Privacy Notice
The TSB Rewards website is operated by The Marketing Lounge Partnership Limited ("us", "we", or "our") operate www.mlp.agency plus a number of websites on behalf of clients (the "Service").
UK Data Protection Laws require us to manage all personal information in accordance with the Data Protection Principles. In particular, we are required to process your personal information fairly, lawfully and in a transparent manner. This means that you are entitled to know how we intend to use any information you provide. You can then decide whether you want to give it to us in order that we may provide the product or service that you require. All our employees are responsible for maintaining customer confidentiality. We provide training and education to all employees to remind them about their obligations. In addition, our policies and procedures are regularly audited and reviewed.
We are committed to protecting your privacy whilst remaining compliant with The UK General Data Protection Regulation ("UK GDPR") / The UK Data Protection Act ("DPA18") and The EU GDPR.
Purpose & Legal Purpose for Processing
Providing our products and services When you apply for a product or service, and throughout our relationship, you’ll provide personal information to us. We’ll also collect certain information about you from others, including people who may be acting on your behalf. We will gather and process the type and amount of personal information that is relevant and required, and use this personal information to do all of the things you expect from us. And to meet our obligations to you under our Terms and Conditions, this includes:
• checking your identity and confirming that it is you
• managing your relationship with us
• providing you with products and services
• checking your credit reference and that you can afford products and services
• recording money in and out of your accounts
• telling you about important changes or developments to the features and operation of these products and services
• updating, consolidating and improving the accuracy of our records
• crime detection, prevention and prosecution
• carrying out financial reviews
• responding to your enquiries and complaints
• administering offers, competitions and promotions
• arrears and debt recovery activities
• reporting to regulators
• testing systems and processes We won’t be able to open or maintain a product or service if you fail to provide certain information.
Occasionally MLP receives names and addresses (including email addresses) of noncustomers who it’s thought may be interested in our products and services. In these circumstances, where we have your consent, we’ll let you know by email or post of the products or services we believe maybe of interest. If we don’t already have your consent, we’ll tell you about our products and services by post in accordance with our legitimate interests to promote our business. You have the right to opt out of this marketing at any time, by following a link on the email or by contacting our Data Rights Team.
Legitimate Interests
We have a legitimate interest in further processing the information which is provided by you or our client. We may also use your information for other specific legitimate purposes such as:
- To ensure that content from our site is presented in the most effective manner for you.
- To provide you with information, products or services that you request from us
- To carry out our obligations arising from any contracts entered into between you and us.
- To notify you about changes to our service.
- We may also use your data to provide you with information about goods and services which may be of interest to you from 3rd parties and we may contact you about these by email.
Information Collection & Use
While using our Service, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you ("Personal Data"). The data we collect about you may include, but is not limited to:
- Title
- Name (first, surname, other)
- Contact Address
- Email address
- Telephone numbers
- If you contact us, we may keep a record of that correspondence and for training and quality purposes
- Details of your visits to our site and the resources that you access.
Other optional identifiers
- Account Identifiers
- DOB
- Age
We may also collect information how the Service is accessed and used ("Usage Data"). This Usage Data may include information such as your computer's Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that you visit, the time and date of your visit or an email opened, the time spent on those pages, unique device identifiers and other diagnostic data.
Data Transfers & Safeguards
The UK and other EEA countries provide a high standard of data protection and privacy. However we may run your accounts and provide other services from centres outside the UK and EEA that do not have a similar standard of data protection laws. If so, we’ll require your personal information to be protected to at least UK standards. So we only transfer personal information to:
1) countries that have been confirmed as protecting personal information to UK and EU standards
2) companies in the USA certified as providing an adequate level of protection.
In other instances, we’ll put contractual commitments in place which make sure personal information is protected to UK and EU standards.
If you want to learn more about the specific countries to which we transfer personal data, or need a copy of the safeguards we have in place for particular countries, contact the Data Rights Team.
We may process payments through other financial institutions, such as banks and the worldwide payments system operated by the SWIFT organisation. For instance, this can happen if you make a CHAPS or foreign payment. These external organisations may process and store your personal information abroad and may have to disclose it to foreign authorities to help them in their fight against crime and terrorism. If these are based outside the UK and EEA, your personal information may not be protected to standards similar to those in the UK. However we’ll take steps, including using contractual commitments, to make sure that an adequate level of protection is provided.
Links To Other Sites & Services
Our Service may contain links to other sites that are not operated by us. If you click on a third-party link, you will be directed to that third party's site. We strongly advise you to review the Privacy Policy of every site you visit.
We have no control over and assume no responsibility for the content, privacy policies or practices of any third-party sites or services.
Data Use
We use the collected data for various purposes:
- To provide and maintain the Service
- To notify you about changes to our Service
- To allow you to participate in interactive features of our Service when you choose to do so
- To provide customer care and support
- To provide analysis or valuable information so that we can improve the Service
- To monitor the usage of the Service
- To detect, prevent and address technical issues
Legal Requirements
We may disclose your Personal Data if legally mandated:
- To comply with a legal obligation
- To protect and defend the rights or property of We
- To prevent or investigate possible wrongdoing in connection with the Service
- To protect the personal safety of users of the Service or the public
- To protect against legal liability
Security Of Data
Procedures for ensuring compliance with the principles Accountability principle We have put in place appropriate technical and organisational measures to meet the requirements of accountability. These include:
• The appointment of a Data Protection Officer who reports directly to our highest management level;
• Taking a ‘data protection by design and default’ approach to our activities;
• Maintaining documentation of our processing activities;
• Adopting and implementing data protection policies and ensuring we have written contracts in place with our data processors;
• Implementing appropriate security measures in relation to the personal data we process;
• Carrying out data protection impact assessments for our high risk processing. We regularly review our accountability measures and update or amend them when required.
Service Providers
We may employ third party companies and individuals to facilitate our Service ("Service Providers"), to provide the Service on our behalf, to perform Service-related services or to assist us in analysing how our Service is used.
Children's Privacy
Our Service does not address anyone under the age of 16 ("Children").
We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that your Children has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we take steps to remove that information from our servers.
Changes To Our Privacy Policy
We may update our Privacy Policy from time to time.
You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.
Contact Us
Questions, comments and requests regarding this privacy policy are welcome and should either be emailed to dco@mlp.agency or addressed to The Marketing Lounge Partnership Limited, The Cow Shed, Walnut Tree Farm, Lower Stretton, Cheshire, WA4 4PG