2020FP Web 1920X1080 Colourandshapes 02

Privacy Statement

At 20:20 Financial Planning, we are committed to protecting and respecting your privacy. This Privacy Statement explains how we collect, use, and safeguard your personal information in compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Who We Are

20:20 Financial Planning is a financial advisory firm providing investment, retirement, and wealth management services. We are an appointed representative of The Openwork Partnership, which is authorised and regulated by the Financial Conduct Authority (FCA).

What Information We Collect

We may collect and process the following personal information:

  • Personal details (e.g. name, date of birth, address, contact details)
  • Financial information (e.g. income, assets, investments, pensions)
  • Employment details (e.g. job title, employer)
  • Identification documents (e.g. passport, driving licence)
  • Communication records (e.g. emails, meeting notes)

How We Use Your Information

We use your personal data to:

  • Provide financial advice and services
  • Meet regulatory and legal obligations
  • Communicate with you regarding your financial plan
  • Improve our services and customer experience
  • Prevent fraud and financial crime

Legal Basis for Processing

We process your data under the following legal bases:

  • Performance of a contract – To deliver financial planning services
  • Legal obligation – To comply with financial regulations
  • Legitimate interests – To improve services and manage risks
  • Consent – When you explicitly agree to marketing communications

Who We Share Your Data With

We may share your data with:

  • The Openwork Partnership and its affiliated firms
  • Regulatory bodies such as the FCA and HMRC
  • Product providers and investment platforms
  • Professional service providers (e.g. accountants, solicitors)
  • Credit reference and fraud prevention agencies

We do not sell or share your data for marketing purposes.

How We Protect Your Data

We take appropriate technical and organisational measures to ensure the security of your personal data, including:

  • Secure data encryption and access controls
  • Regular cybersecurity audits
  • Staff training on data protection and privacy

Data Retention

We retain your personal data only as long as necessary to fulfil our obligations. This may vary depending on legal, regulatory, or business needs.

Your Rights

You have the right to:

  • Access your personal data
  • Correct any inaccuracies
  • Request erasure of your data (where applicable)
  • Restrict processing under certain conditions
  • Object to data processing
  • Request data portability (where applicable)

To exercise your rights, please contact us using the details below.