Privacy Policy
Last Updated 25 February 2026
1. Introduction
This Privacy Policy explains how we collect, use, disclose, and protect your personal data when you visit our website or engage with our services. We are committed to safeguarding your privacy and ensuring that your personal information is handled in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and all applicable financial‑services regulatory requirements. We encourage you to read this policy carefully. By using our website, you agree to the practices described here.
2. Who We Are
We are a UK‑based financial services consultancy firm providing regulatory, compliance, and advisory services to firms operating within the UK financial sector.
Data Controller
TTC Compliance & Training Ltd
47-49 The Square, Kelso, Roxburghshire, United Kingdom, TD5 7HW
Company number SC555395
+44 7840 484 091
ICO Registration No: ZA273324
3. What Personal Data We Collect
We may collect and process the following categories of personal data:
Information you provide directly
- Name, job title, and contact details
- Email correspondence and enquiry details
- Information submitted through contact forms
- Documents you upload or send to us
- Preferences and communication settings
Information collected automatically
- IP address and device information
- Browser type and version
- Website usage data (pages visited, time on site, navigation paths)
- Cookies and similar tracking technologies (see Section 10)
Information from third parties
- Publicly available business information
- Data provided by partners or referrers
- Compliance‑related information where required for due diligence
4. How We Use Your Personal Data
We process your personal data for the following purposes:
- Responding to enquiries and providing consultancy services
- Managing client relationships and service delivery
- Meeting regulatory, legal, and compliance obligations
- Improving our website, services, and user experience
- Sending updates, insights, or marketing communications (only with your consent)
- Maintaining internal records, audit trails, and risk management processes
We always ensure that our processing is lawful, fair, and transparent.
5. Legal Bases for Processing
We rely on one or more of the following legal bases:
- Contractual necessity – to provide services you have requested
- Legitimate interests – such as improving our services, ensuring network security, or managing business operations
- Legal obligations – including regulatory compliance under FCA rules
- Consent – for marketing communications or optional cookies
6. Sharing Your Personal Data
We may share your data with:
- Professional advisers (legal, compliance, audit)
- IT service providers and website hosting partners
- Regulatory bodies (e.g., FCA, ICO) where required
- Third‑party consultants engaged to support service delivery
We do not sell your personal data. All third parties are required to maintain appropriate security and confidentiality standards.
7. International Transfers
If we transfer your data outside the UK, we ensure appropriate safeguards are in place, such as:
- UK adequacy regulations
- Standard Contractual Clauses (SCCs)
- Additional technical and organisational protections
8. Data Retention
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including:
- Regulatory retention periods
- Contractual obligations
- Audit and compliance requirements
After this period, data is securely deleted or anonymised.
9.Under UK GDPR Rights
You have the right to:
- Access your personal data
- Request correction of inaccurate information
- Request deletion (where applicable)
- Restrict or object to processing
- Request data portability
- Withdraw consent at any time
- Lodge a complaint with the Information Commissioner’s Office (ICO)
To exercise your rights, contact us at:
10. Cookies and Tracking Technologies
Our website uses cookies to:
- Improve functionality and performance
- Analyse website traffic
- Personalise your experience
You can manage or disable cookies through your browser settings.
For more detail, please see our **Cookie Policy**.
11. Security Measures
We implement appropriate technical and organisational measures to protect your data, including:
- Encryption and secure servers
- Access controls and authentication
- Regular security reviews
- Staff training on data protection and confidentiality
However, no online transmission is completely secure, and we cannot guarantee absolute security.
12. Links to External Websites
Our website may contain links to third‑party sites. We are not responsible for their privacy practices, and we encourage you to review their policies.
13. Changes to This Policy
We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated “Last Updated” date.
Contact Us
If you have questions about this Privacy Policy or how we handle your data, please contact:
TTC Compliance & Training Ltd
Spalefield Lodge, Anstruther, KY10 3LB
+44 7840 484 091
