Standard Life is committed to protecting your personal information.
Standard Life Assurance Limited ("Standard Life"), is part of Standard Life Aberdeen plc, one of the world's largest investment companies.
Standard Life Savings Limited and its subsidiaries, (including Elevate Portfolio Services Limited; Standard Life Client Management Limited; Standard Life Pension Funds Limited; Standard Life Trustee Company Limited; Standard Life Lifetime Mortgages Limited and The Standard Life Assurance Company 2006).
FAO Data Protection Officer
Standard Life Assurance Limited,
30 Lothian Road,
Information about you that we collect and use includes:
We may collect your personal information directly from you, from a variety of sources, including:
If you have a financial adviser and / or are a member of your employer's pension scheme, the information we collect and use will most likely have been provided by them on your behalf.
We may also collect personal information on you from places such as business directories and other commercially or publicly available sources e.g. to check or improve the information we hold (like your address) or to give better contact information if we are unable to contact you directly.
We take your privacy seriously and we will only ever collect and use information which is personal to you where it is necessary, fair and lawful to do so. We will collect and use your information only if we are able to satisfy one of the lawful processing conditions set out in the data protection laws.
This will be the case where:
Where the processing is in our legitimate interests or those of a third party, we will always conduct an assessment to ensure that this use of your personal information is not excessive or unnecessary or otherwise more intrusive than it needs to be.
We sometimes use systems to make automated decisions based on personal information we have - or are allowed to collect and use from others – about you. These automated decisions can affect the products, services or features we offer you now or in the future. We use automated decisions in the following ways:
If you do not wish us to collect and use your personal information in these ways, it may mean that we will be unable to provide you with our products or services.
We may share your information with third parties for the reasons outlined in 'Why we collect and use your information.'
We may share your information with:
Whenever we share your personal information, we will do so in line with our obligations to keep your information safe and secure.
The majority of your information is processed in the UK and European Economic Area (EEA).
However, some of your information may be processed by us or the third parties we work with outside of the EEA, including countries such as the United States and India.
Where your information is being processed outside of the EEA, we take additional steps to ensure that your information is protected to at least an equivalent level as would be applied by UK / EEA data privacy laws e.g. we will put in place legal agreements with our third party suppliers and do regular checks to ensure they meet these obligations.
We take information and system security very seriously and we strive to comply with our obligations at all times. Any personal information which is collected, recorded or used in any way, whether on paper, online or any other media, will have appropriate safeguards applied in line with our data protection obligations.
An example of this is that Internal and external audit and specialist third party consultants conduct regular, independent assurance and benchmarking exercises across our business to ascertain the effectiveness of our security control environment and our security strategy.
Your information is protected by controls designed to minimise loss or damage through accident, negligence or deliberate actions. Our employees also protect sensitive or confidential information when storing or transmitting information electronically and must undertake annual training on this.
Our security controls are aligned to industry standards and good practice; providing a control environment that effectively manages risks to the confidentiality, integrity and availability of your information.
To provide your product and meet our legal and regulatory obligations, we keep your personal information and copies of records we create (e.g. calls with us) while you are a customer of ours.
Even when you no longer have a relationship with us, we are required to keep information for different legal and regulatory reasons. The length of time will vary and we regularly review our retention periods to make sure they comply with all laws and regulations.
You have a number of rights under Data protection laws which may be exercised in certain circumstances. These are:
More information can be found on your rights here https://ico.org.uk/for-the-public/
If you want to talk to us about any of the individual rights, please use the contact information here
While we hope that we can resolve any complaints for you, you do have the option to complain to the ICO (whether or not you have exhausted our complaints procedure). Their contact details are as follows:
Postal address: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
Telephone: 0303 123 1113 (local rate) or 01625 545 745 if you prefer to use a national rate number