Privacy Policy

 

 

DATA PROTECTION: FAIR PROCESSING NOTICE

IN-SYNC Credit Services Ltd takes the protection and privacy of personal data seriously. This Fair Processing Notice explains how we use, protect and store personal data before, during and after being a customer of IN-SYNC Credit Services.

Our contact details

4 The Millennium Centre,
Crosby Way,
Farnham,
Surrey, GU9 7XX

Telephone number: 01252 70 22 70

Our Data Protection Officer is Kristy Gouldsmith and she can be emailed at dpo@IN-SYNCgroup.com.

What personal data do we collect about you, how do we use that personal data, and what is our legal basis?

We need a legal basis in order to process your personal data. Any data we process is because we either have a contract with you (or you wish to obtain a contract with us), we have a legal obligation to do so, or because it is a legitimate activity. On occasion, we will seek your consent to process your personal data, but you are free to refuse.

When you are a client or wish to become a client of IN-SYNC Credit Services, we collect and process your personal data:

We process your personal data because we have a contract with you, you would like to enter into a contract with us or it is a legitimate business activity.

We collect your name, address, date of birth, NI number, home phone, mobile, email address, your financial data and your employment details in order to provide you with the agreed service and to contact you. Our legal basis to do so is because we have a contract with you or you would like to enter into a contract with us.

Once you become a client of IN-SYNC Credit Services, we will assign you a client unique identifier number as this is a legitimate activity in order to avoid any system errors or mistakes in making payments.

We process your pay data to work out how much credit we can provide to you and also whether you can afford to repay the credit.

We will send you consumer credit and cash advance updates and useful information as part of our contractual service with you.

As we are part of a group of companies (IN-SYNC Group), we will share your data with our other companies for administrative and reporting purposes only. This is legitimate activity for us.

 

We process your personal data because we have a legal obligation to do so.

In order to comply with our legal obligations to prevent money laundering, fraud and terrorist financing, we will process some of the following data:

 

In order to process your application for credit or a loan, we will perform credit, identity and affordability checks on you with one or more credit reference agencies (“CRAs”). These checks are regulatory requirements.

 

Where you take banking services from us we may also make periodic searches at CRAs to manage your account with us.

 

To do this, we will supply your personal information to CRAs and they will give us information about you. This will include information from your credit application and about your financial situation and financial history. CRAs will supply to us both public (including the electoral register) and shared credit, financial situation and financial history information and fraud prevention information.

 

We will use this information to:

 

We will continue to exchange information about you with CRAs while you have a relationship with us. We will also inform the CRAs about your settled accounts. If you borrow and do not repay in full and on time, CRAs will record the outstanding debt. This information may be supplied to other organisations by CRAs.

When CRAs receive a search from us they will place a search footprint on your credit file that may be seen by other lenders.

If you are making a joint application, or tell us that you have a spouse or financial associate, we will link your records together, so you should make sure you discuss this with them, and share with them this information, before lodging the application. CRAs will also link your records together and these links will remain on your and their files until such time as you or your partner successfully files for a disassociation with the CRAs to break that link.

 

In-Sync Credit Services uses Callcredit as our CRA.  Callcredit’s role is also as a fraud prevention agency, the data they hold, the ways in which they use and share personal information, data retention periods and your data protection rights with Callcredit are explained in more detail at www.callcredit.co.uk/crain.

Automated Decision Making

The credit application process is automated and will result in you either being accepted, declined or referred to us where more information is required.  The automated process will do a credit check, an affordability check and an identification check.

If you are successful, you will able to sign your loan documents.

If you are declined and want to speak to us about the decision, please contact using the details at the start of this notice.

If you are referred for more information, we will contact you via email.

 

We process your personal data with your consent and where it is a legitimate business activity.

We will send you information pertaining to IN-SYNC Credit Services because you are a client of ours as this is a legitimate business activity. We will also send you this information for one year after you have left IN-SYNC Credit Services as you may wish to come back to us and this is a legitimate activity.

We will send you marketing information and newsletters from other companies in the IN-SYNC Group only when you consent for us to do so.

We will ask for feedback on our products or services in order to monitor and improve our service delivery, and this is a legitimate activity for us. You can complete these questionnaires if you wish to, however you are not obliged to do so. These questionnaires are not anonymous.

You have the right to unsubscribe to marketing at any time. If you do choose to unsubscribe, we will keep your name and email address on a suppression list so that we don’t email you again by accident and this is a legitimate activity for us.

If you are on our suppression list, you will still receive communications that are necessary to the performance of your chosen services, or notifications to avoid you missing deadlines and/or incurring penalties.

 

How long do we hold your personal data?

We will hold your personal data that was collected for anti-money laundering purposes for five years from when you ceased a relationship with IN-SYNC Credit Services Ltd, after which it will be destroyed. This is in accordance with Anti-Money Laundering Regulations.

We will hold the personal data that was collected for the purposes of providing you with financial services while you are a customer and for seven years, after which it will be destroyed. This is in accordance with HMRC requirements.

If your credit application was declined, we will hold your data for two years, after which it will be destroyed. We hold it for two years in case it is required for by law enforcement agencies or for legal reasons.

We will hold your name, email and phone number to send you marketing information as long as you would like us to do so.  If you withdraw your consent, we will hold this data for five years in a suppression list so that we don’t market to you against your wishes.

 

Who do we share your personal data with?

Depending on your chosen services or our requirements, we may share your personal data with the following recipients:

 

Do we transfer your personal data outside of the EU or EEA?

Your data is kept in the EU or EEA except for data that is processed by SmartSheet Inc, a technology application used by us to create administrative spreadsheets.

 

SmartSheet Inc is located in the USA, which is non-adequate country for data transfer as determined by the European Commission. Your data is protected by SmartSheet Inc as they participate in and have certified their compliance with the EU-U.S. and US-Swiss Privacy Shield Frameworks and Principles (collectively, the “Privacy Shield Principles”). Smartsheet will comply with the Privacy Shield Principles with respect to the personal data that it receives in the United States from the European Economic Area and Switzerland. You can review the Privacy Shield Principles, learn more about Privacy Shield, and view SmartSheet Inc’s Privacy Shield certification at https://www.privacyshield.gov/.  Smartsheet’s commitments under the Privacy Shield are subject to the investigatory and enforcement powers of the United States Federal Trade Commission.

Your Rights

You have a number of rights in respect of our processing of your personal data which are:

If you want to exercise any of these rights, please contact us on 01252 70 40 30 or email our Data Protection Officer on dpo@IN-SYNCgroup.com.

You also have the right to lodge a complaint about our processing with the UK's Information Commissioner's Office.

 

Cookie Settings 

 

You are not required to provide us with viewing access to your bank account transaction information (Transaction History) or internet banking access details. You may still be allowed to apply for a loan with us if you do not provide us with this information. However, if you do it will help us make an informed decision about whether we can lend to you. If you agree that we may access your Transaction History the following provisions shall apply.

Provide Accurate Information. You, agree to provide true, accurate, current and complete information about yourself and your bank accounts (with us or third parties) and you agree to not misrepresent your identity or your account information. You agree to keep your bank account information up-to-date, accurate and complete.

Purposes. We will access your Transaction History using the services of a credit reference agency called Perfect Data Solutions Limited (PDS). We will use your Transaction History to assess your creditworthiness and whether the loan you seek is affordable. Neither we nor PDS will store or have access to your internet banking credentials, PIN codes or passwords. That information is encrypted in transit and stored by a third party service provider upon their servers in a secure environment outside the EEA.

Third Party Accounts. By agreeing to allow us viewing access to your Transaction History, you authorise PDS and PDS's service providers to access third party sites designated by you, on your behalf, to retrieve information requested by us, and to register to view bank statements over a period of up to 90 days. You agree that PDS and PDS's service providers may, and are instructed by you as your agent and nominated representative, with full power of substitution and resubstitution, for you and in your name, place and stead, in any and all capacities, to access third party internet sites, servers or documents, retrieve information, and use your information, all as described above, with the full power and authority to do and perform each and every act and thing requisite and necessary to be done in connection with such activities, as fully to all intents and purposes as you might or could do in person. This will include the following purposes: copying Transaction History over a 90 day period and storing the copied Transaction History on our servers.

You agree that the Transaction History shall also be used by PDS for credit reference agency purposes and may be taken into account when producing your individual credit score which may be shared with other organisations as part of your credit record.

You acknowledge and agree that when we, PDS or PDS's service providers access and retrieve information and Transaction History from third party sites, this is undertaken as your agent, and not the agent on behalf of any third party (including the bank account provider). You should be aware that third party account providers shall be entitled to rely on this authorisation and agency granted by you. You should also be aware that this service is not endorsed or sponsored by any third party bank account providers. We would recommend that you refer to the terms and conditions of your internet banking provider if you would like more information.

You understand that allowing us to review your Transaction History is at your sole risk. We are only able to review your Transaction History on an "as is" and "as available basis" as it is made available to us by service providers. It may not be available to us from time to time.

We cannot guarantee that allowing us to review your Transaction History will guarantee the success of your loan application or the rate at which the loan is available.

Cookies

We receive and store certain types of information whenever you interact with our Website. For example, like many websites, we use "cookies" to obtain certain types of information when your Web browser accesses our Website and when you login, such as: your name and your email address. Cookies are pieces of information that are transferred to your computer's hard drive via your Web browser. They allow us to provide you with a more convenient and personalised experience by recording information about your preferences.

A web browser is usually set to accept cookies automatically but can be changed to decline them. The Help section of the toolbar on most browsers will tell you how to prevent your browser from accepting new cookies, how to have the browser notify you when you receive a new cookie or how to disable cookies altogether. In most cases, a visitor may refuse a cookie and still fully navigate our Website.

We do not store passwords or any other information about a visitor in a cookie that could identify them, their location, their preferences or their financial activity.

We use aggregated customer information to help us understand how our website is performing commercially and what we can do to improve performance. We may provide this information to other companies, such as third party advertisers. This information does NOT include any personal details that can be used to identify individuals.

If you do not want to receive cookies from us, please follow the procedures below. These procedures do not apply to cookies sent by our business partners.

Cookies used by IN-SYNC Credit Services Ltd

IN-SYNC Credit Services Ltd use the following cookies:
• Session ID - Enables us to maintain the consistency of your browsing session as you move across pages on the IN-SYNC Credit Services Ltd site, including during the website loan application process.
• User ID - Allows you to access the personal information regarding your account.
• Web site Analytics - This website uses Google Analytics to collect information about user’s visits to the sub-me.com web site including the number, source and the pages they have visited. We use the information to compile reports, which help us to understand user behaviour on our site and how we might be able to improve our service.

How to find and control your cookies

For Internet Explorer 6.0 or 7.0:
1. Choose Tools, then:
2. Internet Options
3. Click the Privacy tab
4. Click on the 'Advanced' button
5. Check the 'Override automatic cookie handing' box and select Accept, Block or Prompt for action as appropriate

If you're using Mozilla Firefox:
1. Choose Tools, then:
2. Options
3. Privacy
4. Cookies
5. Set your options as required.

If you're using Opera 8+:
1. Choose Tools, then
2. Preferences
3. Advanced
4. Select Cookies
5. Select your settings using the available options.


If you're using Safari:
1. Choose Safari, then
2. Preferences
3. Security
4. Select options by Accept Cookies as required.

If you're using Google Chrome:
1. Choose Chrome, then
2. Preferences
3. Under the Hood
4. Content Settings
5. Set your options within the Cookies section.

How do you know which of the sites you've visited use cookies? If you're using Internet Explorer:
1. Choose Tools, then
2. Internet Options
3. Click the General tab
4. Click Settings
5. View Files

If you're using Mozilla Firefox:
1. Choose Tools, then
2. Options
3. Privacy
4. Cookies
5. Click the Show Cookies button

If you're using Opera 8+:
1. Choose Tools, then
2. Advanced
3. Click Cookies

If you're using Safari:
1. Choose Safari, then
2. Preferences
3. Security
4. Click Show Cookies button

How to see your cookie code

Just click on a cookie to open it. You'll see a short string of text and numbers. The numbers are your identification card, which can only be seen by the server that gave you the cookie.

How we protect the security of your personal data

We maintain reasonable measures to protect the security and confidentiality of your Personal Data, and strive to keep it accurate, and only for as long as is necessary. Some of the specific security measures we maintain include:
• We store Personal Data in a restricted access format.
• We transmit Personal Data in an encrypted format.
• Our networks are secured with certified firewalls.
• Our network-related equipment (e.g., firewalls, routers, switches, etc.) are secured with a password, and access is limited to authorised network engineers.
• We restrict the access of customer service support staff so that certain Personal Data cannot be viewed (e.g. full bank account Personal Data is not revealed, but only a partial number of digits to allow verification).
• It is important for you to protect against unauthorised access to your User ID and to your computer. Be sure to sign off when finished using a shared computer.

How long we keep your information

We will keep the information that is necessary to enable us to provide you with a service that you have requested through this website for as long as it takes us to provide that service.

If you have asked that we do not use your details for marketing purposes, we may still need to keep them to ensure our systems reflect your preferences.

We will generally keep records of any transactions you enter into on this website for a minimum of six years from the end of the relationship.

We will keep other information about you if it is necessary for us to do so to comply with the law, or where appropriate for legitimate business needs.

You may access your personal data about your accounts

We believe that you should have the ability to review and update your account Personal Data. We give you access to Personal Data about your account and your interactions with us for the purpose of viewing Personal Data. This is accessed by you at your password-protected access portal at www.insync-creditservices.com

For information about your rights to access other Personal Data that we hold, please contact using details under the “Marketing and opt-out rights” section of this web page.

Children

We do not seek or knowingly collect any Personal Data about children under 18 years of age.

How to find out more

This is a condensed version and if you would like to read the full details of how your data may be used please email us at ics.info@in-syncgroup.com

Conditions of Use and Revisions

If you choose to visit our Website, your visit and any dispute over privacy is subject to this Privacy Policy.

If you have any concern about privacy or have any questions or comments, please send them to:

IN-SYNC Credit Services Ltd
Ash House
Tanshire Park
Shackleford Road
Elstead
Surrey
GU8 6LS

We reserve the right to change this Privacy Policy at any time by notifying you of the existence and location of the new or revised privacy policy or by posting the changes online at our Website.

Privacy Policy last amended January 2017.