Privacy Policy

Last updated: April 14, 2026

Introduction

Savage Bloom Financial Management ("we", "our", or "us") is committed to protecting your privacy and handling your personal information with care and respect. This privacy policy explains how we collect, use, store, and protect information about you when you use our website or services.

We are registered in the United Kingdom and comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Information We Collect

We collect different types of information depending on how you interact with us:

Information You Provide Directly

When you contact us or become a client, you may provide:

  • Contact details including name, email address, postal address
  • Financial information relevant to the services you request
  • Employment and income information
  • Tax-related documents and records
  • Business financial information if you are a business client
  • Any other information you choose to share with us

Information We Collect Automatically

When you visit our website, we may automatically collect:

  • Technical information including IP address, browser type, and operating system
  • Information about your visit including pages viewed and time spent on pages
  • Referral source that directed you to our website

Cookies and Similar Technologies

We use cookies and similar tracking technologies to improve your browsing experience and analyze website usage. You can control cookie preferences through the settings on our website. For detailed information, please see our Cookies Policy.

How We Use Your Information

We use the information we collect for the following purposes:

  • Providing financial management services and advice you have requested
  • Communicating with you about your account or services
  • Analyzing and improving our services and website functionality
  • Complying with legal and regulatory requirements
  • Preventing fraud and maintaining security
  • Responding to your inquiries and requests
  • Sending you information about our services if you have consented to receive such communications

Legal Basis for Processing

Under UK GDPR, we must have a lawful basis for processing your personal data. We rely on the following legal bases:

  • Contract Performance: Processing necessary to fulfill our obligations under our service agreement with you
  • Consent: Where you have given explicit permission for specific processing activities
  • Legal Obligation: Processing required to comply with laws and regulations
  • Legitimate Interests: Processing necessary for our legitimate business interests, provided your rights are not overridden

How We Share Your Information

We do not sell your personal information to third parties. We may share your information with:

  • Professional advisors including accountants, solicitors, and auditors when necessary for our services
  • Regulatory bodies and authorities when required by law
  • Service providers who assist us in delivering our services, subject to strict confidentiality agreements
  • Other parties with your explicit consent

When we share information with third parties, we ensure appropriate safeguards are in place to protect your data.

Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Secure storage systems with restricted access
  • Encryption of sensitive data
  • Regular security assessments and updates
  • Staff training on data protection responsibilities
  • Confidentiality agreements with all team members

While we take security seriously, no method of transmission over the internet is completely secure. We cannot guarantee absolute security of information transmitted to or from our website.

Data Retention

We retain your personal information only as long as necessary for the purposes outlined in this policy or as required by law. Financial services regulations typically require us to maintain client records for a minimum period after our relationship ends.

When information is no longer needed, we securely delete or anonymize it in accordance with our data retention policy.

Your Rights

Under UK GDPR, you have several rights regarding your personal information:

  • Right of Access: Request a copy of the personal information we hold about you
  • Right to Rectification: Request correction of inaccurate or incomplete information
  • Right to Erasure: Request deletion of your personal information in certain circumstances
  • Right to Restrict Processing: Request that we limit how we use your information
  • Right to Data Portability: Receive your data in a structured, commonly used format
  • Right to Object: Object to certain types of processing, including direct marketing
  • Rights Related to Automated Decision Making: Not be subject to decisions based solely on automated processing

To exercise any of these rights, please contact us using the details provided below. We will respond to your request within one month.

Marketing Communications

We will only send you marketing communications if you have provided consent or where we have a legitimate interest to do so. You can opt out of marketing communications at any time by contacting us or using the unsubscribe link in our emails.

Third-Party Websites

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review the privacy policies of any websites you visit.

Changes to This Policy

We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any significant changes by posting the updated policy on our website with a new effective date.

Contact Us

If you have questions about this privacy policy or how we handle your personal information, please contact us:

Savage Bloom Financial Management
15 Cathedral Road
Cardiff CF11 9HA
United Kingdom
Email: [email protected]

Complaints

If you believe we have not handled your personal information properly, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's supervisory authority for data protection matters.

Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF
Website: www.ico.org.uk