Privacy Notice

About this Notice

Welcome to our Privacy Notice. C. Hoare & Co. is committed to protecting your personal information when you use our services. This notice also applies in respect of any information you provide to Messrs. Hoare Trustees, which is a wholly owned subsidiary of C. Hoare & Co. This notice explains how we collect, retain and process your personal information

Your rights regarding processing of your personal information

Under certain circumstances, by law you have the right to:
objectto processing of your personal information
request accessto the personal information we hold about you
request correctionof the personal information that we hold about you
request erasureof your personal information
request the restriction of processingof your personal information
request the transferof your personal information to another party in a commonly used form.

For more information on your rights, click here
To exercise one of these rights, please contact us

Contacting us

For the purposes of data protection legislation, C. Hoare & Co. is a "controller" meaning that we determine the purpose and means of processing the information we collect from you. C. Hoare & Co. is also a "controller" in respect of any information you provide to Messrs. Hoare Trustees, which is a wholly owned subsidiary of C. Hoare & Co. If you ever have any questions, comments or complaints about this notice, please contact us via any of the following means and we will be pleased to assist you:

• By post: The Data Protection Officer, 37 Fleet Street, London EC4P 4DQ
• By email: DPO@hoaresbank.co.uk
• By telephone: +44 (0)20 7353 4522

Expand All

Information that we collect

This section details the types of information we collect from you and how we use information about you:

• identity data including your name, marital status, title, nationality and date of birth
• identification data including passport details, driving licence, or other identification documents
• contact data including postal addresses, email address and telephone numbers
• profile data such as the products and services you use and your interests and preferences
• details of your financial position and history including source of wealth, directorships and affiliations
• details in respect to your assets and liabilities to assess creditworthiness and affordability
• details of transactions you carry out using our products or services
• information that you may provide to us about your family and other relationships relevant to the banking products and services we provide, for example in respect to will drafting, affordability, lending, special instructions or inheritance tax. We will assume that you have the authority to share this information with us and will treat it with the upmost confidence
• if you contact us by any means we will keep a record of that correspondence and the information that you provide to us in that correspondence
• if you speak to us on the telephone, the call will be recorded and copy of the call will be retained
• if you visit our premises, your image may be recorded by our CCTV system
• if you opt into our voice identification service, a copy of your voiceprint and biometric information concerning physical and behavioural characteristics will be stored by the system and used to identify you in future calls
• information that you provide when completing surveys that will be used for research purposes, although you do not have to take part in our surveys
• information that you provide to us from time to time including through our Online Banking service, or when you register, subscribe to, request, or use any of our products or services, or when you submit queries to us
• information that you provide when you fill in our forms online or visit our website
• details of your visits to any of our websites please see our Cookiespage for details.

The C. Hoare & Co. tax team may also collect:

• information regarding your tax residency and domicile status
• information required to establish your tax position if engaged to provide tax services.

In addition to the above, Messrs. Hoare Trustees may also collect:

• information that you provide to us regarding details of settlors, trustees, beneficiaries, testators, donors and legatees
• information you have provided to C. Hoare & Co. where you have requested our services.

How we use your information

We use information supplied by you:

• to confirm your identity and to allow us to carry out checks in the interest of security, to detect and to prevent fraud and to assess credit risk

We will search at credit reference and fraud prevention agencies for information on all applicants for certain products and services. In so doing we will provide the current and previous names, addresses and dates of birth, of all applicants, so if you are providing information about others, on a joint application, you must inform them of the information contained in this notice and be sure that you have their agreement to disclose to us their details.
If you give us false or inaccurate information and we identify fraud, details may be passed to credit reference and fraud prevention agencies.

We will use the information provided to us by credit reference and fraud prevention agencies to help make credit or credit related decisions about all applicants, to verify their identity, for the prevention and detection of fraud and/or money laundering, and to manage accounts.

When credit reference agencies receive a search from us they will place a search "footprint" on your credit file (and that of any joint applicant) whether or not an application to us is approved and proceeds.
If the search was for a credit application the record of that search (but not the name of the organisation that carried it out) may be seen by other organisations when you apply for credit in the future.
If you are making a joint application now or have ever done the following:
a) applied for credit with someone else
b) have joint account(s)
c) are already financially linked

Credit reference agencies may link together the records of people that are part of a financial unit. They may do this when people are known to be linked, such as being married, or have jointly applied for credit, or have joint accounts. They may also link people together if they, themselves, state that they are financially linked.

we will check your financial associates’records as well.

A financial associate will be someone with whom you have a personal relationship that creates a joint financial unit in a similar way to a married couple. You will have been living at the same address at the time. It is not intended to include temporary arrangements such as students, or rented flat sharers, or business relationships.

Links between financial associates will remain on your and their records until such time as you or the financial associate successfully files for a disassociation with the credit reference agencies. Credit reference agencies will supply to us, public information such as County Court Judgments (CCJs) and bankruptcies, electoral register information and fraud prevention information on applicants’ and their known financial associates’ current and previous names, addresses and dates of birth.
The information that we, and other organisations, provide to the credit reference agencies about you, your financial associates and your business (if you have one) may be supplied by credit reference agencies to other organisations and used by them to:

• prevent crime, fraud and money laundering by, for example, checking details provided on applications for credit and credit- related or other facilities
• check the operation of credit and credit-related accounts
• verify your identity if you, or your financial associate, applies for other facilities
• make decisions on credit and credit related services about you, your financial associate, other members of your household, or your business
• manage your personal, your financial associates, and/or business (if you have one) credit, or credit-related account, or other facilities
• trace your whereabouts and recover debts that you owe
• undertake statistical analysis and system testing
• perform services as fraud prevention agencies.
• to administer and maintain your account(s) and provide you with products and/or services
• to improve the products and services that we offer
• to respond to your queries
• to carry out our obligations under any contracts entered into between you and us
• to notify you about any changes to our products, services and/or our websites
• to send you marketing information and service notifications
• to comply with legal and regulatory requirements that apply to us
• for general statistical analysis.

The C. Hoare & Co. tax team may also use the information you supply to:

• complete your UK tax return
• provide UK taxation advice regarding a specific transaction or activity.

In addition to the above, Messrs. Hoare Trustees may also use the information you supply to:

• draft wills
• act as Trustees, Custodian trustee and or agents for different types of Trusts
• act as Executors/Trustees/Attorney administrator of wills
• provide administration of Trusts/Estates.

Information used for marketing purposes

We use information that we hold about to identify events that we think you may wish to attend or products and services that we think may be of value to you. The information we use to make these decisions includes both details you decide to share with us directly, and details collected through your interactions with the bank, such as your recent transactions or use of services and systems. We will only contact you for marketing purposes if you have given us consent to do so.
We may share basic details with venues or hosts if you choose to attend an event but we will never sell or transfer your data to a third party to use for direct marketing without your knowledge and consent.
You have the right to ask us not to send you marketing messages by post, telephone, or email, or any combination of these at any time. You can do this by:

• at any time by contacting your relationship manager or our Data Protection Officer
• checking certain boxes on the forms we use to collect your data
• by replying directly to the marketing message
• in case you wish to withdraw from all marketing communications, you can also unsubscribe from all marketing by clicking the appropriate link in any email you receive
• Whatever your preference, you will still receive statements and other services notifications that we may need to send you containing important information in relation to your accounts or services we provide to you.

We use a variety of analytical tools and techniques and we may perform analysis, data matching and profiling using your information. This may affect the products and services that we may offer you, or the price we charge you for them.
We will do this to:

• personalise conversations and offers to identify potential products and services or events that may be of value to you based on your feedback, expectations and preferences, or based on customers in a similar segment or with similar circumstances
• keep your accounts safe from potential fraud
• help support lending decisions including the assessment of credit and affordability factors
• perform data linkages with external data sets such as ONS to better understand economic drivers and to improve our products and services

These activities may be done manually but we also use automated machine learning tools to be as accurate as we can.

We would never make a purely automated decision concerning you and we have suitable checks in place to ensure outcomes are fair and in line with your interests.

Lawful processing

We will rely on the following legal bases to process your information

• where you have consented to such use
• if you do choose to provide your consent you can withdraw it at any time by contacting your Relationship Manager or our Data Protection Officer.
• for the performance of a contract with you for provision of our products and/or services, or to take steps at your request prior to entering into such a contract.
• if provision of your personal information is a legal or contractual requirement, or a requirement necessary to enter into a contract with us, and you choose not to provide it, we may not be able to perform some of the tasks we need to in order to provide certain products or services to you.
• to comply with our legal obligations
• where it is in the substantial public interest
• for our legitimate interests in:
• setting up, administering and maintaining your accounts with us
• ensuring the quality of the products and services we provide to you
• collecting information for marketing purposes;
• communicating with you;
• keeping the bank and your information secure including protecting against fraud
• responding to any incidents or complaints
• managing and developing our technologies
• meeting our regulatory obligations
• business development
• statistical analysis.

We process your sensitive and special categories of information (this includes data concerning your health, personal data revealing your racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, and biometric data, criminal convictions and offences, or data concerning sexual orientation) where we have asked for your explicit consent or otherwise where this is necessary.

• for the establishment, exercise, or defence of legal claims
• where we need to carry out our legal obligations
• where it is in the substantial public interest

Sharing your information

We will provide your information to our service providers to allow them to assist us with delivering the products or services that you have requested, under various categories:

• accountants
• auditors
• banks and financial services providers including Third Party Payment Service Providers (TPPs)
• Credit reference agencies read more
• Transunion/CallCredit
  Post: Callcredit Information Group, One Park Land, Leeds, West Yorkshire, LS3 1EP
  Web Address: www.callcredit.co.uk/consumer-solutions/contact-us
  Phone: 0330 024 7574
  https://www.callcredit.co.uk/crain
• Post: Equifax Ltd, Customer Service Centre PO Box 10036, Leicester, LE3 4FS
  Web Address: https://www.equifax.co.uk/Contact-us/Contact_Us_Personal_Solutions.html
  Phone: 0333 321 4043 or 0800 014
  https://www.equifax.co.uk/crain
• Experian
  Post: Experian, PO BOX 9000, Nottingham, NG80 7WF
  Web Address: https://www.experian.co.uk/consumer/contact-us/index.html
  Phone: 0344 481 0800 or 0800 013 8888
  http://www.experian.co.uk/crain
• lawyers
• information technology and information security providers
• intermediaries that introduce you to us
• companies that we introduce you to
• if you request that we do so, your information will be passed between C. Hoare & Co and Messrs. Hoare Trustees to provide products and services to you which you have requested
• UK government agencies, law enforcement agencies and regulators read more

We will share with law enforcement and regulators where we are under a duty to disclose or share your information in order to comply with any legal or regulatory obligation, or if we reasonably consider that this is necessary to help prevent or detect fraud or other crime, or to protect the rights, property, or safety of the bank, our customers or others.

• fraud prevention agencies read more

The personal information we have collected from you will be shared with fraud prevention agencies who will use it to prevent fraud and money-laundering and to verify your identity. If fraud is detected, you could be refused certain services, finance, or employment. Further details of how your information will be used by us and these fraud prevention agencies, and your data protection rights, can be found at www.cifas.org.uk/fpn

• HM Revenue & Customs (HMRC) read more

We will share with HMRC if we are under a duty to disclose or share your information with them. HMRC may transfer it to the government or the tax authorities in another country where you may be subject to tax.

• UK Financial Services Compensation Scheme
• if the bank (or all or part of its assets) were to be acquired by a third party, in which case personal data about you, as one of our customers, would be one of the transferred assets
• if you have consented to any disclosure of a third party. This includes, for example, any Third Party Payment Service Providers (TPPs) who you may choose to use for open banking purposes, or market researchers if you decide to participate in a research study.

Our websites may, from time to time, contain links to and from third party websites. If you follow a link to any of these websites, please check their privacy policies.

Where we store and use your information

We transfer, use and/or store your personal information outside of the European Economic Area ("EEA") and the laws of some of these destination countriesmay not offer the same standard of protection for personal information as in the UK.

We currently transfer data to the following countries outside of the EEA:
USA, Switzerland, Australia, India, Ukraine, Jersey, Canada, and the Philippines. We may update this list from time to time and any changes will be communicated to you via an update to this Privacy Notice.

Transfers to our third party service providers are to enable them to use and store your personal information on our behalf. We will, however, put in place appropriate security procedures in order to protect your personal information. We also ensure that, where your information is transferred to any country outside the EEA this is done using specific legally-approved safeguards. You can request further details and a copy of these by contacting our Data Protection Officer.

Keeping your information

We will keep your information only for as long as necessary depending on the purpose for which it was provided. Details of retention periods for different aspects of your personal information are available in our retention schedule which is available from our Data Protection Officer.
For some processing activities, we will retain data which we believe is of particular historical interest for our museum. We will ensure it is only used for historical research by future generations otherwise we securely erase your information once it is no longer needed.

When determining the relevant retention periods, we will take into account factors including:

• the nature and sensitivity of the personal data
• the potential risk of harm from unauthorised use or disclosure of your personal data
• the purposes for which we process your personal data and whether we can achieve those purposes through other means
• our legal obligations under applicable law to retain data for a certain period of time
• the statute of limitations under applicable law(s) (potential) disputes
• guidelines issued by relevant supervisory authorities.

Security

We have put in place measures to protect the security of your information. These measures are intended to prevent your personal information from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed.

In addition, we limit access to your personal information to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal information on our instruction and they are subject to a duty of confidentiality.

We have put in place procedures to deal with any suspected data security breach and will notify you and any applicable regulator of a suspected breach where we are legally required to do so.

Unfortunately, the transmission of information via email is not secure. Therefore, if you use email to communicate with us we cannot guarantee that it will remain confidential whilst in transit.

Location data

We do not actively collect geo-location data however certain security and operational features of our Online Banking service and mobile app may make use of information from your device to create a device “fingerprint”. This may include the IP address of your device, mobile provider or WiFi network which could provide an indication of a broad location (for example when you may be on holiday abroad). We require this information to help us prevent and detect fraud and to enable us to provide functionality in accordance with this Privacy Notice.

Your rights

Under certain circumstances, by law you have the right to:

• object to the processing of your personal information where we are relying on a legitimate interest (or that of a third party) and there is something about your particular situation that makes you want to object to processing on this ground. You also have the right to object where we are processing your personal information for direct marketing purposes
• request access to your personal information (commonly known as a "data subject access request"). This enables you to receive a copy of the personal information we hold about you and to check that we are lawfully processing it
• request correction of the personal information that we hold about you. This enables you to have any incomplete or inaccurate information we hold about you corrected
• request erasure of your personal information. This enables you to ask us to delete or remove personal information where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your personal information where you have exercised your right to object to processing (see above)
• request the restriction of processing of your personal information. This enables you to ask us to suspend the processing of personal information about you, for example, if you want us to establish its accuracy, or the reason for processing it
• request the transfer of your personal information to another party in a machine-readable, commonly used and structured format.

If you want to exercise your rights, please contact our Data Protection Officer.

The various rights are not absolute and each is subject to certain exceptions or qualifications. In some cases, these rights do not become a legal requirement until 25th May 2018. In these cases we may not be able to fulfil your request to exercise the right before this date. Where we cannot provide a full response to you for this reason, we will let you know about this in our initial reply to your request.

Your duty to inform us of changes

It is important that the personal information we hold about you is accurate and current. Please keep us informed if your personal information changes during your working relationship with us.

Fees

You do not have to pay a feeto access your personal information (or to exercise any of the other rights).

In some cases, however, we may charge a reasonable fee if your request for access is clearly unfounded or excessive, or if you request multiple copies of the information. Alternatively, we may refuse to comply with the request in such circumstances.

What we may need from you

We may need to request specific information from you to help us confirm your identity and ensure your right to access the information (or to exercise any of your other rights). This is another appropriate security measure to ensure that personal information is not disclosed to any person who has no right to receive it.

Right to complain

If you wish to request further information about any of the above rights, or if you are unhappy with how we have handled your information, contact our Data Protection Officer.
If you are not satisfied with our response to your complaint, or believe our processing of your information does not comply with data protection law, you can make a complaint to the Information Commissioner’s Office ("ICO"):

• https://ico.org.uk/global/contact-us
• ICO Helpline: 0303 123 1113.

Changes to our privacy notice

We keep our Privacy Notice under regular review and any updates will be posted on our website in the most recent version of this Privacy Notice. Where appropriate, changes may be notified to you by post or email.

A summary of recent changes to our Privacy Notice is available for your information:

• April 2020 - Notice refresh covering updated details in respect to analytics and marketing activities, data processing in respect to open banking and clearer information relating to our services.

• March 2019 - Details of the bank's new voice identification system and the processing of biometric data added.

• November 2018 - Details in respect to sharing your information with fraud prevention agencies, such as CIFAS, updated.

• April 2018 - Notice refreshed in line with the General Data Protection Regulation (GDPR) requirements.

Download summary of our Privacy Notice