Privacy Notice

What information do we collect about you and why?

This Privacy Notice explains how we collect, use, store, and protect your personal information. It also sets out your rights under data protection legislation, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

What information we collect and why?

We collect and process personal information where necessary for:

  • Fulfilling our contractual obligations
  • Complying with legal and regulatory requirements, and
  • Pursuing our legitimate business interests, ensuring that your rights and freedoms are not undermined.

Clients

We collect information through our account opening process, regulatory requirements, and during our ongoing relationship.

This may include:

  • Identity and contact details
  • Financial information
  • Information required for Know Your Client (KYC) / Anti-Money Laundering (AML) checks
  • Records of communications, including recorded telephone calls where required by regulation

Please note:

  • Providing personal data is necessary for entering into a contract with us.
  • Providing information for marketing purposes is voluntary.
  • Automated decision-making may be used to comply with KYC/AML requirements or to demonstrate the suitability of services provided

Employees and job applicants

We collect information from prospective, current, and former employees to manage recruitment processes and employment relationships

Website visitors

When you visit our website, we may collect:

  • IP address
  • Pages visited
  • Usage and interaction data relating to our services

For additional detail, please refer to our Cookies Policy.

How we process your information

Your personal data is processed both manually and electronically in accordance with current regulations.

We allow only authorised SGIL employees and Third-Party processors to have access to your information. Such employees and Third-Party processors are appropriately designated and trained to process data only according to the instructions we provide for them.

How we store your information

We retain personal data for a reasonable period based on:

  • Legitimate business needs
  • Contractual obligations
  • Local and international regulatory requirements
  • SGIL’s internal Retention Policy

Data is securely stored using appropriate technical and organisational measures.

How long we keep your information

  • Non-clients: retained for 1 year from the last contact
  • Marketing opt-outs: we retain your name and contact details on a suppression list to ensure you are not contacted again
  • Clients and former clients: core information kept for 7 years following account closure
  • Pension transfer documents: retained indefinitely, where required by law
  • Recorded telephone calls: retained for 5 years, or longer if required by regulation

Who we share your information with

We may share your personal data with:

  • IT providers and service suppliers supporting our operations
  • Professional advisers (auditors, accountants, lawyers)
  • Fraud-prevention and verification agencies
  • Product and service providers, such as investment platforms, custodians, insurers, and pension or bond providers
  • Regulators, including the Financial Conduct Authority (FCA) and Information Commissioner’s Office (ICO)
  • Authorities for the purposes of preventing fraud or complying with legal or court requirements
  • Tax authorities, where required under tax residency regulations (including international exchange of information rules)
  • Prospective buyers or sellers in the event of a business sale or acquisition

SGIL does not sell or lend your personal information.

International Transfers

Where your data is transferred outside the European Economic Area (EEA), we will ensure appropriate safeguards are in place, including:

  • Transfers to jurisdictions with a European Commission adequacy decision; or
  • Approved Standard Contractual Clauses adopted by the European Commission

Marketing

With your consent, we may send you marketing communications about our products and services or those of other companies in our group.

Where we rely on our legitimate interests, we may send marketing by post.

You may opt out of marketing at any time by emailing DPO@sunglobal.co.uk or by writing to us using the contact details at the end of this notice.

We may also send invitations to events where we believe they may reasonably be of interest to you.

Your rights

You have the following rights over your personal data:

  • Access to the data we hold about you
  • Rectification of inaccurate or outdated information
  • Erasure in certain circumstances
  • Restriction of processing
  • Data portability
  • Objection to processing, including direct marketing
  • Rights related to automated decision-making

Please note that some rights apply only in specific circumstances. Where we are legally required to retain certain information, we may be unable to erase or modify it.

To exercise any of your rights or raise a concern, please contact our Data Protection Officer.

We aim to keep your information up to date. Please notify us of any changes, and we will update our records in accordance with legal requirements.

Security

While we take appropriate security measures to protect your data, please be aware that internet communication—including email—is not fully secure.

We cannot accept responsibility for unauthorised access, loss, or alteration of data during email transmission. Email communications may be monitored for security and compliance purposes.

Please refer to our Cookies Policy for further details about cookies and tracking technologies.

Other websites

Our website may contain links to third-party websites. This Privacy Notice applies only to our website. We recommend reviewing the privacy policies of any external websites you visit.

Updates to this Privacy Notice

We review this Privacy Notice regularly.
Substantial updates will be communicated to you when made.

Last updated: 28/11/2025

How to contact us

If you have any questions about our privacy notice or the information, we hold about you please contact us at DPO@sunglobal.co.uk or by post at the address below:

Data Protection Officer
Sun Global Investments Limited
43-45 Dorset Street,
London, W1U 7NA,
United Kingdom