Over 160 Years

Mon-Fri 9:00-16:30

01254 222 700


Privacy Notice

Your right to privacy is important to us. We take the security of your information seriously and have strict policies and processes in place to ensure it remains safe. This Privacy Notice describes the way we collect your information, how we use it and why.

The Red Rose Friendly Society will manage your data in line with the requirements of the General Data Protection Regulation (GDPR)

The Red Rose Friendly Society will act as the 'data controller' for your personal data if you apply for or hold a product or service with us. Under the Data Protection Act, the 'data controller' is responsible for ensuring that your information is lawfully and properly processed.

The information we hold about you

To enable us to provide you with products and services, we require certain details about you. We will ask you to provide most of this information yourself, however, we may also seek further data using external sources, such as credit reference agencies.

There may be occasions where you provide us with information about another person, for example, if you are applying for a joint account or if you are applying for an account on behalf of a child. In these cases, we will assume that you have permission to provide this information and that the other person understands how we will use their information and has no objection.

We will not be able to provide you with products or services if you do not supply us with the necessary information to do so, or if you do not give us your permission to process your information.

The type of personal information you might expect us to hold about you includes:

Your personal details, for example, your name, date of birth, address, telephone number, email address, National Insurance number and, in some instances, sensitive data such as information about your health or financial circumstances.

Information about the products you hold with us (or have previously held with us) and the transactions on those accounts.

Records of our contact with you, for example:

Notes on our systems, emails or other electronic communications and written correspondence. We may record and monitor telephone calls and record activity on our premises using CCTV, for security, for training purposes and to check and improve the quality of our service.

Cookies which track your activity on our website (see detail below)

What are cookies?

Cookies are small text files that contain data, and that are placed on your computer, Smartphone (or whatever device you choose to access the internet with), by the websites that you visit.
We use cookies when you visit our website for the following reasons:

  • To keep the website and the details you enter into it secure
  • To make our site as easy as possible for you to use
  • To help us understand how you use the site
  • To help us understand performance of campaigns

Depending on the products or services you apply for, or hold with us, we may also record
additional personal information such as details of a credit search.

How we use your information

We use your information to assess every application you make for a product or service, to
manage your products, develop our services and ensure that we comply with the legislation
that governs our activities. We will use your information specifically to:

  • Confirm your identity when you apply for a product or service
  • Assess your application for a product or service. Depending on the type of product you apply for, this may include assessing fraud risks.
  • Set up and provide the products you have requested and keep our records up to date
  • Meet our legal and regulatory obligations and for crime prevention/detection
  • Test computer systems to ensure the continuing security and integrity of our systems
  • Carry out customer surveys and statistical analysis to enable us to improve our products and services.
  • Keep you informed of other relevant products or services by sending you marketing
  • communications. We will ask your permission to do this when you apply for product or service with us and you can change your mind at any time.
  • To remove your details from any marketing activity, simply contact us by telephone, in writing or visit the Red Rose Assurance Office.

Who we share your information with

We will only share your information with other organisations for the reasons detailed
below. We will not provide your details to third party organisations for marketing purposes,
unless you have given us your permission.

Confirming your identity

All financial institutions are required by law, under Money Laundering legislation, to confirm
a customer's identity. We may, therefore, supply your information to a specialist external
agency to help us confirm your identity. We may occasionally need you to re-confirm your
identity, for example, if you apply for an additional product with us or change your name.
Fraud prevention and reporting

All financial institutions are required by law, under Money Laundering legislation, to report
any suspicious transactions to the National Crime Agency, the police and other law
enforcement agencies for crime detection and prevention purposes.

If false or inaccurate information is provided and fraud is identified, details will be passed to
fraud prevention agencies as well as law enforcement agencies who may access and use this
information. We and other organisations may also access and use this information to
prevent fraud and money laundering, for example, when checking details on application
forms and claims for all types of insurance.

Please contact us if you want to receive details of the relevant fraud prevention agencies.
We and other organisations may access and use, from other countries, the information
recorded by fraud prevention agencies.

Tax reporting

We are required to provide information about you and your savings accounts to HMRC for
tax reporting and to notify them of ISA, JISA and CTF records.

Our suppliers and third parties that provide services to you – for example our mailing, data
management and information technology suppliers.

Please note that from time to time, we may change the suppliers or third parties we use or
appoint to provide services. Where we appoint a supplier to provide a service on our behalf,
they must meet our stringent requirements regarding the security and privacy of our
customers' data.

Occasionally we, or our suppliers, may transfer data to countries outside of the European
Economic Area (EEA). These countries may not have the same standard of data protection
laws as we do here in the UK. In these circumstances, we will take the necessary steps to
ensure that the transfer of your data is in line with the UK data protection requirements,
and that your information is treated securely, and protected to a similar standard.
Organisations based outside of the EEA may be required to provide your information to
foreign authorities.

When the UK is no longer part of the EEA, references in this section to the “EEA” should be
taken to mean the EEA and the UK.

We may also share your information with:

  • The Financial Ombudsman Service, for example, if you have made a complaint
  • Our regulators (the Financial Conduct Authority)
  • Our Internal and External Auditors, Actuaries, Bookkeepers and Compliance
  • Consultants who help us to ensure that, in your interests, we abide by the rules of the Financial Conduct Authority, the Financial Services and Markets Act and any other regulations.
  • Another organisation, should we ever sell or transfer our business.

How to access or change the information we hold

You have the right to access the personal information we hold about you under the General
Data Protection Regulation (GDPR) this is called a Subject Access Request. Please make your
Subject Access Request to us in writing or contact us by telephone. No fee is payable for
reasonable data requests that are not excessive in nature.

If you have any questions about the way in which we collect or process your information,
please contact us. Similarly, if the information we hold about you is incorrect or out of date,
please let us know and we will investigate further to correct any inaccuracies. You can also
find out more about your rights under the General Data Protection Regulation by visiting the
Information Commissioner's Office website at ICO.org.uk or by writing to: Information
Commissioner's Office, Wycliffe House, Water Lane, Wilmslow SK9 5AF.

Changes to our Privacy Notice

This notice is effective from 18 May 2018. We will change our Privacy Notice from time to
time to keep it up to date.