To provide financial planning services, we need to collect and keep personal information about you. We must follow the UK GDPR and the Data Protection Act 2018, as amended by the Data (Use & Access) Act 2025. This notice explains how we use your data and your rights under the law.
We are responsible for your personal information and are registered with the Information Commissioner’s Office (ICO). Our ICO registration number is ZA101296.
We use your personal data to provide financial planning services and advice, meet our legal and regulatory duties, carry out identity checks, respond to lawful requests from regulators or courts, help prevent financial crime, and manage our business, including quality checks and complaints.
| What we use your data for | UK GDPR lawful basis |
|---|---|
| Providing financial planning services and advice, including checking suitability and keeping your plan or portfolio up to date | Contract (needed to provide the services you ask us for) |
| Meeting FCA and other legal or regulatory duties, such as identity checks, anti-money laundering checks, audits, and record-keeping | Legal obligation |
| Responding to lawful requests from regulators, courts, or law enforcement, and helping to prevent fraud and financial crime | Legal obligation and/or legitimate interests (to protect our business, our clients, and the public) |
| Running and managing our business, including quality checks, complaint handling, record-keeping, and business continuity | Legitimate interests (to run our business responsibly) and/or legal obligation (where required) |
| Sending you direct marketing, where you have agreed to this | Consent (you can withdraw it at any time) |
If we rely on your consent, for example to use special category data for some protection or annuity quotes, you can withdraw that consent at any time by writing to us. This will not affect anything we did before you withdrew consent, but it may limit the services we can provide if that data is needed for the service you asked for.
Under the UK GDPR, you have the following rights, subject to certain conditions:
Where you exercise your right to request access to data of which you are the data subject, we will undertake to respond to you within one month of receipt of your request. There will be no charge for this service unless the request is manifestly unfounded or excessive, in which case we reserve the right to charge a fee or refuse to respond.
You can ask us to restrict how we use your personal data, or object to certain processing, in line with your UK GDPR rights. We will consider your request and respond in line with the law. Please note that we may need to continue processing where we have a legal obligation, or where it is necessary to provide the services you have asked for.
Some personal data is required so we can provide our services and meet legal or regulatory obligations. If you choose not to provide required information, we may be unable to act for you, progress your instructions, or obtain products or quotes on your behalf.
These rights apply whether we collect your personal data directly from you or receive it from third parties.
Save in the circumstance as detailed below, we will inform you which source the data originated from and whether it came from publicly accessible sources. The information to be provided will be in accordance with the following time periods, whichever shall occur first:
We do not have to give you this information in the following cases:
Recognised Legitimate Interest is a lawful basis for processing data and is distinct from the existing legitimate interest category which remains applicable and is covered within this notice.
RLI is effectively pre-approved situations that are deemed to be in the Public Interest and do not require client consent. The following areas are specifically covered:
We may collect and use the following categories of personal data:
We collect personal data directly from you via various forms of contact, including (but not limited to) meetings, telephone calls, email, forms, applications and online portals.
We may also receive personal data from third parties where necessary for the services, such as product providers, platforms, your employer (where relevant), professional advisers, credit reference agencies, fraud prevention agencies, and public sources (e.g. Companies House) where appropriate.
We may need to collect sensitive personal data (special category data) including information about your health, ethnic origin, or criminal prosecutions from you and third parties such as employers and credit reference agencies, fraud prevention agencies and other similar organisations in order to provide you with the services, for example where you require advice on protection or annuity products.
In some cases such as protection or annuity advice, we may need health information and/or information about criminal convictions or offences to obtain terms or quotes on your behalf. Where we process special category data, we will only do so with your explicit consent for the relevant purpose, unless another lawful condition applies (for example, to establish, exercise or defend legal claims).
We undertake to review the data we hold on you on a regular basis to ensure compliance with data protection law. In the course of any review, we will:
We may retain and process your data for the following periods. In the event that more than one period applies to the same data, we will retain the data to the last such period to expire:
We will regularly review data and where such data has ceased to be Active we will archive it and process it only as Archived Data. Any data which is deemed Archived Data will only be processed in limited circumstances.
All storage of data, whether Active Data or Archived Data, will be in accordance with good industry practice and will be undertaken in accordance with organisational systems and procedures, which will be regularly reviewed, to maintain the security of data.
When our services end, you can ask us in writing to give you the data you provided in a structured, commonly used, machine-readable format, or to transfer it to another data controller you name. We may still keep copies where we are allowed or required to do so for the reasons set out above.
In order to carry out our legitimate business and to provide you with financial planning services, we have entered into agreements with and will share your information with the following companies, for the purposes of Compliance, IT systems security, data management and control and auditing. Full details of these companies’ addresses and contact details are available on request:
Some organisations we share your data with, including product providers and platforms, may act as independent data controllers; please see their own privacy information for details.
In the event that our firm is involved in a merger, acquisition, sale of assets, or other business transaction, your personal data may be part of the assets transferred. Any such transfer will comply with applicable data protection laws, and the receiving party will continue to handle your personal data in accordance with this Privacy Notice, or an updated notice provided at the time of transfer. We will notify you in advance of any such transfer, providing details of the acquiring entity and any changes to how your data will be processed, if applicable.
When you visit our website, we use cookies and similar technologies to help it function and to understand how it is being used. This includes Google Analytics to measure site performance and traffic, and Google reCAPTCHA to protect our contact forms from automated submissions.
For full details of the cookies we use, how long they are stored, and how to manage your preferences, please see our Cookie Policy.
If you think we have not handled your personal data properly, please contact:
Name: Aaron Montgomery
Address: 1 King William Street, London, EC4N 7AF
Telephone: 0208 132 5784
Email: aaron@globalwealthmap.com
Tell us what happened, when it happened, and what you would like us to do to put things right.
If you are not satisfied with our response, you can also complain to the Information Commissioner’s Office (ICO):
We do not take part in any marketing that would involve the use of your personal data. We will not use your data for marketing purposes of any sort unless you have expressly given us your prior consent. The use of your data as detailed in the remainder of this notice is not affected by whether you choose to consent to the use of data for marketing purposes.
If any provision, or part thereof, of this Privacy Notice is found by any court or administrative body of competent jurisdiction to be invalid, unenforceable or illegal, the remainder of this Privacy Notice will remain in force.
If data protection law changes after the date of this Privacy Notice and we need to update how we describe our data retention, portability or other processing activities, we will update this Privacy Notice as appropriate to reflect those changes and to ensure ongoing compliance with data protection law. Where appropriate, we will provide you with the updated version.
We take your privacy very seriously and will only use your personal information and data to administer the services we have agreed to provide you with, including, but not limited to, any products or contracts for investments, pensions, life cover or mortgages you have made or entered into through our firm.
Global Wealth Map Ltd is authorised and regulated by the Financial Conduct Authority. FCA No: 827170. Registered in England & Wales 9194858.
