1. Who We Are

Johnstone & Co Financial Services Ltd is registered in England and Wales (Company No. 13438944).
Registered Office: 1A The Courtyard, Furlong Road, Bourne End, Buckinghamshire, SL8 5AU.

We are authorised and regulated by the Financial Conduct Authority (FCA) under firm reference number 963983.

We act as the data controller, meaning we decide how and why your personal data is used.

Contact details for data protection matters:
Email: enquiries@johnstone.uk.net
Telephone: 01628 522822
Postal address: 1A The Courtyard, Furlong Road, Bourne End, SL8 5AU

2. The Data We Collect

We collect personal data to provide financial advice and related services. The data we collect may include:

  • Identity data: name, date of birth, marital status, dependants.

  • Contact data: home address, email address, telephone numbers.

  • Financial data: income, assets, liabilities, pension and investment information, expenditure, and tax status.

  • Health data: medical details where relevant for protection or insurance advice (special category data).

  • Technical data: IP address, browser type, time zone setting, and cookie identifiers.

  • Marketing and communications data: your preferences for receiving updates or newsletters.

3. How We Collect Your Data

We collect data in several ways, including:

  • When you complete forms on our website (such as the contact form).

  • When you contact us by phone, email, or in person.

  • During the course of providing advice or arranging financial products.

  • Through cookies and analytics tools when you browse our website.

  • From third parties such as product providers, lenders, or professional advisers (with your consent or as required to deliver services).

4. How We Use Your Data

We use your personal information to:

  • Provide financial planning, advice, and product recommendations.

  • Prepare reports, applications, and compliance documentation.

  • Meet our regulatory, legal, and contractual obligations.

  • Communicate with you about your financial arrangements.

  • Send updates, newsletters, or market insights (where you have opted in).

  • Improve our website, client experience, and services.

5. Legal Bases for Processing

We process personal data under the following lawful bases:

  • Contract: to provide financial advice and fulfil our obligations to you.

  • Legal obligation: to meet requirements of the FCA, HMRC, and other regulators.

  • Legitimate interests: to manage our business, improve services, and ensure quality assurance.

  • Consent: for marketing communications and for processing sensitive health data (for insurance or protection advice).

6. Sharing Your Information

We will only share your personal data where it is necessary and appropriate, including with:

  • Financial product providers, lenders, and investment platforms.

  • Compliance consultants, auditors, and the Financial Conduct Authority.

  • Professional advisers such as solicitors or accountants (with your permission).

  • IT, hosting, and cloud service providers who support our systems.

We do not sell your data to any third parties.

All third-party providers are required to maintain appropriate security and comply with data protection laws.

7. International Transfers

If we use service providers located outside the UK (for example, secure cloud storage or IT systems), we ensure that suitable safeguards are in place.
These include standard contractual clauses or other mechanisms approved by the Information Commissioner’s Office (ICO) to protect your data.

8. Data Retention

We retain personal data only for as long as necessary to meet the purposes outlined in this policy and to comply with legal, tax, and regulatory obligations.

In most cases, this means retaining records for at least six years after the end of our business relationship, or longer where required by law or regulation.
After this period, data is securely deleted or anonymised.

9. Your Data Protection Rights

Under UK data protection law, you have the right to:

  • Request access to your personal data (“subject access request”).

  • Request correction of inaccurate or incomplete information.

  • Request deletion of your personal data (where legally permissible).

  • Restrict or object to processing of your data.

  • Request transfer of your data (data portability).

  • Withdraw consent to marketing communications.

To exercise these rights, please contact us at enquiries@johnstone.uk.net or by writing to our office address above.

If you are unhappy with how we handle your data, you can complain to the Information Commissioner’s Office (ICO):
Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
Tel: 0303 123 1113
Website: www.ico.org.uk

10. Marketing Communications

We may send you updates, newsletters, or event invitations if you have given us your consent.
You can unsubscribe at any time by clicking the unsubscribe link in our emails or by contacting us at enquiries@johnstone.uk.net.

We will never use your data for marketing purposes without your explicit consent.

11. Cookies Policy

What Are Cookies?

Cookies are small text files placed on your device by websites you visit. They help make websites work efficiently and provide information to site owners.

How We Use Cookies

We use cookies to:

  • Ensure the site functions properly.

  • Analyse website traffic and improve usability.

  • Remember your preferences between visits.

  • Support marketing and remarketing (if applicable).

Types of Cookies We Use

  • Essential cookies – Required for Squarespace and basic site functionality.

  • Analytics cookies – Provided by services such as Google Analytics to track usage and improve performance.

  • Preference cookies – Remember settings such as your region or language.

  • Marketing cookies – Used to deliver relevant ads or track conversions (optional).

Managing Cookies

When you first visit our site, a banner will appear allowing you to accept or manage cookies.
You can also disable cookies through your browser settings at any time.
Please note that disabling essential cookies may affect site functionality.

For further details on controlling cookies, visit www.aboutcookies.org.

12. Security

We take the security of your data seriously and use appropriate technical and organisational measures to prevent loss, misuse, or unauthorised access.
Access to your personal data is limited to those employees and third parties who have a business need to know.

13. Updates to This Policy

We regularly review and update this Privacy and Cookies Policy. Any updates will be posted on this page with an updated “last revised” date.
You should check this page periodically to ensure you are aware of the most recent version.

14. Contact Us

If you have any questions about this Privacy and Cookies Policy or how we handle your personal data, please contact:

Data Protection Officer / Compliance Department
Johnstone & Co Financial Services Ltd
1A The Courtyard, Furlong Road, Bourne End, Buckinghamshire, SL8 5AU
Email: enquiries@johnstone.uk.net
Telephone: 01628 522822