Privacy Policy

This privacy policy sets out how Financial Hero, trading as Financial Hero, uses and protects any information that you provide to Financial Hero.

Financial Hero is committed to ensuring that your privacy is protected. Should we ask you to provide information that could be described as personal data, when using this website, it will only be used in accordance with this privacy policy.

Financial Hero may change this policy from time to time by updating this page. We will inform you of any material changes we make to this policy to ensure you are satisfied with our approach to managing your personal data.

1. What information we collect and why
   We gather your personal data for the following purposes, and we will only use it for the purpose it was collected.
   
   1.1 Opening an account and suitability assessment
   In order to create an account with Financial Hero we need to collect some personal information which allows us to verify your identity, assess your tolerance to investment risk as part of our regulatory obligations to determine the suitability of our products for you, and is necessary for the performance of the Agreement. You may provide us with this information as part of the account opening process through our website or directly to a Client Support agent.
   
   1.2 Operating your account
   On a day-to-day basis we process information necessary for your account to function correctly and for us to perform our contractual obligations toward you, this can range from details required for us to trade your investments, to data necessary for our technology infrastructure to run. This information is usually generated automatically by your account and our systems or may be collected as a result of a fault you have reported to our Client Support Team.
   
   1.3 Providing you with information and support
   We record all interactions with our Customer Support Team including, but not limited to, emails, phone calls and our Secure mails. We will also generate and keep a record of any mandatory or ad hoc statements and reports we produce for you.
   
   1.4 Improving our services and products
   We are always looking to improve our services to you and our product offering, and for this reason we will collect and process data (including profiling) about how you interact with our website, such as where you click and your IP address, for analytical, development and research purposes. We may also receive information relating to you form third-party analytics providers. This helps improve our current services and may inform how we develop new products and services.
   
   1.5 Marketing
   We may use your personal data to share marketing information with you including direct marketing (we will always seek your consent in accordance with the relevant legal and regulatory requirements prior to engaging in this type of processing). You can unsubscribe from marketing communication by clicking the link provided in relevant emails, or through the dedicated Preference Centre in your dashboard.
   
   1.6 Showing you an interest-based web journey
   We may employ common tracking technology such as cookies and pixels to understand how you interact with our website for the purpose of showing you content on it that we think is most relevant to you.
   
   
   1.7 Complying with legal and regulatory obligations
   We collect as well as receive information about you from third parties such as details necessary to verify your identity to comply with legal and regulatory requirements for the prevention of financial crime. When required for the provision of the services, or volunteered by you, we may also process information which is classed as ‘special category’ under the GDPR including, but not limited to, information about your health and personal circumstances in order to service you in line with the FCA vulnerable customers guidelines and principles (we will always seek your consent in accordance with the relevant legal and regulatory requirements prior to engaging in this type of processing).
   
   
2. Why we need to collect this information
   Financial Hero is required, in accordance with the General Data Protection Regulation – Regulation EU 2016/679 (“GDPR”) to have a purpose and a legal basis for processing your personal data.
   We collect this information primarily to satisfy legal requirements and to enable us to provide the services required under the Agreement between you and Financial Hero.
   
   In particular, in order to provide you with a recommended portfolio and risk profile for your investment we are required to collect responses to the risk questionnaire and anticipated time horizon mentioned above. In some cases, your responses may result in our system determining that our investment product is not suitable for you.
   
   In order to comply with our obligation to treat customers fairly under the FCA’s principles, it may be necessary for us to record certain personal data about a sub-set of our customers who may be classed as vulnerable customers under these principles. Some of this data may be classified as special category data, for which we require explicit consent, including information about a customer’s mental and physical health. This data will be stored securely and accessed only by appropriately authorised personnel. The data will not be transferred to, or processed by, third parties.
   
   Where explicit consent is required, we will seek this from you, for example with respect to marketing preferences. However, in most cases explicit consent is not required, and implicit consent is inferred such that we may perform our responsibilities under the Agreement. Where explicit consent is required and not provided or withdrawn it may result in non-benefit of service, or the inability to open an account with Financial Hero.
   
   
3. Lawful basis for processing
   To process your personal data, we will rely on a number of different legal bases depending on the purpose of the processing, such as where:
   
   – We have a legal or regulatory obligation to process your personal data, such as performing checks for the prevention of financial crime.
   
   – We need to process your personal data in order to perform the Agreement between you and us;
   
   – We have a legitimate business interest to process your personal data which is not overridden, or unbalanced compared to your interests and/or fundamental rights and freedoms;
   
   – You have given us your consent to send you marketing information or to process special category data relating to you, such as health information.
   
   
4. Direct Marketing
   Financial Hero will only send you marketing communications where you have given us your explicit consent. This can be managed through our preference centre where you may withdraw this consent at any time.
   
5. Your rights
   
   5.1 The right to be informed
   You have a right to know what personal data we hold about you, for what purpose and how we process it, as detailed in this Privacy Policy.
   
   5.2 The right of access and data portability
   You have the right to access the data that Financial Hero holds on you and request a portable version of this data.
   
   5.3 The right to rectification
   You have the right to have inaccurate personal data rectified, or incomplete data completed respectively.
   
   5.4 The right to erasure (“the right to be forgotten”)
   You have the right to request erasure of the data held by Financial Hero. Financial Hero is required to balance this right with its obligations under law and regulation with respect to record retention.
   
   5.5 The right to object
   You have the right object to the processing of your personal data when this is based on legitimate interest, including profiling. You also have the right to object to the processing of your personal data for marketing purposes, including profiling for direct marketing purposes.
   
   5.6 The right to restrict processing
   You have a right to request Financial Hero to restrict the processing of your personal data, for instance while process other requests under your rights as a data subject such as the right to object and the right to rectification detailed above.
   
   5.7 Rights in relation to automated decision making and profiling
   Where it is not necessary for the performance of the contract, or based on your explicit consent, you have the right not to be subject to a decision based solely on automated decision-making and profiling.
   
   5.8 Complaints
   You also have the right to complain to the relevant member state authority, which for the United Kingdom is the Information Commissioner’s Office, by visiting their website or calling their helpline on 0303 123 1113.
   
6. Data Retention
   Financial Hero is required to retain certain data records to comply with the Financial Conduct Authority’s (FCA) general recording keeping requirements. To comply with these requirements, Financial Hero’s policy is to retain this data for 7 years, and for any additional period required under prevailing regulation.
   
   Your personal information may be transferred or disclosed to third parties where necessary under the Agreement. This enables us to provide Services to you and to discharge our obligations to third parties, including relevant government agencies and regulators. Such third parties may also have their own data retention periods.
   
   In particular, we use GoCardless to process your Direct Debit payments. More information on how GoCardless processes your personal data and your data protection rights, including your right to object, is available at www.gocardless.com/privacy/.
   
   We use Stripe to process debit card payments. More information on how Stripe processes your personal data and your data protection rights, including your right to object, is available at www.stripe.com/gb/privacy.
   
   Any requests of Financial Hero for erasure during the retention period may not apply to all of these data records, and such records may only be deleted once the retention period has expired.
   
   
7. With whom do we share this information
   
   For the purposes of the Agreement we are required to share your information with third parties, the situations in which we share this information are detailed below:
   
   – Regulatory bodies or the police to comply with our legal obligations;
   – Fraud prevention agencies, and other organisations in order to detect and prevent financial and other crime;
   – Suppliers, where necessary for the performance of the contract.
   
   We may also share your personal information with certain suppliers when we have a legitimate interest to do so, or your explicit consent, as detailed below:
   
   – Data, service and software providers to help improve, develop and maintain our products and website (which may include, for example customer data modelling or statistical and trend analysis);
   – Data, service and software providers to provide you with an interest-based web journey.
   
   We will endeavour to anonymise your data and/or minimise the amount of your data we share with these third parties, where possible. Prior to sharing any of your personal information with these suppliers we will ensure the appropriate contractual, technical and organisational measures are in place to safeguard your personal information, including the relevant arrangements should we transfer this data outside of the EEA.
   
   We will not sell or lease your personal information to third parties unless we have your permission to do so.
   
   
8. Data Controller vs Data Processor
   Under the GDPR, a Data Controller is the entity that determines the purposes, conditions and means of the processing of personal data.
   
   The Data Processor is the entity that processes data on behalf of the Data Controller.
   
   Financial Hero is the Data Controller of your personal information and as noted above we employ the services of a number of third parties to provide the service under the Agreement and to improve our product and services. Customers personal data is shared where appropriate with third parties that are Data Processors or Data Controllers in their own right and, in both scenarios, appropriate legal measures are in place to safeguard the processing of your personal data.
   
   
9. Security
   We are committed to ensuring that your data is retained securely by us. In order to prevent unauthorised access to or disclosure of your data, we have put in place physical, electronic and managerial procedures to safeguard and secure the information we collect.
   
   Financial Hero has robust fraud screening processes to mitigate and detect fraud.
   
   Financial Hero’s mobile apps are protected by a passcode. Financial Hero’s iOS app is compatible with Apple Touch ID.
   
   Should Financial Hero transfer your data outside the EEA we will have appropriate additional measures in place to protect the data.
   
   Using the internet comes with risks, we cannot guarantee that any information sent to us by email or via our website will not be intercepted or tampered with. Any communications are sent at your own risk.
   
   
10. Recommendations
    There are many steps which you can take to help us keep your account safe and secure. We recommend that you take the following actions:
    
    10.1 Password and passcode
    Do not give your device security details, including any passwords or passcodes, to anyone else and don’t store them on your device. Get in touch with us as soon as possible if you feel someone may know your login details or if you lose your device. We can then stop the service to your device.
    
    For added security, we recommend you should set up a passcode to access your mobile device. This option can usually be found under the Settings menu on your device and set up multi-factor authentication via your Financial Hero dashboard.
    
    Multi-factor authentication requires something you are, or something you have in addition to the password when you authenticate a log in to Financial Hero.
    
    10.2 Use private browsing
    Access Financial Hero using the best security offered by your browser to maintain the security of your account, this for example would be “incognito” for Google Chrome and “private browser” for Safari.
    
    10.3 Your handset
    Do not leave your device unattended when logged on and watch out for people looking over your shoulder. Think carefully before jail-breaking or rooting your device. We advise against doing this as it may weaken the security of your device and expose you to additional risks.
    
    Where possible, keep your mobile device’s operating system updated with the latest security patches and upgrades. Older software may have security vulnerabilities that could expose you to additional risks. You may also want to consider using a reputable brand of anti-virus software on your mobile device.
    
    10.4 When Financial Hero contacts you
    We will never make unsolicited contact with you to ask you to disclose your security credentials. Be cautious about opening links contained in SMS messages or emails and beware of phishing scams.
    
    Phishing scams are attempts by scammers to trick you into giving out personal information such as your bank account numbers, passwords and credit card numbers.
    
    If you use Financial Hero’s mobile app, we recommend that you take these additional measures:
    
    10.5 Passcode, TouchID and FaceID
    Your Financial Hero app is protected by a passcode. We recommend that if you use Financial Hero’s apps, you use enable TouchID or FaceID for biometric entry.
    
    10.6 App store
    Only download mobile apps from official app stores.
    When accessing your Financial Hero account please be vigilant about who might be able to view your screen.
    
    
11. Cookies
    
    11.1 What are cookies?
    A cookie is a small text file that is placed on your computer or mobile device when you visit our website or mobile app. There are two main types of cookies, persistent cookies (that remain on your hard drive and your browser for an extended period of time) and session ID cookies (that expire when you close your browser). We have categorised the cookies we use by function, along with a short description of each, below.
    
    11.2 What cookies do we use?
    
    – Necessary Cookies
    Necessary cookies are essential to website and mobile app functionality. These cookies enable you to navigate our website and mobile app, use their features and avail of our services effectively. They also help us maintain our website and mobile app services.
    
    – Functionality and Analytical Cookies
    These cookies collect information about how visitors use our website, allowing us to provide you with a more enhanced and personal experience when using our website and services. They also allow us to perform analytics (such as gathering data about the number of visits to, and the time spent on, our site), remember user preferences (such as your username and password) and provide certain content services (such as enabling you to watch videos). We also use other tracking technologies like web pixels (sometimes called “tracking pixels”). These are tiny graphics files that contain a unique identifier, enabling us to recognise when someone has visited our website or opened an email that we have sent them.
    
    – Targeted Advertising Cookies
    Targeted advertising cookies enable us to deliver advertising and marketing that is relevant to you, and also allow us to limit the number of times you see certain advertisements. These cookies are also used to analyse how effective some of our advertising campaigns are by tracking users’ clicks.
    
    The cookies mentioned above may be persistent cookies (cookies that remain on your hard drive and your browser for an extended period) or session ID cookies (cookies that expire when you close your browser).
    
    11.3 What Third Party cookies are on our website?
    There are also cookies set by third parties across our websites and services. Third party cookies enable third party features or functionality to be provided on or through our website, mobile app and services, such as advertising, interactive content and analytics. They also enable us to manage Financial Hero advertising on other websites.
    
    Some of our affiliates and third-party service providers, may use a few different types of cookies, this may include persistent and session cookies as described above.
    
    11.4 How can you control cookies?
    Financial Hero use both essential and tracking cookies on our website and mobile app, which are mainly persistent cookies unless labelled as session only. You can accept or reject cookies by amending your web browser controls. Because some are essential our website, mobile app and services might not work like they’re supposed to, and in some cases, might not work at all, if you decide to reject all cookies.
    
    There are two options when disabling cookies:
    You can turn off Third-Party website cookies via your browser settings
    
    
    You can also manage your cookie settings by following your browser’s instructions. Here are some links that might be of assistance:
    
    – Google Chrome
    https://support.google.com/chrome/answer/95647?co=GENIE.Platform%3DDesktop&hl=en
    – Microsoft Internet Explorer
    https://support.microsoft.com/en-nz/help/17442/windows-internet-explorer-delete-manage-cookies
    – Mozilla Firefox
    https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences
    – Safari
    https://support.apple.com/en-nz/guide/safari/manage-cookies-and-website-data-sfri11471/mac
    
    
12. Links to other websites
    Our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and review the privacy statement applicable to the relevant website.