GDPR Compliance

Last updated: May 10, 2026

Our Commitment to GDPR

quirky-pixel is committed to compliance with the General Data Protection Regulation (GDPR) and UK data protection laws. We process personal data lawfully, fairly, and transparently.

Legal Basis for Processing

We process your personal data based on:

  • Consent: You have given clear consent for us to process your personal data for specific purposes
  • Contract: Processing is necessary for the performance of our pension advisory services
  • Legal obligation: Compliance with FCA regulations and financial services requirements
  • Legitimate interests: Processing is necessary for our legitimate business interests

Your GDPR Rights

Under GDPR, you have the following rights:

  • Right to be informed: You have the right to know how your data is being used
  • Right of access: You can request a copy of all personal data we hold about you
  • Right to rectification: You can request correction of inaccurate data
  • Right to erasure: You can request deletion of your personal data (subject to legal retention requirements)
  • Right to restrict processing: You can request limitation on how we use your data
  • Right to data portability: You can request your data in a machine-readable format
  • Right to object: You can object to certain types of processing
  • Rights related to automated decision-making: Protection from decisions based solely on automated processing

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or regulatory requirements. Financial advisory records are retained for a minimum of 7 years in accordance with FCA regulations.

Data Protection Officer

For any GDPR-related enquiries or to exercise your rights, please contact our Data Protection Officer at:
Email: [email protected]
Address: 142 Whitfield Street, London, W1T 5ED, United Kingdom

Complaints

If you believe we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's supervisory authority for data protection.

International Data Transfers

We do not transfer personal data outside the UK or European Economic Area. Should this change, we will ensure appropriate safeguards are in place and inform you accordingly.

Security Measures

We implement appropriate technical and organisational security measures to protect your personal data, including encryption, access controls, regular security assessments, and staff training on data protection.