1. About this notice
Your privacy is important to us. This notice (the “Privacy Notice”) provides information on how Delfinus LLP may gather and use personal information. Delfinus is committed to respecting the confidentiality of the personal information you supply to us.

This Privacy Notice is being provided in accordance with the requirements of data privacy laws, including the EU General Data Protection Regulation 2016/679 (“GDPR”) and the UK Data Protection Act 2018 (together the “Data Protection Law”).

2. About us
We are Delfinus LLP, a limited liability partnership registered in England and Wales under OC420940 and authorised and regulated by the Financial Conduct Authority, whose main office is at 3 Hill Street, London W1J 5LB.

For the purposes of data privacy legislation, Delfinus LLP is the controller of your data which means that we are responsible for how your data are collected and used. We respect your privacy and will protect any of your personal data that we process. All personal data are processed in accordance with applicable data protection laws.

3. Type of data we collect and use
We collect certain personal data about you. “Personal data” are data that can be used to identify you or that we can otherwise link to you using information we may already hold.  The data we collect includes your name, postal address, contact phone numbers, e-mail address and job title.

4. How we collect personal data
We may collect personal data about you through: (i) information provided directly to us by you, or another person on your behalf; (ii) information that we obtain through or in connection with the provision of products and services; (iii) through our website; and (iii) telephone conversations and electronic communications with you.  We also may receive your personal information from third parties or other publicly accessible sources, such as the Internet.

5. How we may use your personal data
We may process your personal data for the purposes of administering the relationship between you and us (including communications), marketing, monitoring and analysing our activities, the administration and maintenance of databases storing personal data, and complying with applicable legal or regulatory requirements.  Your personal data will be processed in accordance with Data Protection Law.

6. How we may share your personal data
Only the people who need to process personal data for the purposes mentioned herein have access to your personal data.  We do not transfer any of your personal data. In the event that any changes occur to our processes requiring such a transfer, we will notify you through the update of this Privacy Policy.  Any transfer of data will be made in accordance with data protection laws.

7. How long we may keep your personal data
The retention period during which we will hold your personal data will vary and will be determined by the following criteria:

• the purpose for which we are using it – Delfinus will need to keep the data for as long as is necessary for that purpose; and
• legal obligations – laws or regulations may set a minimum period for which we have to keep your personal data.

8.  Security measures to keep your personal data safe 
Delfinus LLP acknowledges that the information you provide may be confidential and will maintain the confidentiality of and protect your information in accordance with its normal procedures and all applicable laws. We employ appropriate technical and organisational security measures to help protect your personal data against loss and to guard against access by unauthorised persons. We regularly review our security policies and procedures to ensure our systems are secure and protected.

9. Your choices and rights 
We welcome your inquiries and comments. You have the right to know what personal data we process about you and may request a copy. You are also entitled to have incorrect personal data about you corrected and you may in some cases ask us to delete your personal data. You can also object to certain personal data about you being processed and request that processing of your personal data be limited. Please note that the limitation or deletion of your personal data may mean we will be unable to provide the communications and invitations described above. You also have the right to receive your personal data in a machine-readable format and have the data transferred to another party responsible for data processing.  If you are dissatisfied with how we process your personal data, you are entitled to report this to the Office of the Information Commissioner (ICO) which is the UK regulator for the processing of personal data.

10. How to contact us 
Should you have any questions or concerns about this Privacy Notice or the processing of personal data we may hold about you, please contact us by email at [email protected]. 

11. Revisions to this Privacy Policy 
We may change this Privacy Policy from time to time by updating this page. You should check this page from time to time to ensure you are happy with any changes.