This privacy notice sets out the way in which we will collect and use your personal information. For the purpose of this notice, “we” refers to CLB Direct Limited.
We will collect data from you to progress your claims with the institutions who you may have taken out credit products with. This information may include personal information such as contact details, your date of birth and any previous addresses or names. We will also ask for financial information such as account and policy numbers. In addition, we may require you to share a ‘credit check’ with us.
We will not under any circumstances ask for, or record, any sensitive data as defined under the General Data Protection Regulation 2018 (GDPR). Sensitive data would include (but is not limited to) information of your race, religion, sexual orientation, political views, or any medical condition. Where this information is collected inadvertently, it will not be retained and will be securely and confidentially destroyed.
We will use this information to identify you, and to locate your products with the relevant financial institutions. A ‘credit check’ would be used solely for the purpose of identifying the products and institutions with which you may have held payment protection insurance policies.
We will also use the contact details which you provide in order to contact you. If you would prefer not to be contacted by email, phone or text please tell us. We will not contact you without your consent once your engagement with us has ended.
Whenever you have given us your consent to use your personal data, you have the right to change your mind at any time and withdraw that consent. If you would like to do this you should please tell us in writing via post or email at firstname.lastname@example.org.
We will not send you any marketing information on any product or service provided by CLB Direct or any other company, including any affiliates of CLB Direct.
We will ensure your data is stored securely and that this is only accessed by authorised persons for the purposes set out above. As far as possible we will hold all records electronically. All data will be held and accessed in accordance with the General Data Protection Regulation 2018.
You can find further information on GDPR below and on the website of the Information Commissioner’s Office at www.ico.org.uk. A copy of our data protection policy is also available on request.
We will not keep your information for any longer than is necessary in the context of your engagement with us. We may be required to keep your information after our engagement has ended; for example to support any future complaints or to maintain our financial records.
We will not retain your data when there is no longer an adequate reason to do so. In all instances we will not retain data for longer than a 24 month period following conclusion of your case or termination of our engagement under any other circumstances (such as cancellation by you). Once this data is no longer required this will be disposed of securely without prejudicing any of your confidential information in accordance with the GDPR.
We understand the confidential nature of any personal data which we hold about you. We will not share this with any third party without your express consent, unless we are obliged to do so by law.
In order to pursue your claim, it will be necessary to share your information with the relevant financial organisations. Your consent to this will be given as part of our standard terms of engagement.
We will not share your details with any organisation other than those you have identified as making claims against you. If you do not want us to contact any of these organisations please let us know.
If there is a requirement to share your information for any other purposes, we will contact you beforehand and will not share any personal data without your agreement and full consent.
Please contact us via email or phone to inform us of any change to your contact details.
It is very important that the details we hold are kept up to date and that you
You can request a copy of the information which we hold about you by submission of a Subject Access Request. This request can be made verbally, or in writing to our registered office address. We will respond within one month and provide copies of all personal data we hold.
Except in exceptional circumstances (for example where the request involves excessive and extraordinary administration) you will not need to pay any fee for this service.
Further information on how to submit a Subject Access Request can be found on the Information Commissioner’s Office website at www.ico.org.uk.
As a consumer you have the right to request:
You can contact us to request to exercise these rights at any time by email (email@example.com) or post.
If we choose not to action your request we will explain to you the reasons for our refusal.
In cases where we are processing your personal data on the basis of our legitimate interest (for example where data has been retained to resolve a service complaint), you can ask us to stop for reasons connected to your individual situation.
We must then do so unless we believe we have a legitimate overriding reason to continue processing your personal data.
If you have authorised a third party to submit a request on your behalf, we will ask them to prove they have your permission to act.
To protect the confidentiality of your information, we will ask you to verify your identity before proceeding with any request you make under this Privacy Notice.
GDPR came into force on 25 May 2018. This replaced the Data Protection Act 1998 and introduced greater responsibilities for organisations who collect and store personal data. GDPR controls how your personal information is collected, used and stored by organisations and institutions. We understand our responsibilities to you and the importance of keeping your personal information safe Organisations which collect and process personal data are required to be registered with the Information Commissioner’s Office. Under GCPR, it is your right that the data which any organisation holds about you is adequate, accurate, security retained and disposed of confidentially.
Further information can be found on this the website of the Information Commissioner’s Office at www.ico.org.uk.
If you feel that your data has not been handled correctly, or you are unhappy with our response to any requests you have made to us regarding the use of your personal data, you have the right to lodge a complaint with the Information Commissioner’s Office.
You can contact the Information Commissioner’s Office directly either by calling 0303 123 1113 or online at www.ico.org.uk/concerns.
If you are based outside the UK, you have the right to lodge your complaint with the relevant data protection regulator in your country of residence.
Please contact us via email if you have any questions in relation to the information which we collect and how it is used. Should you wish to complain about the way in which your data has been used, further details on our complaints process can here.
If you would like to speak to someone about what we do and how we can help, we will be happy to answer any questions you have. Please contact us via email or using the form below.
“Freed from over £70,000 of debt in just 1 year! The whole process was easy… Galahad & Co. gave me the chance to finally be debt free.
A huge relief.” – Angela Kelly
“We in debt are vulnerable. Galahad & Co. put an end to years of stress and sleepless nights with creditors looming over me.
Excellent and very personal service. Recommend them heartily!” – Raheela Salim
“I cannot explain the deep relief you feel when your debt has disappeared.
There are no real words to say thank you when you have been set free.” – Susan Yeo
“I’m so glad I found Galahad & Co.! For 15 years I was struggling in debt management and going nowhere.
Thanks to Galahad & Co., I was completely freed from over £250,000 of debt in just one year!” – Luke Thomas
“This changed my life! Galahad & Co. sorted all my debts and gave me back my life. I’ll be forever grateful.” – Mrs Thomas