Privacy Policy

This privacy policy (together with our terms of website use and any other documents referred to on it) sets out the basis on which we, Fiona Ross, 11 Investment House, 28 Queens Rd, Weybridge, Surrey KT13 9UT, will process any personal data we collect from you, or which you provide to us, in the course of using our site www.fionamaryferrar.co.uk.

For the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, we are the data controller.

Information We Collect

When you use our site, there are a number of ways in which you provide personal data to us. This may include:

  • Information you provide when filling in forms on our website (such as when you subscribe to newsletters or request services).

  • Information you provide when corresponding with us by email or otherwise.

  • Technical information, including your IP address, browser type, and operating system, collected automatically when you interact with our website.

How We Use Your Information

We may use your information to:

  • Send you newsletters and updates, where you have consented.

  • Ensure that content from our site is presented in the most effective manner for you and your device.

  • Provide you with information, products, or services that you request from us, or which we feel may interest you, where you have given consent.

  • Fulfil our obligations arising from contracts entered into between you and us.

  • Allow you to participate in interactive features of our services, when you choose to do so.

  • Notify you about changes to our services.

Marketing

If you do not want us to use your information for marketing purposes, you can opt out at any time by contacting fiona@fionamaryferrar.co.uk or by clicking “unsubscribe” in our emails.

We will not share your personal data with third parties for their marketing purposes unless you have expressly consented.

Legal Bases for Processing

We process your personal data under one or more of the following lawful bases:

  • Consent – when you have given us clear permission to process your personal data.

  • Contract – when processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract.

  • Legal obligation – when processing is necessary to comply with a legal requirement.

  • Legitimate interests – when processing is necessary for our legitimate business interests, and your rights and interests do not override those interests.

Data Storage and Security

All information you provide to us is stored on secure servers. Any payment transactions will be encrypted using SSL technology.

We take your privacy very seriously and will take all reasonable steps to protect your personal data. However, please note that transmission of data over the internet is never completely secure, and any data you send to us is at your own risk.

Your data may be transferred to, processed, and/or stored outside the UK or European Economic Area (EEA). Where this occurs, we will ensure appropriate safeguards are in place (for example, use of standard contractual clauses) to protect your data in accordance with UK GDPR.

Disclosure of Your Information

We may disclose your personal data to:

  • Our subsidiaries, our ultimate holding company, and its subsidiaries (as defined in the Companies Act 2006).

  • Prospective buyers or sellers of our business or assets, in the event of a business transfer.

  • Third parties where required by law, regulation, or to protect the rights, property, or safety of ourselves or others. This may include sharing with organisations for fraud prevention and credit risk reduction.

We will never sell your personal data to third parties.

Your Rights

Under UK GDPR, you have the following rights:

  • Right of access – to request a copy of the personal data we hold about you.

  • Right to rectification – to request correction of inaccurate or incomplete data.

  • Right to erasure – to request deletion of your personal data where there is no longer a legal basis for us to hold it.

  • Right to restrict processing – to request restriction of processing in certain circumstances.

  • Right to data portability – to receive your personal data in a structured, commonly used format, and have it transmitted to another controller.

  • Right to object – to object to processing of your data based on legitimate interests or direct marketing.

  • Right to withdraw consent – where processing is based on consent, you may withdraw that consent at any time.

You can exercise any of these rights by contacting us at fiona@fionamaryferrar.co.uk.

We aim to respond to requests within one month. Unlike under the previous Data Protection Act 1998, we will not charge a fee for normal access requests unless they are manifestly unfounded, excessive, or repetitive.

Retention of Data

We will only retain your personal data for as long as necessary to fulfil the purposes for which it was collected, including satisfying any legal, accounting, or reporting requirements.

Cookies

Our website may use cookies to distinguish you from other users, to improve site functionality, and to provide you with a better experience. You will be given the option to accept or decline cookies when visiting our site. For more information, please see our Cookies Policy.

Links to Other Websites

Please note that if you click on, or follow, any links from our site to external websites, this privacy policy no longer applies. Please check the privacy policies of any external sites before submitting any personal data, as we cannot accept responsibility or liability for them.

Changes to This Policy

We may update this privacy policy from time to time. Any changes will be posted on this page and, where appropriate, notified to you by email.

Contact

If you have any questions, concerns, or requests regarding this privacy policy or how we handle your data, please contact us at:

fiona@fionamaryferrar.co.uk