At Paradigm we are committed to ensuring that the data you share with us is treated responsibly. We want you to be confident that the way we use, store and protect your data is done effectively and with the respect it deserves.
For the purposes of the General Data Protection Regulation (GDPR) (EU) 2016/679, the data controller is:
Paradigm Mortgage Services LLP (Paradigm Protect is a brand name within Paradigm Mortgage Services)
Birmingham International Park
Changes to this policy
Links to other websites
We accept no responsibility or liability for such other websites and you should always exercise caution when entering personal information online, paying particular note to the privacy statement applicable at the point you may enter such information.
Newsletters and communications
For firms that utilise to us for mortgage, protection or related support services, we use a third-party provider, Mailchimp ®, to deliver regulatory updates and Paradigm related communications via your email address. Before we can do this we will ask for your consent via a link on our website. MailChimp® self-certify to both the EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield regimes, and lawfully transfer EU/EEA personal data to the U.S. pursuant to their Privacy Shield Certification. For more information please see MailChimp’s privacy statement.
We use a third-party service to publish our website. We use a standard service to collect anonymous information about users’ activity on the site, for example the number of users viewing pages on the site, to monitor and report on the effectiveness of the site and help us improve it.
Using our web based ‘Contact’ and “Join” services
If you use the ‘Contact’ feature of our website we will receive an email which may contain your name, email address, company/firm name, subject and additional message.
If you use the ‘Join’ feature of our website we will receive an email which may contain your name, email address, phone number, company/firm name, address, status and where you heard about us.
Paradigm will only share your information with Providers on our panel if you have requested that we do so in order to align your firms’ Protection agencies to Paradigm’s commercial terms. Unless you agree to this, your information will not be shared with any third party organisations.
People who email us
Our mail services use Transport Layer Security (TLS) to encrypt and protect email traffic between our servers and others that are running this feature. We do not force TLS with other mail services and any transmission encryption using TLS between your mail service and ours will be purely opportunistic. We recommend that all personal or sensitive information sent to us is done using a suitably secure method.
We also monitor any emails sent to us for malicious or prohibited content. Please be aware that you have a responsibility to ensure that any email you send is within the bounds of the law.
Use of data processors
Data processors are third parties who provide some aspects of our services. We have contracts in place with our data processors. This means that they cannot do anything with your personal information unless we have instructed them to do it. They will not share your personal information with any organisation apart from us. They will hold it securely and retain it for the period we instruct.
What we do with the information you provide to us?
All information you provide to us will only be used for the purpose it was collected for, or to fulfil legal or regulatory requirements if necessary.
We will not share any of the information you provide to Paradigm with any third parties for marketing purposes. The information you provide will be held securely by us and/or our data processors whether the information is in electronic or physical format.
Where we store your information
Our servers are situated in inside the European Economic Area (EEA) and all of the information that we collect about you will be stored on these servers.
How we look after your information and how long we keep it for
We use appropriate technological and operational security measures to protect your information against any unauthorised access to or unlawful use. We will retain your information for as long as is necessary to provide you with the services that you have requested from us or for as long as the law otherwise permits.
Transmission of information over the internet can be insecure, and although we employ measures to protect your information from unauthorised access, you acknowledge that we cannot always guarantee the security of information sent over the internet once it has left, or before it reaches, our organisation.
We will collect your consent for processing any Personal Data other than for the provision and support of your services with us. You have the right to opt-out of additional processing at any time by contacting us directly with your request.
Under data protection legislation (GDPR), you have rights as an individual which you can exercise in relation to the information we hold about you.
You can read more about these rights on the Information Commissioner’s Office (ICO) website at this link: “Is my information being handled correctly”
When somebody visits www.paradigmprotect.co.uk we collect standard internet log information using Cookies. Our cookies are not used to identify you personally, they are used to make the site work better and allow us to analyse how it is being used. You can delete these cookies any time you want, but some aspects of this site may not work correctly without cookies.
What are cookies?
A cookie is a small text file that a website saves on your computer or mobile device when you visit the site. It enables the website to remember your actions and preferences (such as login, language, font size and other display preferences) over a period of time, so you don’t have to keep re-entering them whenever you come back to the site or browse from one page to another.
Videos embedded in our pages may use a cookie to anonymously gather statistics on how you got there and what videos you visited.
Globally and in the European Union member states Google sets the following cookies:
A persistent cookie - remains on a computer, unless it expires or the cookie cache is cleared. It tracks visitors. Metrics associated with the Google __utma cookie include: first visit (unique visit), last visit (returning visit). This also includes Days and Visits to purchase calculations which afford ecommerce websites with data intelligence around purchasing sales funnels.
__utmb Cookie & __utmc Cookie
These cookies work in tandem to calculate visit length. Google __utmb cookie demarks the exact arrival time, then Google __utmc registers the precise exit time of the user.
Because __utmb counts entrance visits, it is a session cookie, and expires at the end of the session, e.g. when the user leaves the page. A timestamp of 30 minutes must pass before Google cookie __utmc expires. Given__utmc cannot tell if a browser or website session ends. Therefore, if no new page view is recorded in 30 minutes the cookie is expired.
Cookie __utmz monitors the HTTP Referrer and notes where a visitor arrived from, with the referrer siloed into type (Search engine (organic or cpc), direct, social and unaccounted). From the HTTP Referrer the __utmz Cookie also registers, what keyword generated the visit plus geolocation data.
This cookie lasts six months. In tracking terms this Cookie is perhaps the most important as it will tell the site owner about their traffic and help with conversion information such as what source / medium / keyword to attribute for a Goal Conversion.
Google __utmv Cookie lasts "forever". It is a persistent cookie. It is used for segmentation, data experimentation and the __utmv works hand in hand with the __utmz cookie to improve cookie targeting capabilities.
Enabling these cookies is not strictly necessary for the website to work but it will provide you with a better browsing experience. You can delete or block these cookies, but if you do that some features of this site may not work as intended.
The cookie-related information is not used to identify you personally and the pattern data is fully under our control. These cookies are not used for any purpose other than those described here.
How to control cookies
You can control and/or delete cookies as you wish – for details, see aboutcookies.org. You can delete all cookies that are already on your computer and you can set most browsers to prevent them from being placed. If you do this, however, you may have to manually adjust some preferences every time you visit a site and some services and functionalities may not work.
How to contact us
Data Governance Manager
Paradigm Mortgage Services LLP
Birmingham International Park