Our Services
Privacy Notice

Privacy Notice

1. Introduction

Asertis is committed to protecting and respecting your privacy. We wish to be transparent on how we process your information.

In this Privacy Notice, your information is sometimes called “personal data”. We may also sometimes collectively refer to handling, collecting, protecting, and storing your personal data as “processing” such personal data.

In this Privacy Notice the term “Data Protection Legislation” means the Data Protection Act 2018 the UK General Data Protection Regulation (UK GDPR) and the European Union General Data Protection Regulation (EU GDPR) as it forms part of the applicable law; together with all other applicable legislation relating to privacy or data protection.

For individuals based in the United Kingdom (UK) all personal data will be held and used in accordance with the Data Protection Act 2018,  and the UK GDPR, where we deal with individuals located within the European Union personal data will also be held in accordance with the EU GDPR.

In June 2021 the EU Commission adopted adequacy decisions for the UK GDPR and the Law Enforcement Directive (LED). This means it deems the UK to have ‘essentially equivalent’ data protection to the EU.  This decision is expected to last until June 2025, and means that personal data from the EU can flow freely to the UK without additional safeguards, with data relating to immigration control being the only specific exclusion.

It is the intention of this Privacy Notice to set out the bases on which we gather, use, process and disclose any personal data we collect about you, or that you provide to us.

2. Who we are

We are Asertis Ltd , ( Unless otherwise stated Asertis Ltd (Asertis) is the data controller for the purposes of Data Protection Legislation.

Asertis Ltd is part of a group structure  which also includes the following entities, each is registered in England and Wales and with the ICO:

1. Asertis Ltd (ICO Reference ZA662446)
2. Asertis SPV1 Ltd (ICO Reference ZB293675)
3. Asertis SPV2 Ltd (ICO Reference ZB293678)
4. Asertis SPV3 Ltd (ICO Reference ZB293680)
5. Asertis SPV4 Ltd (ICO Reference ZB293685)

All of the above entities have their registered office at:

100 Barbirolli Square
Manchester
M2 3AB

Collectively referred to as “our Group”, “we” or “us” in this policy), Our Group also includes our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 1159 of the UK Companies Act 2006.

Under the Data Protection Legislation, Asertis  sometimes act as a data controller where we are responsible for ensuring compliance with Data Protection Legislation, and sometimes as a data processor under the authority of another organisation as Data Controller. This privacy notice applies to personal information processed where we act as a Data Controller.

The website (https://asertis.co.uk/) is owned and operated by Asertis Ltd.

3. Legal bases for processing personal data

The Data Protection Legislation sets out a number of different reasons for which a company may collect and process your personal data.

We will only process your personal data in line with the relevant regulations and law. As a data controller, Data Protection Legislation permits us to use the following grounds for processing personal data:

  • Legitimate interests;
  • Compliance with our legal obligations;
  • Fulfilment of a contract;
  • Consent; and / or
  • Performance of a task carried out in the public interest, such as assisting a regulatory authority’s investigation of a criminal offence.

Our primary grounds for handling data are to pursue our legitimate interests in a way which might be reasonably expected as part of our running our business.   Data Protection Legislation allows the use of personal data where our legitimate interests are not outweighed by your interests, fundamental rights, or freedoms as the data subject.

Additionally, we may use personal data to comply with our contractual obligations we have with you or others, or to enforce our agreements.

Whenever you have given us your consent to use your personal data, you have the right to change your mind at any time and withdraw that consent. However, this will not affect the lawfulness of any processing carried out before you withdraw your consent.

Our principal business is litigation funding where we invest in a range of claims and disputes, covering insolvency, commercial litigation, arbitration, group actions, securities litigation and enforcement.

In Insolvency funding, Asertis supports claims from Insolvency Practitioners or insolvent estates to realise value for the creditor(s).  The claim may be assigned to us, or we may act as a third-party funding provider.  We act as data controller in relation to assigned claims, which requires us to understand individuals linked to the insolvent estate and their circumstances to conduct ourselves in an appropriate way.  This privacy notice describes our data processing activities in assigned cases.

Whenever Asertis acts as third-party funding provider, we process personal data as a data processor under the explicit authority of the data controller, who is usually the organisation seeking funding on behalf of a claimant.  In these cases, it is their privacy notice which will provide details of the data processing activities.

4. INDIVIDUALS RELATING TO CLAIMS

a. Types of personal data we may process

For us to run and administer our business, we need to process your personal data.

Personal information or personal data, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).

Types of personal data that we process may include:

  • Individual details – Name, address, other contact details (e.g., email and telephone numbers), gender, marital status, date and place of birth, nationality, employer, job title and employment history, and family details, including their relationship to you.
  • Financial detail –details on any debts or assets you may have.
  • Court judgments, decrees, and administration orders
  • Bankruptcies, Individual Voluntary Arrangements, and similar events
  • Identification details – Identification numbers issued by government bodies or agencies, including your passport number, tax identification number

 

b. Special Categories of personal data

Some personal data that we hold (such as details relating to physical or mental health or condition, ethnicity, criminal or alleged criminal offences) may be deemed special categories of personal data for the purposes of Data Protection Legislation. We may seek your consent to process special categories of personal data; however certain special categories of personal data (such as that relating to alleged offences) may be necessary for us to process to comply with our legal obligations.

Where we process special category personal data, we take additional measures to protect the data.

 

c. Where we collect personal data from

We may collect your personal data from various sources, including

  • Law Firms, Insolvency Practitioners and other third parties related to them
  • Information you have provided to us
  • Publicly available data sources
  • Credit Reference Agencies

 

d. Who we share personal data with

To conduct our business and to comply with legal obligations imposed on us, we may share your information with third party companies, agents, contractors, service providers or related companies.

We may also share your personal data with any member of our Group. We will share your personal data within our Group, only to the extent required and with the appropriate agreements in place, so that we can provide you with the relevant services,

We may also use third parties to perform tasks on our behalf, for example IT service providers.

Where personal data is shared with an IT service provider, other service provider or other third-party suppliers, we work closely with them to ensure that your personal data is secure and protected at all times. Our contracts with third parties make it clear that they must hold personal data securely, abide by the principles and provisions of Data Protection Legislation, and only use information as we instruct them to. In all instances where we disclose your information to third parties, we will ensure that your information is appropriately protected. If we stop using their services, any of your personal data held by them will either be deleted or rendered anonymous.

If we are required to do so by law, or in performance of our legal obligations, we may share your data with courts, law enforcement agencies or other governmental agencies.

5. Website Users

a. Types of personal data we may process

We may collect information from you through our website including but not limited to:

  • Your name and business name
  • Your contact information including email address, phone numbers and addresses
  • Other information supplied in online forms

We require this information to understand your needs and provide you with a better service.

 

b. How we use cookies

A cookie is a small file which asks permission to be placed on your computer’s hard drive. Once you agree, the file is added and the cookie helps analyse web traffic or lets you know when you visit a particular site. Cookies allow web applications to respond to you as an individual. The web application can tailor its operations to your needs, likes and dislikes by gathering and remembering information about your preferences.

We use traffic log cookies to identify which pages are being used. This helps us analyse data about web page traffic and improve our website to tailor it to customer needs. We only use this information for statistical analysis purposes and then the data is removed from the system.

Overall, cookies help us provide you with a better website, by enabling us to monitor which pages you find useful and which you do not. A cookie in no way gives us access to your computer or any information about you, other than the data you choose to share with us.

You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of the website.

 

c. Links to other websites

Our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.

 

d. Who we share personal data with

We will not sell, distribute, or lease your personal information relating to website usage to third parties unless we have your permission or are required by law to do so.

We may use Information Technology Processors to perform tasks on our behalf, for example IT service providers.

6. Business Contacts

For us to run our business, we develop business relationships with individuals at law firms, insolvency practitioners and brokers who may be seeking litigation funding now or in the future or may previously have worked with us or one of our employees.

 

a. Types of personal data we may process

Types of personal data that we process for Business Contacts may include name, address, contact details (e.g., email and telephone numbers), gender, employer, job title and employment history.

 

b. Where we collect personal data from

We may collect your personal data from various sources, including

  • Law Firms, Insolvency Practitioners and other third parties related to them
  • Information you have provided to us
  • Publicly available data sources

 

C. Who we share personal data with

To conduct our business and to we may share your information with third party companies, agents, contractors, service providers or related companies.

We may use Information Technology Processors to perform tasks on our behalf, for example IT service providers.

 

d. Marketing

As a Business Contact, Asertis may like to send you information about services that we offer or an invitation to an event that we have arranged.  If you have given your consent to receive marketing emails you can withdraw this at any time, or if we are relying on our legitimate interests to send you marketing you can object.  If you no longer wish to be contacted for marketing purposes, you may reply to the email correspondence directly, or contact us at our registered office:

100 Barbirolli Square
Manchester
M2 3AB

7. How we store your data

Asertis securely stores your data using a range of measures.  We require our employees and any third parties who carry out work on our behalf to comply with appropriate compliance standards including obligations to protect any personal information.

8. How long we keep personal data

We will only keep personal data and other information for as long as it is necessary either to perform our obligations or to comply with any legal obligations to which we are subject. Personal data found to be irrelevant or excessive will be removed or destroyed at the earliest opportunity. When personal data is deleted, this will be done safely such that the data is irrecoverable.

As a rule, for legal and best practice reasons we are required to keep your information for 6 years after the date on which our relationship with you ends.

In some circumstances we will anonymise your personal data (so that it can no longer be associated with you) for analytical or statistical purposes, in which case we may use this information indefinitely without further notice to you.

9. Your data protection rights

a. Right to Access

You have the right to access a copy of the personal data we hold.  Any requests made to Asertis will be carefully considered; dealt with promptly and, unless special circumstances apply, a response will be provided in not more than a month from the request. If we are unable to provide the data, you require in this time period (e.g., due to the complexity) we may extend the period to provide the data but will explain the reason why. There is no charge for the request to access your data.

 

b. Right to Rectification

We aim to ensure the accuracy of all personal data that we hold.  You have the right to have your personal data corrected or completed if you feel we have incorrect data.  If you would like to correct data, please contact us.

 

c. Rights to object or request erasure

You have the right to object to our use of your personal information, or to ask us to delete, remove, or stop using your personal information if there is no need for us to keep it. This is known as the ‘right to object’ and the ‘right to erasure’, or the ‘right to be forgotten’. Section 3 of this notice explains our bases for processing your data and why we need to process your personal data in relation to the activities we undertake. This is why your right to object doesn’t automatically lead to deletion of your information, but we will carefully consider every request we receive and if we can’t delete your information, we shall inform you and explain why we cannot.

 

d. Right to restrict processing

In some circumstances, you can ask us to restrict how we use your personal data. This is not an absolute right, and your personal data may still be processed where certain grounds exist. These grounds include:

  • With your consent;
  • For the establishment, exercise, or defence of legal claims;
  • For the protection of the rights of another natural or legal person;
  • For reasons of important public interest.

Only one of these grounds needs to be demonstrated to continue data processing. We will carefully consider and respond to requests we receive, including assessing the applicability of these exemptions.  If we believe an exemption applies, we shall inform you and explain.

 

e. Rights related to Automated Decision Making

We do not currently use your personal information to make solely automated decisions.

You have the right to not be subject to solely automatic decisions (i.e. decisions that are made about you by computer without any human input) in relation to processes that have a legal or similarly significant effect on you.

If we make a solely automated decision which produces a legal effect or significantly affects you., you will always be informed.  You will be entitled to have a person review the decision before further action is taken.

When you request to exercise your rights:

You will not have to pay a fee to exercise any of the rights listed above. However, we may charge a reasonable fee, if your request is clearly unfounded or excessive, including where requests are repetitive. Alternatively, we could refuse to comply with your request in these circumstances.

We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data or to exercise any of your other rights. This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.

We try to respond to all legitimate requests within one month. Occasionally it could take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.

10. Security

We are committed to ensuring that your information is secure. To prevent unauthorised access or disclosure, we have put in place suitable physical, electronic, and managerial procedures to safeguard and secure the personal data we process.

11. CHANGES TO THIS PRIVACY NOTICE

If our Privacy Notice changes in any way, we will place an updated version on this page. Regularly reviewing this page will ensure that you are always aware of how we process personal data.  The current version fully replaces all previous Privacy Notices.

12. HOW CAN WE HELP

If you have any questions about Asertis’ privacy policy, the data we hold on you, or you would like to exercise one of your data protection rights, please do not hesitate to contact us our registered office:

100 Barbirolli Square
Manchester
M2 3AB

T: +44 (0)161 820 7111

E: contact@asertis.co.uk

For further information on data protection please visit the Information Commissioner Office (ICO) website.

The Information Commissioner Office regulates data protection. If you feel that your data has not been handled correctly, or you are unhappy with our response to any requests you have made to us regarding the use of your personal information, you have the right to lodge a complaint with the Information Commissioner’s Office.

You can contact them by calling 0303 123 1113 or visit the website at https://ico.org.uk/.