Skip to content

Privacy Notice

This Notice explains how we use your data on our website.

If you have applied for or taken out a product with us, please refer to the application form, or the product terms and conditions for further information. If you have enquired or applied for a vacancy, please refer to the Recruitment Privacy Notice

Redwood Bank (we, us, our) are committed to protecting and respecting your privacy. 

This Notice (together with our terms of use, your product documentation (if applicable) and any other documents referred within those documents) sets out the basis on which any personal data we hold about you will be processed. Please ensure you read the below carefully to understand how we will process your data. If you set up an account with us, further information on how your data will be processed will be provided to you within the application process. Please note, we can only process your personal information or information about individuals connected to you if we have a legal reason to do so.

Redwood Bank will be responsible for the processing of your information, unless otherwise stated, and for the purposes of the Data Protection Legislation, will be the Controller. 

For further information on how your information is used, please contact our Data Protection Officer by email to [email protected] , by phone on 01925 594076 or in writing to Data Protection Officer, Redwood Bank Limited, 101, The Nexus Building, Broadway, Letchworth Garden City, SG6 3TA. 

Information we collect

We will collect and process the following data about you: 

  • Information you give us. This is information about you that you give us by filling in forms on our site (our site) or by corresponding with us by phone, e-mail or otherwise. It includes information you provide when you register to use our site, subscribe to our service,  submit a question and if you report a problem with our site. The information you give us may include your name, address, e-mail address, business details and phone number, financial information or information about a third party. If you provide information about a third party, you must make them aware that you have done so and advise them of this privacy notice. ​

  • Information we collect about you. ​When you visit our site, we will automatically collect the following information:

    • Technical information, including the Internet protocol (IP) address used to connect your device to the Internet, your login information, browser type and version and time zone setting. 

    • Information about your visit, including the full Uniform Resource Locators (URL), clickstream to, through and from our site (including date and time), products you viewed, or searched for page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the page.

  • Information we receive from other sources. If someone else has submitted information about you, it will be processed in accordance with the detail of this notice. In addition, if you apply for an account with us, we will receive information from third parties which will assist us in verifying the information which we receive, further detail is included in the application for or product terms and conditions.
    Special categories and criminal offence data. It is unlikely that we will process special categories of data following a visit to our website, however If you apply for an account with us, in order to comply with our legal and regulatory requirements we will need to verify the information provided. We will utilise third party services to conduct various searches. These searches may return results which highlight criminal convictions, offences and alleged offences. The processing of this data is required to ensure compliance with our regulatory obligations and is deemed to be in the substantial public interest. In limited circumstances we may receive information containing racial or ethnic origin, religious beliefs, political opinions or physical or mental health information. We will only process this data when we have your explicit consent to do so, if it is in your vital interests, if it is deemed to be in the substantial public interest or if the data has been made public by a relevant individual.  


Our website uses cookies to distinguish you from other users of our website. This helps us to provide you with a good user experience and allows us to improve our site. For detailed information on cookies and how they are used, please see our cookie policy

How information is used

The information which we may obtain from your visit to our website is limited. We may use the information in the following ways: 

Purpose/Activity Lawful basis for processing including basis of legitimate interest
To register you as a new customer following receipt of an enquiry Performance of a contract with you
To carry out our obligations arising from any contracts entered into between you and us and to provide you with the information, products and services that you request from us.  You should note that more details are provided if you open an account with us (a) Performance of a contract with you 
(b) Necessary for our legitimate interests (to recover debts due to us)
To manage our relationship with you which will include:
(a) Notifying you about changes to our terms or privacy policy
(b) Asking you to leave a review or take a survey
(c) Responding to questions and queries
(a) Performance of a contract with you 
(b) Necessary to comply with a legal obligation
(c) Necessary for our legitimate interests (to keep our records updated and to study how customers use our products/services)
To enable you to partake in a prize draw, competition or complete a survey (a) Performance of a contract with you 
(b) Necessary for our legitimate interests (to study how customers use our products/services, to develop them and grow our business)
To administer and protect our business and this website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data) (a) Necessary for our legitimate interests (for running our business, provision of administration and IT services, network security, to prevent fraud and in the context of a business reorganisation or group restructuring exercise)
(b) Necessary to comply with a legal obligation
To deliver relevant website content and advertisements to you and measure or understand the effectiveness of the content we serve to you Necessary for our legitimate interests (to study how customers use our products/services, to develop them, to grow our business and to inform our marketing strategy)
To use data analytics to improve our website, products/services, marketing, customer relationships and experiences Necessary for our legitimate interests (to define types of customers for our products and services, to keep our website updated and relevant, to develop our business and to inform our marketing strategy)
To make suggestions and recommendations to you about goods or services that may be of interest to you (this will only be the case if you are a customer, or have expressed an interest in our products) Necessary for our legitimate interests (to develop our products/services and grow our business)

























Who we may share your information with

In specified scenarios, we may share your information with:

•    Any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, or any successor company.
•    Selected third parties including:
•    business partners, suppliers and sub-contractors for the performance of any contract we enter into with them or you;
•    analytics and search engine providers that assist us in the improvement and optimisation of our site;
•    where you apply for an account, please see the product terms and conditions. 

We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.

We may disclose your personal information to third parties 

•    In the event that we sell or buy any business or assets, in which case we will disclose your personal data to the prospective seller or buyer of such business or assets.
•    If Redwood Bank or substantially all of its assets are acquired by a third party, in which case personal data held by it about its customers will be one of the transferred assets.
•    If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our terms of use and other agreements; or to protect the rights, property, or safety of Redwood Bank, our customers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.

Storage of your personal Data 

All personal data supplied to Redwood Bank via the website will be stored within the UK or the EEA and will be held securely. The data will only be held for a specified period of time which will be in line with regulatory requirements or best business practice. 

Your rights 

In accordance with the Data Protection Legislations, Individuals are provided with various rights:
•    The right to request access to your personal information; 
•    In specified circumstances, the right to request erasure, rectification or cessation of processing; 
•    The right to data portability;
•    Where processing is based on consent, you have the right to withdraw consent.  Please note, your withdrawal of consent will not affect the lawfulness of processing performed prior to withdrawal of your consent; and
•    The right to complain directly to the supervisory authority. For the UK, this is the Information Commissioner's Office (ICO) -

You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we could refuse to comply with your request in these circumstances.

We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.

We try to respond to all legitimate requests within one month. Occasionally it could take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated. 

Third party links 

Our site may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy notice and that we do not accept any responsibility or liability for these. Please check this information before you submit any personal data to these websites.

Changes to this privacy notice 

Any changes we make to our privacy notice in the future will be posted on this page and, where appropriate, notified to you by e-mail. Please check back frequently to see any updates or changes to our privacy notice.

Contact details 

If you have any questions on how your data is processed or any of the information supplied in this notice you can contact the Data Protection Officer via the contact details at the beginning of this notice.

This notice was last reviewed June 2022.