This website contains promotional content for financial services

GDPR Compliance

Last updated: 15 June 2026

Our Commitment to Data Protection

jolly-stoat is committed to ensuring the security and protection of personal information that we process. We provide a compliant and consistent approach to data protection in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Data Controller

For the purposes of data protection legislation, jolly-stoat Financial Services is the data controller for personal information collected through this website and in the course of providing our services.

jolly-stoat Financial Services

47 Castle Street

Liverpool, L2 9SH

United Kingdom

Your Data Protection Rights

Under the UK GDPR, you have the following rights regarding your personal data:

Right to Be Informed

You have the right to be informed about the collection and use of your personal data. This GDPR page, along with our Privacy Policy, fulfils this requirement.

Right of Access

You have the right to obtain confirmation that your data is being processed, access to your personal data, and other supplementary information. You may request a copy of the personal data we hold about you.

Right to Rectification

You have the right to have inaccurate personal data corrected or completed if it is incomplete.

Right to Erasure

You have the right to request the deletion or removal of personal data where there is no compelling reason for its continued processing. This right is not absolute and applies only in certain circumstances.

Right to Restrict Processing

You have the right to request the restriction or suppression of your personal data in certain circumstances.

Right to Data Portability

You have the right to obtain and reuse your personal data for your own purposes across different services. This applies to data you have provided to us where processing is based on consent or contract and is carried out by automated means.

Right to Object

You have the right to object to processing based on legitimate interests, direct marketing, and processing for research or statistical purposes.

Rights Related to Automated Decision Making

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

Exercising Your Rights

To exercise any of your data protection rights, please contact us using the details below. We will respond to your request within one month. In certain circumstances, we may extend this period by two months, in which case we will inform you of the extension and the reasons for it.

We may need to request specific information from you to help us confirm your identity and ensure your right to access the information or to exercise any of your other rights.

Lawful Basis for Processing

We only collect and process personal data where we have a lawful basis to do so. Our lawful bases include:

  • Consent: Where you have given clear consent for us to process your personal data
  • Contractual necessity: Where processing is necessary for the performance of a contract with you
  • Legal obligation: Where we need to process your data to comply with the law
  • Legitimate interests: Where processing is necessary for our legitimate interests or those of a third party, provided your fundamental rights do not override these interests

Data Security

We have implemented appropriate technical and organisational measures to ensure a level of security appropriate to the risk, including:

  • Secure storage of physical and electronic records
  • Access controls limiting data access to authorised personnel
  • Regular review and assessment of security measures
  • Staff training on data protection responsibilities

Data Breaches

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the Information Commissioner's Office within 72 hours of becoming aware of the breach. Where the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly.

Complaints

If you are unhappy with how we have handled your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

Information Commissioner's Office

Wycliffe House, Water Lane

Wilmslow, Cheshire, SK9 5AF

Website: ico.org.uk

We would, however, appreciate the opportunity to address your concerns before you approach the ICO. Please contact us in the first instance.

Contact Us

For any questions about this GDPR policy or to exercise your data protection rights, please contact us:

Email: [email protected]

Address: 47 Castle Street, Liverpool, L2 9SH