Effective Date: 11/01/2025
Company: GW Padley Property 4 Limited, trading as Lincs Loans
Registered Address: 80 Mount Street, Nottingham, NG1 6HH
At Lincs Loans, we are committed to protecting the privacy and security of the personal data we collect and process. This Data Protection Policy outlines how we comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
This policy applies to:
- All employees and contractors of Lincs Loans
- All personal data collected and processed in the course of our business activities
We collect and process personal data from clients and prospective clients, including:
- Name
- Address
- Contact details (email and phone)
- Information relating to property transactions (e.g. purchase or refinance details)
We do not collect special category data such as health, biometric, or criminal conviction data.
We process personal data for the following reasons:
- To assess the client’s eligibility for loan products
- To liaise with third-party lenders and broker partners
- To comply with legal and regulatory obligations
- To send marketing communications, where explicit consent has been provided
Under UK GDPR, we rely on the following lawful bases:
- Contractual obligation: To assess and progress loan enquiries at the client’s request
- Consent: For marketing communications (email and SMS)
- Legitimate interests: To support clients with relevant loan options and services
We may share personal data with:
- Lenders to whom the client’s application is submitted
- Carefully selected broker partners where beneficial to the client
- Legal, compliance or IT service providers acting on our behalf
We do not sell or rent personal data to third parties.
All personal data is stored securely on encrypted cloud-based systems. Access is restricted to authorised staff only. Technical and organisational measures are in place to protect data from unauthorised access, loss, misuse, or alteration.
We retain personal data for 6 years from the date of application, in line with our regulatory and audit obligations. After this period, data is securely deleted or anonymised.
- All staff receive training on data protection and privacy best practices.
- Only staff with a business need are given access to personal data.
- A total of 6 staff members currently have authorised access to client data.
We only send email or SMS marketing to individuals who have given explicit consent. Clients may withdraw their consent at any time by contacting us or using the unsubscribe link in any communication.
Clients have the right to:
- Access the personal data we hold about them
- Request correction of inaccurate or incomplete data
- Request deletion of data, where appropriate
- Object to or restrict processing
- Withdraw consent for marketing
All requests will be actioned within one month, subject to verification.
For any data protection queries or to exercise your rights, please contact:
The Data Protection Officer
GW Padley Property 4 Limited
80 Mount Street
Nottingham
NG1 6HH
Email: rgp@padley.co.uk
Phone: 01780 460186
This policy is reviewed annually or upon significant changes to our data processing activities or legal obligations.