Privacy Policy

This Privacy Policy explains how Clarity Insolvency Limited ("we", "us", "our") collects, uses, stores and protects your personal data when you visit our website at www.clarityinsolvency.co.uk or otherwise engage with our services.

We are committed to protecting your privacy and complying with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018 and other applicable privacy laws.

1. Who we are

Clarity Insolvency Limited is the data controller responsible for your personal data.

• Company number: 17179172
• Registered office: Unity House, Westwood Park Drive, Wigan, England, WN3 4HE
• Email: info@clarityinsolvency.co.uk

We are based in the United Kingdom.

2. The personal data we collect

We may collect and process the following categories of personal data:

Identity data

This may include your:

• first name;
• last name;
• title;
• date of birth; and
• previous names.

Contact data

This may include your:

• email address;
• postal address;
• telephone number; and
• other contact details.

Financial data

This may include information relating to:

• debts and liabilities;
• creditor details;
• income and expenditure;
• assets;
• employment;
• banking information;
• payment details; and
• financial circumstances.

Enquiry and correspondence data

This includes:

• the content of messages you send to us;
• records of telephone calls;
• live chat records;
• emails and written correspondence; and
• information you provide when seeking advice or support.

Technical and usage data

This may include:

• IP address;
• browser type and version;
• time-zone setting;
• operating system and platform;
• device information;
• website usage data; and
• cookie and analytics data.

3. Special category personal data

In some circumstances, we may collect and process special category personal data, including information relating to your health or vulnerabilities, where this is relevant to your financial circumstances or to the advice and services we provide.

We will only process this information:

• where you have provided explicit consent;
• where processing is necessary for the establishment, exercise or defence of legal claims; or
• where we are otherwise permitted or required to do so by law.

We only collect special category data where it is genuinely necessary and proportionate for the services we provide.

We do not knowingly collect personal data from anyone under 18 years of age.

4. How we collect your personal data

We collect personal data in several ways, including:

Direct interactions

When you:

• complete forms on our website;
• contact us by email, telephone or post;
• request advice or services; or
• otherwise communicate with us.

Automated technologies

As you interact with our website, we may automatically collect technical and usage data through cookies and similar technologies. Please see our Cookie Policy for more information.

Referral partners

We may receive your personal data from My Debt Plan, a debt-advice partner who refers cases to us when you have asked for further help with your situation. The licensed Insolvency Practitioner at My Debt Plan is Lucy Novo Deakin. My Debt Plan will only share your data with your consent and in line with their own privacy notice.

Other third parties

We may also receive personal data from:

• creditors;
• professional advisers;
• regulators;
• insolvency practitioners;
• anti-money laundering providers;
• identity verification providers; or
• organisations acting on your behalf.

5. How we use your personal data

We only use your personal data where UK GDPR allows us to do so.

This includes where:

• processing is necessary to perform a contract with you or take steps at your request before entering into a contract;
• processing is necessary to comply with legal or regulatory obligations;
• you have provided consent;
• processing is necessary for our legitimate interests or those of a third party, provided your rights do not override those interests; or
• processing is necessary for the establishment, exercise or defence of legal claims.

We use personal data for the following purposes:

• responding to enquiries and providing debt or insolvency advice;
• assessing whether insolvency solutions are appropriate;
• administering insolvency procedures and related services;
• communicating with creditors, regulators and courts;
• complying with anti-money laundering and regulatory obligations;
• maintaining internal records and case management systems;
• improving our website and services;
• preventing fraud and maintaining security; and
• sending marketing communications where consent has been provided.

6. Legitimate interests

Where we rely on legitimate interests as our lawful basis for processing, these interests may include:

• responding to enquiries;
• operating and improving our business and services;
• maintaining website and information security;
• preventing fraud;
• maintaining appropriate records;
• communicating with clients and service users; and
• developing and improving our systems and processes.

We only rely on legitimate interests where we are satisfied that your rights and freedoms do not override those interests.

7. If you do not provide personal data

Where personal data is required:

• to provide advice or services;
• to comply with legal obligations; or
• to verify your identity,

failure to provide that information may mean we are unable to assess your circumstances, provide advice, or deliver our services.

8. Who we share your personal data with

Depending on the services we provide, we may share personal data with:

• Ebenegate, the regulated Insolvency Practitioner firm who service all formal arrangements introduced through our website. Where you decide to proceed with a formal arrangement, your information will be passed to Ebenegate and they will become the data controller for that arrangement under their own engagement terms and privacy notice;
• creditors and their representatives;
• the Insolvency Service;
• HMRC;
• courts and tribunals;
• insolvency regulators and professional bodies;
• solicitors, accountants and insurers;
• fraud prevention agencies;
• anti-money laundering and identity verification providers;
• IT, hosting, telephony and software providers;
• payment processors and banking providers; and
• tracing agents where necessary to maintain contact with you.

We may also disclose personal data:

• where required by law;
• where necessary to establish, exercise or defend legal claims;
• where necessary to prevent fraud or criminal activity; or
• where you have provided consent.

We do not sell your personal data and we do not share it with third parties for their own marketing purposes.

9. Public insolvency registers

Where we administer formal insolvency procedures, certain personal information may be published on public insolvency registers where required by law.

This may include your:

• name;
• address;
• date of birth; and
• details of the insolvency procedure.

10. International transfers

We are based in the United Kingdom and aim to store and process personal data within the United Kingdom or European Economic Area (EEA) wherever possible.

Where you proceed with a formal arrangement, back-office support may be carried out by Ebenegate Mauritius Limited, a company based in Mauritius outside the EEA. Ebenegate Mauritius Limited complies with the same legislation as our UK companies, as well as local law, and your rights to access, correct, delete and restrict the data used remain the same as in the UK.

Some of our other third-party service providers, software systems, cloud hosting providers, communication platforms or support services may also process personal data outside the UK or EEA.

Where personal data is transferred outside the UK or EEA, we ensure appropriate safeguards are in place in accordance with UK GDPR requirements. These safeguards may include:

• transfers to countries recognised by the UK Government as providing an adequate level of data protection;
• use of the UK International Data Transfer Agreement (IDTA);
• Standard Contractual Clauses (SCCs);
• contractual obligations requiring overseas providers to protect personal data to UK GDPR standards; or
• other legally approved transfer mechanisms.

Where overseas service providers process personal data on our behalf, they are only permitted to process the information in accordance with our instructions and appropriate confidentiality and security obligations.

You may request further information about international transfers or obtain a copy of the relevant safeguards by contacting us using the details in this policy.

11. Data security

We implement appropriate technical and organisational security measures designed to protect personal data against accidental loss, unauthorised access, misuse, alteration or disclosure.

These measures include:

• restricted access controls;
• encrypted systems and communications where appropriate;
• secure document storage;
• staff confidentiality obligations and training;
• cyber security monitoring; and
• secure disposal and retention procedures.

We also maintain procedures for dealing with suspected personal data breaches and will notify the Information Commissioner's Office and affected individuals where we are legally required to do so.

12. How long we keep your personal data

We only retain personal data for as long as reasonably necessary for the purposes for which it was collected, including satisfying legal, regulatory, tax, accounting or reporting obligations.

Typically:

• enquiry data is retained for up to 12 months from your last contact with us;
• records relating to regulated services may be retained for at least 6 years after the end of the service relationship; and
• certain records may be retained longer where required by law, regulation or professional obligations.

Where possible, we may anonymise data so that it can no longer be associated with you.

13. Automated decision-making

We do not currently make decisions based solely on automated processing, including profiling, which produce legal or similarly significant effects on individuals.

We may use limited automated tools to assist with identity verification, fraud prevention, or assessing eligibility for services, but meaningful human involvement will always form part of significant decisions.

14. Marketing communications

We will only send electronic marketing communications where:

• you have provided consent; or
• we are otherwise permitted to do so under applicable privacy and electronic marketing laws.

You may withdraw consent or opt out of marketing communications at any time by:

• clicking the unsubscribe link in any marketing email; or
• contacting us at info@clarityinsolvency.co.uk.

Withdrawal of consent will not affect the lawfulness of processing carried out before consent was withdrawn.

15. Your rights

Under UK GDPR, you have a number of rights in relation to your personal data, including:

• the right to be informed about how your personal data is used;
• the right of access to your personal data;
• the right to rectification of inaccurate personal data;
• the right to erasure in certain circumstances;
• the right to restrict processing;
• the right to data portability;
• the right to object to processing carried out on the basis of legitimate interests;
• the right to object to direct marketing at any time; and
• rights relating to automated decision-making and profiling.

Your right to object

You have the right to object at any time to:

• processing based on our legitimate interests; and
• processing for direct marketing purposes.

If you object to direct marketing, we will stop processing your personal data for that purpose immediately.

To exercise any of your rights, please contact us at info@clarityinsolvency.co.uk. We will normally respond within one month. We may request proof of identity before responding to your request.

16. Cookies

Our website uses cookies and similar technologies to:

• ensure the website functions correctly;
• improve website performance and user experience;
• analyse website traffic and usage; and
• support marketing and advertising activities.

For full details of the cookies we use, how long they remain on your device, and how you can manage your cookie preferences, please refer to our Cookie Policy.

17. Changes to this policy

We may update this Privacy Policy from time to time. The latest version will always be available on our website and the date at the top of this policy will show when it was last updated. We encourage you to review this policy periodically.

18. Contact us and complaints

If you have any questions about this Privacy Policy or how we process personal data, please contact:

Clarity Insolvency Limited
Unity House
Westwood Park Drive
Wigan
England
WN3 4HE

Email: info@clarityinsolvency.co.uk

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK supervisory authority for data protection matters.

• Website: ico.org.uk
• Helpline: 0303 123 1113

We would appreciate the opportunity to address your concerns before you contact the ICO.