Privacy Policy

Finance Partners – Privacy and Cookie Policy

Last updated: April 2024

General

The EU General Data Protection Regulation (GDPR), which became effective on May 25, 2018, introduces enhanced rights for individuals and mandates organizations to ensure transparency in their data processing practices. In response to these new requirements, Finance Partners (referred to as “FP,” “we,” or “us”) has developed a Privacy Policy aimed at elucidating how we gather, store, and utilize personal data acquired via our website (https://www.financepartners.com.mt/) or through email correspondence. 

Any personal information voluntarily provided by you through these channels will undergo processing in strict adherence to the Data Protection Act (Chapter 586 of the Laws of Malta), the GDPR, and any other pertinent data protection legislation that may undergo amendments over time.

Definitions:

‘Personal Data’: Refers to any information pertaining to an identified or identifiable natural person. This encompasses identifiable material related to physical, physiological, mental, economic, cultural, or social identity. It includes but is not limited to physical files, identification numbers, location data, and images or records of individuals.

‘Processing’: Encompasses any operation or set of operations performed on personal data or sets of personal data, whether automated or not. This includes collection, recording, organization, structuring, storage, adaptation, alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment or combination, restriction, erasure, or destruction.

‘Controller’: Refers to the natural or legal person, public authority, agency, or other body that, alone or jointly with others, determines the purposes and means of personal data processing.

‘Processor’: Refers to a natural or legal person, public authority, agency, or other body that processes personal data on behalf of the controller.

‘Third party’: Denotes a natural or legal person, public authority, agency, or body other than the data subject, controller, processor, and persons authorized by the controller or processor to process personal data.

‘Personal Data Breach’: Indicates a breach of security resulting in accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to personal data transmitted, stored, or otherwise processed.

Data Controller

Data Controller 

Finance Partners, a professional services practice established under Maltese law, acts as the Data Controller in compliance with the GDPR. 

Should you have any inquiries regarding how we handle your personal data, please reach out to our data protection representative at [email protected]. Our physical address is Finance Partners, SOHO St Julian’s, Punchbowl Centre, Elia Zammit Street, St. Julian’s, STJ 3154, Malta.

Information Collection 

We typically collect the following data about you:

• Your full name
• Your email address
• Your IP address
• Any personal information provided through our website
• Any personal data shared during communication with us (including meetings, calls, and emails)

Basis of Processing 

We process personal data based on:

• Legal obligations (e.g., compliance with fraud and money laundering regulations)
• Necessity to fulfill requests from potential clients before entering into a contract (e.g., providing quotes and conducting due diligence)Performance of contractual obligations agreed upon at your request (e.g., delivering financial services)
• Our legitimate interests (e.g., ensuring the provision of quality financial services, efficient management of customer databases, and debt collection)

Sharing Your Information 

We do not share your personal data with third parties without your consent, except when necessary to fulfill a service you’ve engaged us for or as required by law. 

Entities we may share data with include:

• Internal staff and associated businesses
• Hosting and website maintenance services (please refer to our Cookie Policy section)
• Upon your request, we may disclose information to other third parties and authorities in Malta

If we need to share personal data with entities outside the EU, we ensure compliance with GDPR and other applicable laws.

Data Security 

We prioritize the security of your personal data and have implemented various measures to prevent unauthorized access, alteration, or disclosure. Our security measures include:

• Secure servers
• Firewalls
• Encryption
• Physical access controls at data centers
• Information access controls
• Backup systems

We regularly review and enhance these security measures. In the event of a suspected personal data breach, we have procedures in place to notify you and relevant regulatory authorities as required by law. While we strive to safeguard your data, we cannot guarantee complete security due to the inherent risks of internet data transmission.

Your Rights

Access Right: 

You have the right to access all personal data held and processed by the Company. To exercise this right, please contact us via the email or postal address provided at the top of this page. To process your request, we will require proof of your identity. We aim to process requests promptly, within a maximum of sixty days from the date of your inquiry.

Rectification Right: 

You have the right to request the modification of any personal data held and processed by the Company. If you believe that we hold inaccurate or outdated details about you, please contact us using the email or postal address provided at the top of this page.

Erasure Right (‘Right to be Forgotten’): 

You have the right to request the deletion of personal data held and processed by the Company. To exercise this right, please contact us via the email or postal address provided at the top of this page. However, please note that this right is not absolute, and certain personal data may be retained if legally required or necessary for legal defence purposes.

Right to Object: 

You have the right to object to the processing of your personal data, particularly where such processing is based on the Company’s legitimate interests. You may also request to withdraw from all future activities and have your personal data removed from our records. To exercise this right, please contact us via the email or postal address provided at the top of this page.

Data Portability Right: 

You have the right to move, copy, or transfer your personal data from one organization to another. Additionally, you may request a copy of your personal data in a structured, commonly used, and machine-readable format. If you require assistance with this, please contact us via the email or postal address provided at the top of this page.

Right to Lodge a Complaint: 

For all Data Protection inquiries or complaints, please contact us at [email protected]. You also have the right to lodge a complaint with the Information and Data Protection Commissioner in Malta, who serves as the data protection supervisory authority.

Information and Data Protection Commissioner

Level 2, Airways House
High Street
Sliema SLM 1549
Malta
Tel: (+356) 2328 7100
Email: [email protected]

Accessing your personal data or exercising any of your rights does not typically incur a fee. However, we reserve the right to charge a reasonable fee if your request is unfounded, repetitive, or excessive. Alternatively, we may refuse to comply with your request under such circumstances.

Information Verification: 

To safeguard your personal data and ensure that it is not disclosed to unauthorized individuals, we may need to request specific information from you to confirm your identity and validate your right to access your personal data or exercise any of your other rights. This serves as a security measure to protect your data.

Response Timeframe: 

We endeavor to respond to all legitimate requests within one month. However, in cases where the request is particularly complex or multiple requests have been made, it may take longer. In such instances, we will notify you and keep you informed of the progress.

Data Retention: 

We will not retain your personal data for longer than necessary, considering the purposes for which it was initially collected. However, certain legal, regulatory, tax, or accounting requirements may necessitate the retention of some personal data for a specified period, as outlined in relevant laws. Generally, we will retain your personal data as long as you remain our client or until you request to cease communication, unless there is a valid reason for retention.

Third-Party Website Links: 

We may include links to third-party websites operated by entities beyond our control. Your activities on those sites will be governed by their respective privacy policies, practices, and laws. We advise reviewing the privacy practices of these third parties as we are not responsible for their practices.

Privacy Policy Updates: 

We reserve the right to update this Privacy Policy periodically, and any changes will replace the current policy. It is your responsibility to regularly access the ‘Privacy Policy’ page to stay informed about any updates implemented by us.

Applicable Law and Jurisdiction: 

This Policy is governed by Maltese Law, and any disputes arising from or related to this Policy are subject to the exclusive jurisdiction of the courts of Malta.

Cookie Usage: 

Our website uses cookies to enhance your browsing experience. These cookies, which are small files downloaded to your computer, gather information to improve site functionality. Adjusting your browser settings can prevent the storage of cookies, but this may affect certain site features. We recommend not disabling cookies for optimal site functionality.

Additional details regarding the specific cookies we utilize and their respective purposes are outlined below: 

Version 2024.04