1. Introduction
Bright Glide Ltd ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, process, and protect your personal data when you use our website, services, and digital investment platform.
We are registered in England and Wales (Company Number: 12345678) and are authorised and regulated by the Financial Conduct Authority (FCA) under firm reference number 123456.
2. Information We Collect
2.1 Personal Information
We may collect the following types of personal information:
- Contact details (name, email address, phone number, postal address)
- Identity verification information (date of birth, passport or driving licence details)
- Financial information (income, employment status, investment experience)
- Transaction data and investment preferences
- Communication records and customer service interactions
2.2 Technical Information
We automatically collect certain technical information, including:
- IP address and geolocation data
- Browser type and version
- Device information and operating system
- Website usage data and analytics
- Cookies and similar tracking technologies
3. How We Use Your Information
We use your personal information for the following purposes:
3.1 Service Provision
- Providing investment services and portfolio management
- Processing transactions and maintaining your account
- Conducting identity verification and anti-money laundering checks
- Providing customer support and responding to enquiries
3.2 Legal and Regulatory Compliance
- Complying with FCA regulations and other legal requirements
- Preventing fraud and ensuring platform security
- Conducting risk assessments and due diligence
- Maintaining accurate records as required by law
3.3 Marketing and Communications
- Sending newsletters and investment insights (with your consent)
- Providing personalised investment recommendations
- Conducting market research and customer satisfaction surveys
- Improving our services and website functionality
4. Legal Basis for Processing
Under the UK General Data Protection Regulation (UK GDPR), we process your personal data based on:
- Contract: Processing necessary for providing our services
- Legal obligation: Compliance with financial regulations
- Legitimate interests: Fraud prevention and service improvement
- Consent: Marketing communications and optional services
5. Information Sharing and Disclosure
We may share your information with:
5.1 Service Providers
- Technology providers and cloud hosting services
- Payment processors and banking partners
- Identity verification and compliance service providers
- Professional advisors (legal, accounting, auditing)
5.2 Regulatory Authorities
- Financial Conduct Authority (FCA)
- HM Revenue & Customs (HMRC)
- Law enforcement agencies when legally required
- Other regulatory bodies as necessary
5.3 Business Transfers
In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity, subject to the same privacy protections.
6. Data Security
We implement robust security measures to protect your personal information:
- 256-bit SSL encryption for all data transmissions
- Advanced firewall and intrusion detection systems
- Regular security audits and penetration testing
- Multi-factor authentication for account access
- Strict access controls and employee training
- Regular data backups and disaster recovery procedures
7. Data Retention
We retain your personal information for as long as necessary to:
- Provide our services and maintain your account
- Comply with legal and regulatory requirements (typically 7 years for financial records)
- Resolve disputes and enforce our agreements
- Prevent fraud and ensure platform security
8. Your Rights
Under UK data protection law, you have the following rights:
8.1 Access and Portability
- Request a copy of your personal data
- Receive your data in a portable format
- Transfer your data to another service provider
8.2 Correction and Deletion
- Correct inaccurate or incomplete information
- Request deletion of your personal data (where legally permissible)
- Restrict processing in certain circumstances
8.3 Objection and Withdrawal
- Object to processing based on legitimate interests
- Withdraw consent for marketing communications
- Opt-out of automated decision-making
To exercise these rights, please contact us at [email protected] or +44 20 7946 0123.
9. Cookies and Tracking
We use cookies and similar technologies to:
- Enable essential website functionality
- Remember your preferences and settings
- Analyse website usage and performance
- Provide personalised content and advertisements
For detailed information about our cookie usage, please see our Cookie Policy.
10. International Transfers
We primarily process data within the UK and European Economic Area. When we transfer data internationally, we ensure appropriate safeguards including:
- Adequacy decisions from the UK Information Commissioner's Office
- Standard contractual clauses
- Binding corporate rules
- Other approved transfer mechanisms
11. Children's Privacy
Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have inadvertently collected such information, please contact us immediately.
12. Changes to This Privacy Policy
We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will notify you of material changes by:
- Posting the updated policy on our website
- Sending email notifications to registered users
- Displaying prominent notices on our platform
13. Contact Information
If you have questions about this Privacy Policy or our data practices, please contact:
14. Complaints
If you are not satisfied with our handling of your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):