Privacy Policy | Muir Mortgage & Financial Solutions

Your Personal Data

To enable us to give you the right advice, we will need to hold some personal information about you. The Data Controller in relation to any personal data you supply is Stonebridge Group and any information you give will be processed in accordance with the General Data Protection Regulation (GDPR) and the Data Protection Act 2018.

Why We Need It

To manage your dealings with us, including arranging mortgages, loans, and protection products.
To disclose information to relevant third parties (lenders, insurers, software providers).
To verify your circumstances with third parties (e.g., employer, accountant, credit reference agencies).
For compliance monitoring purposes with the Financial Conduct Authority (FCA).
To prevent financial crime and ensure advice quality.

All processing is based on the legitimate interests of the business. If you do not provide the required information, we will be unable to provide our services.

Email Communications

If you provide an email address, we will use it to communicate with you about your application or our services. We will not use it for marketing purposes.

What We Do With Your Data

All personal data is processed in the United Kingdom by our staff and selected third parties (as detailed above). Your data may be stored on cloud-based systems hosted in the UK.

How Long We Keep It

We will generally keep your personal data for a minimum of 6 years after our business relationship ends. After this, it will be securely destroyed if no longer required for lawful purposes.

Sensitive Personal Data

In connection with insurance applications, it may benefit you to notify us of any health condition or disability. This type of information is only collected with your explicit consent and only where necessary. It may be shared with insurers to consider your application.

Your Rights

Under data protection law, you have rights including:

Right of access – to request copies of your personal data.
Right to rectification – to have inaccurate data corrected.
Right to erasure – to request deletion where data is no longer needed.
Right to restriction – to limit processing in certain circumstances.
Right to data portability – to receive your data in a common format or have it transferred to another controller.
Right to object – to object to processing based on legitimate interests.

How to Complain

If you are unhappy with how we have handled your personal data, you can contact [email protected]. You also have the right to complain to the Information Commissioner’s Office (ICO) at https://ico.org.uk/concerns.