Andrew Baker - Taxation Consultant

www.baktax.com
UK tax advice for residents worldwide – including Non-Resident Landlords, Pilots, Aircrew, Seafarers, Yacht Crew and Non-Doms
Telephone: +44 (0)1243 582926       Mobile: +44 (0)7795671536       Email: baktax@aol.com 

Privacy Policy

Privacy Policy
Client data protection policy

Data subjects consent to holding data

By signing the client facing documentation, and in particular, the client terms of business document, you, as a data subject are giving consent for Andrew Baker - Taxation Consultant  (ABTC) to hold data on yourself, your spouse/partner (if appropriate) and brief details of other family members that you might supply to ABTC on the fact finding and other forms.

This data may include sensitive personal data, which is defined as: ‘data consisting of racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic data, biometric data, data concerning health or data concerning a natural person's sex life or sexual orientation’.

You may withdraw ABTC’s permission to hold any data at any time by writing to ABTC’s usual business address. Withdrawal of such permission may severely limit the ability to assist you with taxation work. If this is the case, ABTC will advise you accordingly.

Use of data held

The data held may be used for the purposes of:

•    Advising you concerning the services that ABTC offers to its clients.
•    The processing of business that you conduct through ABTC. This may include the use of third party tax software which is used to produce tax returns and assist with tax calculations.
•    The ongoing reporting and administrative matters that arise regarding the business that you have conducted through ABTC.

For regulatory reasons, some of the data ABTC holds must be retained for 5 years and 10 months from the end of the tax year concerned. This is predominantly in relation to any potential further enquiries from the UK HM Revenue & Customs (HMRC).

You may request ABTC to either delete or transfer data to third parties of your choice (this may be subject to agency law limitations), should you so wish. In turn, ABTC will advise you whether such deletion or transfer will affect the services provided to you.

Confidentiality

ABTC treats the use and handling of your data very seriously and will not release data to any third party without your prior consent, save being instructed to do so by the UK HMRC or other government agency.

The rights of data subjects

As a data subject, your rights have recently been enshrined in EU and international law. They can be summarised as follows:

•    A right to require information about data being processed about you.
•    Access to the data in certain circumstances.
•    The right to have data that is wrong, corrected.
•    The right to restrict certain types of processing.
•    The right to object to data being used for direct marketing.
•    The right to ask for data to be sent to you, the data subject, in a format that is regarded as being standard and easily transferred.
•    The right to be forgotten. To have the data held on you erased, as a data subject. And to inform any interested parties this has been done. This is subject to the 5 year 10 months rule, as explained above.

Data security

Data will only be held by ABTC on a desktop computer or associated devices that are password protected and cloud service from a third party provider that is securely managed. ABTC will always ensure that data in paper form is held in a secure environment.

From a practical point of view ABTC will correspond with you via email which will generally not be subject to encryption. This is principally due to the difficulties with compatibility. Should there be any occasion where there is evidence that emails have gone astray or in particular there is evidence of potential hacking, ABTC will inform you without delay.

Data breaches

If the data held on your behalf has been subject to a data breach ABTC will inform you as soon as ABTC is aware of the problem.

Data breaches may occur due to technological breakdowns or where data has been transferred to a third party, either in error, or more unusually, through theft or misrepresentation.  

Please rest assured that ABTC take the management of your data very seriously and employ robust practical and technological solutions to protect it.

If ABTC become aware of any potential fraud surrounding your data held, ABTC will inform you without delay and will suggest methodologies you may be able to use to mitigate the situation. If necessary, ABTC will contact any third parties that have been accessed via ABTC to try to ensure that they do not deal with other parties purporting to be yourself.

The existence of Data Protection Agencies (DPA) varies from country to country. If there is a designated DPA in your country of residence, ABTC must report any data breaches to them within 72 hours of becoming aware of the problem.

The responsibilities of holding data

ABTC takes its responsibilities of holding data very seriously. Current international law requires that ABTC thoroughly understands its own business to ensure the control and safety of data at all times.

Any questions?

By its very nature, and indeed as a legal requirement, this policy needs to be brief and to the point. Please do not hesitate to raise any questions should further clarification be required as ABTC will be very pleased to assist you with your enquiry.


Information Commissioner’s Office registration reference: Z3052804
Anti-money laundering supervision registration number: XSML00000108468



Share by:
Back to Top