UK GDPR statement.

This page outlines serenely-echo's approach to protecting personal data in line with UK GDPR requirements. We treat client data with confidentiality and respect.

Data controller

serenely-echo is the data controller for the information we collect.

Our GDPR commitments.

Data minimisation

We only collect data necessary for pension planning and regulatory compliance.

Purpose limitation

Information is used only for the purposes we explain to clients.

Security controls

We apply strict access controls and secure storage for sensitive data.

Your GDPR rights.

Right to access

You can ask for a copy of the personal data we hold about you.

Right to rectification

You can request corrections if your information is inaccurate.

Right to portability

You can request a portable copy of your data for another adviser.

Right to lodge a complaint

You can raise concerns with the UK Information Commissioner's Office.

Data sharing and processors.

We may share data with regulated partners such as pension providers, legal advisers, and secure document platforms. Each partner is vetted for GDPR compliance, and data sharing agreements are in place.

Retention and deletion.

We retain data only as long as required to deliver our services and comply with regulatory obligations. When retention periods end, data is securely destroyed.