Information Commissioner’s Office Registration

Direct link to ICO website (opens in a new tab)

Data Protection Register – Entry Details
Registration Number: ZA148201

Date Registered: 27 October 2015
Registration Expires: 26 October 2018

Data Controller: Phoenix And Steele Ltd

Address:
20-22 Wenlock Road
London
N1 7GU
This register entry describes, in very general terms, the personal data being processed by:

Phoenix And Steele Ltd

Nature of work – Private investigation

Description of processing

The following is a broad description of the way this organisation/data controller processes personal information. To understand how your own personal information is processed you may need to refer to any personal communications you have received, check any privacy notices the organisation has provided or contact the organisation to ask about your personal circumstances.

Reasons/purposes for processing information

We process personal information to enable us to provide investigatory services, to maintain our own accounts and records and to support and manage our employees.

Type/classes of information processed

We process information relating to the above reasons/purposes. This information may include:

– personal details
– the investigation brief, results and related information
– lifestyle and social circumstances
– family details
– goods and services
– financial details
– education and employment details

We also process sensitive classes of information that may include:

– physical or mental health details
– racial or ethnic origin
– trade union membership
– religious or other beliefs

Who the information is processed about

We process personal information about:

– customers and clients
– relatives of clients
– guardians and associates of subjects
– witnesses
– the subjects of investigations
– business contacts
– advisers and other professional experts
– suppliers
– employees

Who the information may be shared with

We sometimes need to share the personal information we process with the individual themself and also with other organisations. Where this is necessary we are required to comply with all aspects of the Data Protection Act (DPA). What follows is a description of the types of organisations we may need to share some of the personal information we process with for one or more reasons.

Where necessary or required we share information with:

– financial organisations
– credit reference, debt collection and tracing agencies
– police forces
– private investigators
– government
– business associates and other professional bodies and advisers
– suppliers
– current, past or prospective employers
– education and examining bodies
– family, associates or representatives of the person whose personal data we are processing

Undertaking research

Personal information is also processed in order to undertake research. For this reason the information processed may include name, contact details, family details, lifestyle and social circumstances, financial details, good and services. The sensitive types of information may include physical or mental health details, racial or ethnic origin and religious or other beliefs. This information is about survey respondents. Where necessary or required this information may be shared with customers and clients, agents, service providers, survey and research organisations.

Consulting and advisory services

Information is processed for consultancy and advisory services that are offered. For this reason the information processed may include name, contact details, family details, financial details, and the goods and services provided. This information may be about customers and clients. Where necessary this information is shared with the data subject themselves, business associates and other professional advisers, current, past or prospective employers and service providers.

Transfers

It may sometimes be necessary to transfer personal information overseas. When this is needed information is only shared within the European Economic Area (EEA). Any transfers made will be in full compliance with all aspects of the data protection act.