Fintyre Group website Privacy Policy
Pursuant to European Regulation no. 679/2016 (“GDPR”), Fintyre Group ((hereinafter “FG” or “Data Controller)) wishes to inform you as user of the site and data subject (hereinafter “Data Subject “), about the processing of personal data that you provide while browsing our website (the “Website”), as well as on your rights as
Data Subject

Data Controller
The Data Controller is Fintyre Group with registered office in London, Heron House 6th floor, 15 Adam Street, WC2N 6AH London – United Kingdom, contactable by e-mail

Personal data processed by the Website
Personal data processed by the Website are:

  • the personal data provided by the Data Subject, through the interaction with the functions of the Website and/or the request of information, such as, for example, in the event of sending communications through the “Contact” section, or sending job applications through the “Careers” section of the Website;
  • some personal data whose transmission is implicit in the use of internet communication protocols (so-called”internet communication data”), acquired by IT systems and software procedures used for consulting the Website.

Purposes of data processing
FG will process the personal data of the Data Subject for the following purposes:
i. the internet communication data are collected and processed by the Site exclusively for statistical purposes and anonymously in relation to access to and use of the Website, in order to monitor and improve the functioning and content of the Website;
ii. to manage any requests made by the Data Subject, through the “Contact” section, and provide an adequate feedback to Data Subject;
iii. to manage applications submitted by the Data Subject through the “Careers” section.
The provision of personal data as indicated in points (ii) and (iii) is mandatory in order for the Data Controller to provide the necessary response to requests made by the Data Subject, or to manage the job applications submitted by the Data Subject. Therefore, failure to provide data may make it impossible for the Data Subject to receive the information requested and/or to submit her/his application for a job.

Communication of personal data
The personal data of the Data Subject will be communicated to the following categories of recipients, within the scope of the purposes indicated above:

  • data processors identified from time to time;
  • third parties, who provide any services in favor of FG;
  • companies of the FG Group, in particular with reference to the data collected through the “Careers” section;
  • companies and professionals that FG uses in order to protect its rights (for example, accountants, lawyers, tax consultants, consultants, etc.).

Cross-Border data transfers.
The Data may also be transferred abroad, even to countries outside of the European Union to third-party companies that provide support activities for the purposes indicated above.
In case of data transfer to countries outside the European Union, these countries will guarantee an adequate level of protection based on a specific decision of the European Commission or alternatively the recipient will be contractually obliged to the data protection with an appropriate level and comparable to the protection provided by the GDPR.

Data retention
The personal data of the Data Subject will be retained for the period of time required to fulfil the purposes for which the personal data were collected and subsequently to it:

  • within the applicable limits of prescription. In the event of interrupting acts of prescription, the storage period will be extended accordingly;
  • within the limits provided by the regulations on data retention (e.g. tax returns), to properly fulfill any legal obligations;
  • within the period necessary to protect FG ‘s rights in the event of any legal disputes.
    With reference to internet communication data the same will be kept for 24 months.
    For curricula, the storage time, as set by FG, is 24 months after sending the CV.

Rights of Data Subjects
In accordance with the GDPR and the Privacy Code, the Data Subject may exercise the:

  • Right of access: to know what data is processed and all information related to the treatment.
  • Right of rectification: to be able to request the modification of data as inaccurate or obsolete.
  • Right to portability: to obtain a copy of the data being processed, in a structured format, commonly used and readable by an automatic device, in order to facilitate any transfer of data to another data controller, other than FG.
  • Right of limitation of the processing: in order to be able to limit the processing of one’s own data, on condition that one of the hypotheses provided for by the applicable discipline occurs.
  • Right to deletion: request deletion of data.
  • Right of opposition: request the cessation of data processing.
  • Right to complain to the supervisory authority: to promote any reports, or complaints to the Guarantor for the protection of personal data.

The exercise of the rights indicated above can be achieved by postal, electronic or any other means of communication chosen by the Data Subject, using the contacts listed above.