Privacy policy

Brooks Wealth Management


At Brooks Wealth Management, your privacy and your rights are important to us. This Privacy Policy explains what information we collect about you and how we use it. By ‘we’ or ‘us’ or ‘our’ we mean Wealthline Limited and its subsidiaries, 8a Cowgate, Peterborough, PE1 1NA.

In order to provide you with financial planning services, we will collect and hold personal data about you.  Wealthline collects, stores, processes and discloses (collectively “uses”) your information in a manner consistent with the General Data Protection Regulation 2016/679 (GDPR). 

Why we collect your data

We collect your information when you interact with us to:

    • Provide financial planning services to you in accordance with this Privacy Policy, which may include but not limited to giving you financial advise and making recommendations as to Investments, Pensions Protection, Mortgages and Financial products, which are suitable for you, taking into account current financial markets and economic conditions, availability of products and the providers of those products, as well as a detailed analysis of your personal circumstances and requirement.
    • Comply with our regulatory obligations, imposed by the Financial Conduct Authority in regard to the relevant ‘Know Your Client’ obligations.  In addition, to comply with Regulatory’s requirement for record keeping for the purposes of audits and reviews, records of transactions undertaken and customer histories for prescribed periods of time, as directed.
    • Respond to any legitimate, legal requests for information about you to the Regulatory authority or pursuant to an order or tribunal having relevant jurisdiction or as required by law for the purposes of, but not limited to, combatting fraud, money luandering or criminal activities.
    • Carry out our legitimate business and professional management responsibilities which include, but are not limited to, providing you with suitable advice, ensuring your portfolio and financial products continue to be suitable for you, adhere to anti money laundering requirements and investigating and resolving complaints. 

Your data rights

Where we collect data directly from you, we will undertake:

    • In addition to those third-party companies expressly detailed in this Privacy Policy, to inform you in writing of the name and contact details of the data controller for that data and their representative.  For example, where we arrange for an investment or mortgage on your behalf with a third-party provider, the data controller may be the financial institution in question.
    • To inform you, where appropriate, of the contact details for any Data Protection Officer appointed by us.
    • To inform you and make clear the purposes for which the data is to be processed and the legal basis for that processing.  In the event that the legal basis to be relied on is that of the legitimate interests of the data controller or any third party, we will inform you as to the nature of those legitimate interests.
    • To inform you of the recipients or categories of recipients of data.
    • In the event that the data controller proposes to transfer the data to a country other than those covered by the GDRP, to provide you with details of the safeguards surrounding such transfers and how to obtain a copy of them.
    • To inform you of the period for which we propose to hold the data, or where this is not possible, the criteria which we will apply to data retention.
  • To remind you of your rights, whereby you may:
    • request access to data of which you are the data subject.
    • object to, or withdraw consent for, the processing of the same.
    • obtain rectification of inaccurate data.
    • prevent data processing for the purposes of direct marketing.
    • object to decisions being taken by automated means and to have the logic behind those decisions clearly explained.
    • claim compensation for damages caused by a breach of the Act.
    • request data erasure.

Your right to access data

Where you access your right to request (via email or post) access to data of which you are the data subject, we will undertake to respond to you within 30 calendar days of receopit of your request. There will be no charge for this service unless the request is manifestly unfounded or excessive, in which case we reserve the right to charge a fee or refuse to respond.

You may at any time, by giving notice to us in writing, request that we process your data.

To access your data, you can contact us by:


Post: Data Controller

 Wealthline Ltd

 8a Cowgate


 PE1 1NA

Telephone: 01733 314553

We will undertake to comply with any such request as soon as reasonably practicable. However, please note that our data retention periods, as stated below.

Where the legal basis for the processing of your data is to adhere to compliance with a statutory or contractual obligation, or the necessary precondition to entering into a contract, including compliance with the requirements of any Regulator, we will inform you as to

    • whether you are legally required to provide such data, and
    • the consequences of failing to provide such data

Where we obtain your data other than directly from you, you will have the same or equivalent rights to those set out above.

Save in the circumstances as detailed below, we will inform you which source the data originated from and whether it came from publicly accessible sources.  The information to be provided will be in accordance with the following time periods, whichever shall occur first:

    • as soon as practicable after obtaining the data and in any event within 1 month.
    • at the time of our first communication with you using the data.
    • when the data is first disclosed to another person.

We shall not be obliged to provide you with the information:

    • where you already have this information.
    • where we are subject to an obligation of professional secrecy prohibiting the disclosure of the information.
    • where disclosure would render impossible or severely impair the achievement of the reasons for which the data is to be processed.  In such cases, we will do what we can to protect your rights and freedoms with respect to our processing of the data.

You have the right to complain in regard to any aspect of the processing of your data and any breach of the above rights to the relevant supervisory authority, who in the case of the United Kingdom is the Information Commissioners Office, who may be contacted at:


Phone: 0303 123 1113

Holding your data

We undertake to review the data we hold on you on a regular basis to ensure compliance with data protection law.  In the course of any review, we will:

    • delete any data which is trivial or transitory in nature or which, in our opinion, is no longer required for the purposes set out above.
    • update the data to ensure that any errors or inaccuracies are corrected.
    • archive data, as detailed below.  Subject to the data retention periods, as detailed below, securely delete the data when it is identified that we no longer need to hold it.

We many retain and process your data for the following periods.  In the event that more than one period applies to the same data, we will retain the data to the last such period to expire:

    • we will hold any agreements between you and us for a period of 6 years from the termination or expiry of the agreement unless we have been notified of any claim or circumstance, which might give rise to a claim or by reference to such agreements.
    • we will process data relating to investments, which we have provided advice on and/ or arranged for you. We will process such data throughout the entire period you are and remain a client of the firm and for a period of not less than 6 years following our ceasing to provide service to you in regard to those investments. In the case of long-term investments, we may process your data until the date of maturation of such long-term investments.
    • We will hold data, as required by any Regulator, until the end of any limitation period imposed by that Regulator, which in the case of the Financial Services Authority, is currently 6 years for all types of business undertaken, except for Occupational Pension Schemes, which can include Defined Benefit Transfers and Scheme Money Purchase Transfers, whereby the data retention period is indefinite.
    • we will hold data, as required for the purposes of any legal proceedings, for a period of 6 years following the conclusion of any such proceedings, unless a longer period is required pursuant to any court rule or enactment.  Proceedings will be taken to have concluded on the expiry of any period given for appealing any final judgement or on the date of concluding any settlement, staying all relevant claims, if the proceedings were settled before judgement.
    • save for the above, we will hold data for a maximum of 50 years from the date we receive the data.

Archiving data

We will regularly review data and, where in our opinion such data has ceased to be Active, we will archive it and process it only as “Archived Data”.  Any data which is deemed “Archived Data” will only be processed in limited circumstances.  All storage of data, whether “Active Data” or “Archived Data”, will be in accordance with good industry practice and will be undertaken in accordance with organisational systems and procedures, which will be regularly reviewed to maintain the security of data.

Data portability

On the termination or expiry of any agreement to provide services to you and on your written request, we will, subject to our right to retain copies of data for the purposes set out above, agree to return any data you have provided to us in a structured, commonly used machine-readable format, or transfer the same to a new data controller nominated by you.

Who we may share your data with

In order to carry out our legitmate business and to provide you with financial planning services, we have entered into agreements with, and will share your information with the following companies, for the purposes of Compliance, IT systems security, data management and control and auditing. Full details of these companies (address and contact details) are available on request.

    • Instituations and providers of financial products, such as banks, insurance companies and investment and pension providers.
    • Compliance and Training Solutions Ltd (Compliance consultants). 
    • Legal representatives and accountants
    • Technical support and IT Solutions
    • Paraplanning Solutions

In addition to the above listed companies, you will be notified, in accordance with the terms of our Privacy Policy, as to the name and contact details of the data controllers for any third party, with whom we share and/ or transfer your data to.

Legal Terms

If any provisions, or part thereof, this statement is found by any court or administrative body of competent jurisdiction to be invalidm unenforceable or illegal, the other provisions shall remain in force.

In the event of any change in Data Protection Law, occuring after the date of this statement, which requires the adoption of revised provisions dealing with data retention or portability, the parties will use all reasonable endeavours to agree such consequential changes to this agreement, as may reasonably be required, to comply with the requirements of Data Protection Law (“Compliant Terms”) and incorporate the same as an amendment to this statement.

Direct Marketing

We may use the information that you give us to provide you with updates, newsletters, offers and other communications by post or email, that we think may interest you, but where required by law, your prior consent will be obtained before sending any direct marketing.

We may also, from time to time, send you surveys about our products and services.  We will only do this where we have your consent.

You have the right to opt in or opt out of direct marketing and surveys from us at any time by sending an email to

You can also read our Cookie Policy here.

This Privacy Policy was last updated on 14/02/2020.