Skip to content

25a Soho Square
London W1D 3QR
United Kingdom
+44 (0)20 3056 9540

Via Joe Colombo 2
20124 Milan
Italy
+39 02 8295 9110

6 St Johns Lane
New York, NY 10013
United States
+1 917 933 3127

42 Rue de la Vallée
L-2661 Luxembourg
Luxembourg
+35 220 880 176

Disclosures and downloads
Quick Links:

PRIVACY NOTICE

1. BACKGROUND

  1. This Privacy Notice explains how “THCP Advisory Limited“, its subsidiaries and its affiliates, together Controllers (referred to collectively as “THCP Advisory Limited” “we”, “us” or “our”),  collect and process certain Personal Data. THCP Advisory Limited is responsible for ensuring that it uses that Personal Data in compliance with data protection laws.
  2. At THCP Advisory Limited we respect the privacy of individuals and we are committed to keeping all your Personal Data secure. This Privacy Notice (“notice”) applies to individuals outside our organisation with whom we interact, including but not limited to visitors to our website; clients and their personnel; vendors and service providers; visitors to our offices; and registrants for THCP Advisory Limited events (together, “you”).
  3. We use the following definitions in this Privacy Notice:

“Personal Data” means any data which relates to a living individual who can be identified from that data or from that data and other information which is in the possession of, or is likely to come into the possession of, THCP Advisory Limited (or its representatives or service providers). In addition to factual information, it includes any expression of opinion about an individual and any indication of the intentions of THCP Advisory Limited or any other person in respect of an individual.

2. THE PRODUCTS AND SERVICES WE PROVIDE

This Privacy Notice concerns the following categories of information that we collect about you when providing the following products and services (together, the “services”):

  • Information we receive through our websites (“THCP Advisory Limited Websites”);
  • Information we receive through our products (“THCP Advisory Limited Products”);
  • Information we receive through our support, mobile security solution or cloud-based services (“THCP Advisory Limited Services”).

3. THE TYPES OF PERSONAL DATA WE COLLECT

Many of the services offered by THCP Advisory Limited require us to obtain Personal Data about you in order to perform the services we have been engaged to provide. In relation to each of the services described at section 2.1 above, we will collect and process the following Personal Data about you:

INFORMATION THAT YOU PROVIDE TO THCP ADVISORY LIMITED. 

This includes information about you that you provide to us. The nature of the services you are requesting will determine the kind of Personal Data we might ask for, though such information may include (by way of a non-exhaustive list):

  • basic Personal Data (such as first name; family name; job title; company name; company email address; business phone number; business address; city; postcode; country).

INFORMATION THAT WE COLLECT OR GENERATE ABOUT YOU.

This includes (by way of non-exhaustive list):

  • a file with your client records and contact history to be used for enquiry purposes so that we may ensure that you are satisfied with the services which we have provided to you; and
  • details of site and marketing/communication preferences. 

INFORMATION WE OBTAIN FROM OTHER SOURCES.

This includes:

COOKIES

  • When you visit THCP Advisory Limited Websites, cookies are used to collect information about the services that you use, and how you use them. Cookies are essentially a small amount of data which is transferred to and sometimes updated on your computer or other devices by our web servers.
  • For more information on the cookies used by THCP Advisory Limited please see our Cookie Policy. 

ANONYMISED DATA

In addition to the categories of Personal Data described above, THCP Advisory Limited will also process further anonymized information and data that is not processed by reference to a specific individual.

4. HOW WE USE YOUR INFORMATION

  1. Your Personal Data may be stored and processed by us in the following ways and for the following purposes:
  • for ongoing review and improvement of the information provided on THCP Advisory Limited Websites to ensure they are user friendly and to prevent any potential disruptions or cyber-attacks;
  • to conduct analysis required to detect malicious data and understand how this may affect your IT system;
  • for statistical monitoring and analysis of current attacks on devices and systems and for the on-going adaptation of the solutions provided to secure devices and systems against current attacks;
  • for in-depth threat analysis;
  • to understand your needs and interests;
  • for the management and administration of our business;
  • to allow you to use and access the functionality provided by the THCP Advisory Limited Products;
  • to assess your application for THCP Advisory Limited Products, where applicable;
  • to set up customers to use THCP Advisory Limited Products;
  • to understand feedback on THCP Advisory Limited Products and to help provide more information on the use of those products and services quickly and easily;
  • to communicate with you in order to provide you with services or information about THCP Advisory Limited and THCP Advisory Limited Products;
  • in order to comply with and in order to assess compliance with applicable laws, rules and regulations, and internal policies and procedures; or
  • for the administration and maintenance of databases storing Personal Data.

2. However, we use Personal Data we make sure that the usage complies with law and the law allows us and requires us to use Personal Data for a variety of reasons, including but not limited to the following:

  • in order to perform our contractual obligations;
  • where we have obtained your consent;
  • where we have legal and regulatory obligations that we have to discharge;
  • where we may need to do so in order to establish, exercise or defend our legal rights or for the purpose of legal proceedings;
  • the use of your Personal Data as described is necessary for our legitimate business interests, such as:
    • allowing us to effectively and efficiently manage and administer the operation of our business;
    • maintaining compliance with internal policies and procedures;
    • monitoring the use of our copyrighted materials;
    • enabling quick and easy access to information on THCP Advisory Limited Products;
    • offering optimal, up-to-date security solutions for mobile devices and IT systems; and
    • obtaining further knowledge of current threats to network security in order to update our security solutions and provide these to the market.

3. We will take steps to ensure that the Personal Data is accessed only by employees of THCP Advisory Limited that have a need to do so for the purposes described in this Privacy Notice

5. DISCLOSURE OF YOUR INFORMATION TO THIRD PARTIES

  1. We may share your Personal Data within the THCP Advisory Limited for the purposes described above. This will include our subsidiaries and affiliated companies.
  2. We may also share your Personal Data outside of the THCP Advisory Limited for the following purposes:
  • with other trusted businesses or persons for the purpose of processing personal data on our behalf for the above stated purposes. These will include any depositary, stock exchange, clearing or settlement system, counterparties, dealers, custodians and others where disclosure of your Personal Data is reasonably intended for the purpose of effecting, managing or reporting transactions or establishing a relationship with a view to such transactions;
  • with our business partners. For example, this could include our partners from whom you or your company or your organisation purchased the THCP Advisory Limited product(s). Personal Data will only be transferred to a business partner who is contractually obliged to comply with appropriate data protection obligations and the relevant privacy and confidentiality legislation;
  • with third-party agents and contractors for the purposes of providing services to us (for example, THCP Advisory Limited’s accountants, professional advisors, IT and communications providers, credit reference agencies and debt collectors). These third parties will be subject to appropriate data protection obligations and they will only use your Personal Data as described in this Privacy Notice;
  • with representatives, agents, custodians, intermediaries and/or other third-party product providers appointed by the Client or prospective Client (such as accountants, professional advisors, custody service providers and product providers);
  • to the extent required by law, for example if we are under a duty to disclose your Personal Data in order to comply with any legal obligation (including, without limitation, in order to comply with tax reporting requirements and disclosures to regulators), or to establish, exercise or defend its legal rights;
  • if we sell our business or assets, in which case we may need to disclose your Personal Data to the prospective buyer for due diligence purposes; and
  • if we are acquired by a third-party, in which case the Personal Data held by us about you will be disclosed to the third-party buyer.
  • where you are a joint account or portfolio holder (or otherwise one of multiple persons holding an account or portfolio), we may disclose your Personal Data to the other joint account or portfolio holder or other person.

6. INTERNATIONAL TRANSFERS OF PERSONAL DATA

  1. THCP Advisory Limited is a global business. Our customers and our operations are spread around the world. As a result, we collect and transfer Personal Data on a global basis. That means that we may transfer your Personal Data to locations outside of your country.
  2. Where we transfer your Personal Data to another country outside the EEA, we will ensure that it is protected and transferred in a manner consistent with legal requirements. In relation to data being transferred outside of Europe, for example, this may be done in one of the following ways:
    • the country that we send the data to might be approved by the European Commission as offering an adequate level of protection for Personal Data;
    • the recipient might have signed up to a contract based on “model contractual clauses” approved by the European Commission, obliging them to protect your Personal Data;
    • where the recipient is located in the US, it might be a certified member of the EU-US Privacy Shield scheme; or
    • in other circumstances the law may permit us to otherwise transfer your Personal Data outside Europe.
  3. You can obtain more details of the protection given to your Personal Data when it is transferred outside Europe (including a copy of the standard data protection clauses which we have entered into with recipients of your Personal Data) by contacting us as described in section 10 below.

7. HOW WE SAFEGUARD YOUR INFORMATION

  1. We have extensive controls in place to maintain the security of our information and information systems. Appropriate controls (such as restricted access) are placed on our computer systems. Physical access to areas where Personal Data is gathered, processed or stored is limited to authorised employees.
  2. As a condition of employment, THCP Advisory Limited employees are required to follow all applicable laws and regulations, including in relation to data protection law. Unauthorised use or disclosure of confidential client information by a THCP Advisory Limited employee is prohibited and may result in disciplinary measures.

8. HOW LONG WE KEEP YOUR PERSONAL DATA

How long we will hold your Personal Data for will vary and will be determined by the following criteria:

  • the purpose for which we are using it – THCP Advisory Limited will need to keep the data for as long as is necessary for that purpose; and
  • legal obligations – laws or regulation may set a minimum period for which we have to keep your Personal Data.

9. YOUR RIGHTS

In all the above cases in which we collect, use or store your Personal Data, you may have the following rights and, in most cases, you can exercise them free of charge. These rights include:

  • the right to obtain information regarding the processing of your Personal Data and access to the Personal Data which we hold about you;
  • the right to withdraw your consent to the processing of your Personal Data at any time. Please note, however, that we may still be entitled to process your Personal Data if we have another legitimate reason for doing so. For example, we may need to retain Personal Data to comply with a legal obligation;
  • in some circumstances, the right to receive some Personal Data in a structured, commonly used and machine-readable format and/or request that we transmit those data to a third-party where this is technically feasible. Please note that this right only applies to Personal Data which you have provided directly to THCP Advisory Limited;
  • the right to request that we rectify your Personal Data if it is inaccurate or incomplete;
  • the right to request that we erase your Personal Data in certain circumstances. Please note that there may be circumstances where you ask us to erase your Personal Data but we are legally entitled to retain it;
  • the right to object to, or request that we restrict, our processing of your Personal Data in certain circumstances. Again, there may be circumstances where you object to, or ask us to restrict, our processing of your Personal Data but we are legally entitled to refuse that request; and
  • the right to lodge a complaint with the relevant data protection regulator if you think that any of your rights have been infringed by us.

You can exercise your rights by contacting us using the details listed in section 10 below.

10. QUESTIONS AND CONCERNS 

If you have any questions or concerns about THCP Advisory Limited’s handling of your Personal Data, or about this notice, please contact us using the following contact information:

Address: 25a Soho Square, London, W1D 3QR
Email Address: info@threehills.com

We are usually able to resolve privacy questions or concerns promptly and effectively. If you are not satisfied with the response you receive, you may escalate concerns to the applicable privacy regulator in your jurisdiction. Upon request, we will provide you with the contact information for that regulator.