GDPR Compliance

How we protect your data rights under UK GDPR

Our Commitment to Data Protection

robust-klasse is committed to protecting your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Data Controller

robust-klasse acts as the data controller for personal information collected through our website and services.

Contact details:
robust-klasse
42 Merchant Street
Bristol BS1 3EE
United Kingdom
Email: [email protected]

Lawful Basis for Processing

We process your personal data only when we have a lawful basis:

Performance of a Contract

When you engage our services, we process your data to fulfill our contractual obligations to provide pension advisory services.

Legitimate Interests

We process data for legitimate business interests including:

  • Improving our services and website functionality
  • Preventing fraud and ensuring security
  • Operating our business efficiently

We balance these interests against your rights and freedoms.

Legal Obligation

We process data to comply with UK financial services regulations, tax laws, and other legal requirements.

Consent

Where required, we obtain your explicit consent before processing certain types of data. You can withdraw consent at any time.

Your Data Rights

Under UK GDPR, you have comprehensive rights regarding your personal data:

Right of Access

You can request a copy of the personal data we hold about you. We'll provide this within one month of your request.

Right to Rectification

If your personal data is inaccurate or incomplete, you can request that we correct or complete it.

Right to Erasure

You can request deletion of your personal data in certain circumstances. Note that we may need to retain some data to comply with legal obligations (e.g., financial services regulations require us to keep advice records for 6 years).

Right to Restrict Processing

You can request that we limit how we use your data in certain situations.

Right to Data Portability

You can request your data in a structured, machine-readable format to transfer to another service provider.

Right to Object

You can object to processing based on legitimate interests or for direct marketing purposes.

Rights Related to Automated Decision-Making

We do not use automated decision-making or profiling that produces legal effects or similarly significant effects on you.

How to Exercise Your Rights

To exercise any of your GDPR rights, email us at [email protected] with:

  • Your full name and contact details
  • Description of the right you wish to exercise
  • Any relevant details or documentation

We'll respond within one month. In complex cases, we may extend this by two additional months and will explain why.

Data Security Measures

We implement appropriate technical and organizational measures including:

  • Encryption of data in transit and at rest
  • Regular security audits and penetration testing
  • Staff training on data protection
  • Access controls and authentication requirements
  • Secure backup and disaster recovery procedures

Data Breach Notification

In the event of a data breach likely to result in high risk to your rights and freedoms, we will notify you without undue delay. We will also notify the Information Commissioner's Office (ICO) within 72 hours of becoming aware of the breach.

International Data Transfers

We primarily process data within the United Kingdom. If we transfer data outside the UK, we ensure appropriate safeguards are in place, such as:

  • Adequacy decisions by the UK government
  • Standard contractual clauses
  • Binding corporate rules

Children's Privacy

Our services are not directed at individuals under 18. We do not knowingly collect data from children.

Data Protection Officer

For data protection inquiries, contact our designated privacy officer at [email protected]

Complaints

If you believe we've mishandled your data, you have the right to lodge a complaint with the supervisory authority:

Information Commissioner's Office (ICO)
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF
Tel: 0303 123 1113
Website: robust-klasse.com

Updates to This Policy

We may update this GDPR information to reflect changes in law or our practices. Material changes will be communicated to active clients.