages caused by our breach of any data protection laws

For further information on each of those rights, including the circumstances in which they apply, see the Guidance from the UK Information Commissioner’s Office (ICO) on individuals rights under the General Data Protection Regulation.

If you would like to exercise any of those rights, please:

  • email, call or write to us
  • let us have enough information to identify you
  • let us have proof of your identity and address (a copy of your driving licence or passport and a recent utility or credit card bill), and
  • let us know the information to which your request relates

Keeping your personal information secure

We have appropriate security measures in place to prevent personal information from being accidentally lost, or used or accessed in an unauthorised way. We limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.

We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so. If you want detailed information from Get Safe Online on how to protect your information and your computers and devices against fraud, identity theft, viruses and many other online problems, please visit www.getsafeonline.org. Get Safe Online is supported by HM Government and leading businesses.

How to complain

We hope that we can resolve any query or concern you raise about our use of your information.The General Data Protection Regulation also gives you right to lodge a complaint with a supervisory authority, in particular in the European Union (or European Economic Area) state where you work, normally live or where any alleged infringement of data protection laws occurred. The supervisory authority in the UK is the Information Commissioner who may be contacted at https://ico.org.uk/concerns/ or telephone: 0303 123 1113.

Changes to this website privacy policy

This website privacy policy was published on 29 April 2019 and last updated on 29 April 2019.

We may change this website privacy policy from time to time, when we do we will inform you via email.

How to contact us

Please contact us, if you have any questions about this privacy notice or the information we hold about you.

If you wish to contact us, please send an email to [email protected], write to FinTech Wales, The Warehouse, Suite B 2nd and 3rd Floors, Wyndham Arcade, Cardiff CF10 1FH or call 02921 961002.