Privacy Policy

Last updated: April 2026

Introduction

Sassy Gas is committed to protecting your privacy and handling your personal information responsibly. This privacy policy explains how we collect, use, store, and protect data you provide when using our website or engaging our financial planning services.

We recognize that financial planning involves sharing sensitive personal and financial information. Maintaining your trust requires us to handle this data with the highest standards of security and confidentiality.

Information We Collect

Information You Provide Directly

When you contact us or engage our services, you may provide:

  • Contact details including name, email address, and postal address
  • Financial information such as income, assets, liabilities, and investment holdings
  • Personal circumstances including employment status, family situation, and financial goals
  • Documentation supporting your financial position such as statements and tax returns
  • Any other information you choose to share during consultations or correspondence

Information Collected Automatically

When you visit our website, we may automatically collect:

  • Technical information including IP address, browser type, and device information
  • Usage data such as pages visited, time spent on pages, and navigation patterns
  • Referral source showing how you arrived at our website

How We Use Your Information

We use collected information for the following purposes:

  • Providing financial planning services and advice tailored to your circumstances
  • Communicating with you about your account, appointments, and service updates
  • Analyzing your financial situation to develop appropriate recommendations
  • Maintaining records of our advisory relationship as required by professional standards
  • Improving our website functionality and user experience
  • Complying with legal and regulatory obligations
  • Protecting against fraud and unauthorized access

Legal Basis for Processing

Under UK data protection law, we process your personal data based on:

  • Contract performance: Processing necessary to provide the financial planning services you've engaged us for
  • Legitimate interests: Maintaining business records, improving our services, and protecting our legal interests
  • Legal obligations: Complying with regulatory requirements applicable to financial services
  • Consent: For certain activities like marketing communications, where we've obtained your explicit agreement

How We Share Information

We do not sell, rent, or trade your personal information to third parties. We may share your data only in these limited circumstances:

Service Providers

We work with trusted third-party service providers who assist in operating our business, such as technology platforms for secure document storage or client communication tools. These providers are contractually obligated to protect your data and use it only for specified purposes.

Professional Advisors

With your permission, we may share relevant information with other professionals involved in your financial affairs, such as accountants, solicitors, or tax advisors, to provide coordinated guidance.

Legal Requirements

We may disclose information when required by law, regulation, legal process, or governmental request, or when necessary to protect our rights or the safety of others.

Business Transfers

In the event of a merger, acquisition, or sale of our business, client information may be transferred to the successor entity, subject to the same privacy protections outlined in this policy.

Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of sensitive data during transmission and storage
  • Secure, password-protected systems with regular security updates
  • Restricted access to personal data limited to employees who need it for their roles
  • Regular staff training on data protection and confidentiality obligations
  • Secure disposal procedures for data that's no longer needed

While we take reasonable precautions, no method of electronic transmission or storage is completely secure. We cannot guarantee absolute security but remain committed to protecting your information using industry-standard practices.

Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law or professional regulations.

For current clients, we maintain records throughout our advisory relationship. After a relationship ends, we typically retain core documentation for seven years to comply with regulatory requirements and to address any future questions about past advice. We securely delete or anonymize information once retention obligations expire.

Your Rights

Under UK data protection law, you have several rights regarding your personal information:

  • Access: You can request a copy of the personal data we hold about you
  • Correction: You can ask us to correct inaccurate or incomplete information
  • Deletion: You can request deletion of your data in certain circumstances
  • Restriction: You can ask us to limit how we use your data in specific situations
  • Portability: You can request your data in a structured, commonly used format
  • Objection: You can object to certain types of processing, particularly for marketing purposes
  • Withdrawal of consent: Where we rely on consent, you can withdraw it at any time

To exercise any of these rights, contact us at [email protected]. We'll respond within one month and may request verification of your identity before processing requests.

Cookies and Tracking Technologies

Our website uses cookies and similar technologies to enhance functionality and understand how visitors use our site. For detailed information about our cookie practices, please see our Cookies Policy.

Third-Party Websites

Our website may contain links to external sites operated by third parties. We're not responsible for the privacy practices of these sites. We encourage you to review the privacy policies of any third-party websites you visit.

Children's Privacy

Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we've inadvertently collected information from a minor, please contact us immediately so we can delete it.

International Data Transfers

Your information is primarily processed and stored within the United Kingdom. If we transfer data outside the UK or European Economic Area, we ensure appropriate safeguards are in place to protect your information in accordance with applicable data protection laws.

Changes to This Policy

We may update this privacy policy periodically to reflect changes in our practices, technology, legal requirements, or business operations. We'll post any revised policy on this page with an updated effective date. Material changes will be communicated through prominent notice on our website or direct notification to clients.

We encourage you to review this policy periodically to stay informed about how we protect your information.

Contact Us

If you have questions about this privacy policy, how we handle your personal information, or wish to exercise your data protection rights, please contact us:

Sassy Gas
Cathedral Court
42 Church Street
Cardiff CF10 2AT
United Kingdom
Email: [email protected]

Complaints

If you're not satisfied with how we've handled your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's data protection authority.

Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF
Website: ico.org.uk