• New York
  • Berlin
  • London
Privacy Policy

Who are we?

We are: Oakley Advisory Limited

Our contact details are as follows:

Mail: 3 Cadogan Gate, London, SW1X 0AS.
Email: info@oakleyadvisory.com
Telephone: +44 (0)20 7766 6900

Introduction

The protection of your privacy is important to us. We want to provide a safe and secure service where we deal with your personal information. This means information that identifies you personally such as your name, contact details, “know your client” information or data that can be linked with such information in order to identify you.
This privacy policy describes the types of personal information we collect from you, how we use the information, with whom we may share it, and the choices available to you regarding our use of the information.

When this privacy policy refers to ‘you’ or ‘your’, it is referring to:

• our clients, suppliers and other professional and business contacts;
• in relation to corporate finance activity upon which we are advising:
o the employees and officers of targets, acquirers and other advisers;
o the clients, suppliers and other persons with whom our client, a target or an acquirer has a business relationship; and
• visitors and users of www.oakleyadvisory.com and other websites or applications that may link to this privacy policy (together, the “Websites”).

The Websites are not intended for children and none of the other persons from whom we collect personal information are children. Accordingly, we do not knowingly collect information relating to children.

This privacy policy was last updated on 15 November 2021. It is kept under regular review and may be updated from time to time. Any changes we may make to our privacy policy in the future will be posted on this page and we may notify you of any important changes.

1. What personal information do we collect about you and how is it collected?

We collect and process the following types of personal information about you in the following ways:

Information you give us

In the course of a business relationship with clients, suppliers and other persons (or where such a relationship is being considered), we may collect the following types of information:

• personal and business contact information (such as name, postal and email address, and telephone number);

• “know your client” information (such as copies of passports, driving licences and utility bills, date and place of birth and National Insurance number). Where the business relationship is with a company or other legal entity, information of this type may be collected in relation to the entity’s shareholders, beneficial owners and directors;

• Information required to determine your classification as a client for regulatory purposes, including your financial resources, experience in the financial sector and professional qualifications in relation to investment business; and

• billing and payment information.
When providing corporate finance advice as part of a client engagement, we may collect the following types of information:

• personal and business contact information, details of shareholdings and other economic interests; and

• employment details, including benefits, contractual terms, compensation and period of service.
The types of information we collect on the Websites includes:

• personal and business contact information (such as name, postal and email address, and telephone number); and

• other personal information you submit to us via the Websites.

Information provided to us by parties to merger and acquisition activity

When providing corporate finance advice as part of a client engagement, the following types of information may be provided to us by the parties to merger and acquisition activity (or their advisers) for due diligence, communication or analysis purposes:

• personal and business contact information, details of shareholdings and other economic interests;

• employment details, including benefits, contractual terms, compensation and period of service; and

• other details of your commercial relationship with any party to merger and acquisition activity.

Information we collect automatically

When you visit our Websites or open our emails, we may collect certain information by automated means, such as cookies, web server logs, web beacons and JavaScript. The information we may collect in this manner includes your IP address, network location, browser characteristics, device characteristics, operating system, referring URLs, information on actions taken on our Websites, and dates and times of Website visits. Please see our Cookie Policy at oakleyadvisory.com for more details.

Telephone conversations held with our employees may be automatically recorded in accordance with our regulatory obligations.

Personal information which is sensitive or which relates to criminal convictions

We do not collect any special categories of personal data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data). Nor do we collect any information about criminal convictions and offences.

Your duty to inform us of changes

It is important that the personal information we hold about you is accurate and current. Please keep us informed as soon as possible if your personal information changes or is inaccurate during your relationship with us by using the contact details below.

2. How do we use your personal information?

We will only use your personal information when the law allows us to. Most commonly, we will use your personal information in the following circumstances:

(a) To provide a requested service or to perform a contract we will, or have, entered into with you.
(b) Where we need to comply with a legal or regulatory obligation.
(c) Where it is necessary for our legitimate interests (or those of a third party) (in particular –
communicating with you, improving our business and services to you, improving our Websites and preventing fraud or misuse of our Websites) and your interests and fundamental rights do not override those interests.
(d) Where we have your consent.

We set out below the specific ways in which we may use the personal information described in the section above entitled “What personal information do we collect about you and how is it collected?”. We may also use the information in other ways for which we provide specific notice at the time of collection.

We also identify below the legal basis we rely on to use your data in the manner described. Note that we may rely upon more than one lawful ground to use your personal information, depending on the specific purpose for which we are using it. Please contact us if you need details about the specific legal ground we are relying on to process your personal information where more than one ground has been set out below.

Information relating to corporate finance advisory services

Where we are providing advisory services in relation to mergers and acquisitions activity, we need information relating to the employees and officers of targets, acquirers and other advisers, together with information relating to other persons with whom a target has a business relationship, in order to provide our advice, including for due diligence, communication and analysis purposes.

Where we are providing corporate finance advisory services to retained clients, we need the information relating to the client’s shareholders, employees and officers, clients, suppliers and other professional and business contacts, in order to properly advise the retained client in accordance with our engagement.

In each case described above, our use of personal information is in accordance with our legitimate interests to fulfil our advisory mandates with clients.

Information collected in the course of a business relationship
We may use the personal information described above for the following purposes:

• where agreed by you, to send you promotional materials, newsletters and other communications and in certain circumstances where we have a legitimate interest in sending you such material by virtue of our business relationship with you and you have not objected to this;

• to respond to your enquiries in our legitimate interest;

• to perform data analyses in our legitimate interest;

• to communicate to you about, and manage your participation in, events and programmes in our legitimate interest;

• to operate, evaluate and improve our business in our legitimate interest;

• to identify and prevent fraud and other illegal activities in our legitimate interest and in some circumstances where we have a legal obligation to do so; and

• to enforce and comply with legal rights and obligations, including our terms and conditions
Information collected via Websites

Information collected via Websites

In addition, we use information collected through cookies and other automated means (within our legitimate interest to improve our Websites and provide you with a better browsing experience) for purposes such as:

• customizing visits to our Websites;

• managing our Websites and other aspects of our business.

We may also use the information described above in other ways for which we provide specific notice at the time of collection.

Balancing test

Where we rely on our legitimate interest as a ground for processing your personal information, we carry out a ‘balancing test’ to ensure that our processing is necessary and that our legitimate interests are not outweighed by your fundamental rights of privacy , before we go ahead with such processing. We keep a record of these balancing tests. You have a right to the information contained in these balancing tests on request, and can find out more by contacting us using the details below.

Change of purpose

We will only use your personal information for the purposes for which we collect it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If you wish to get an explanation as to how the processing for the new purpose is compatible with the original purpose, then please contact us.
If we need to use your personal information for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so.
Please note that we may process your personal information without your knowledge or consent, in compliance with the above rules, where this is required or permitted by law.

3. How long do we keep your personal information for?

We only retain your information for as long as it is necessary for us to use your information for the purposes described above. Please be advised that we may retain some of your information after we cease our relationship with you, for instance if it is necessary to meet our legal obligations, such as retaining the information for tax and accounting purposes or to comply with financial services regulations.

When determining the relevant retention periods, we will take into account factors including:

(a) the amount, nature and sensitivity of the information involved;
(b) the potential risk of harm from unauthorised use or disclosure of the information involved;
(c) our contractual obligations and rights in relation to the information involved;
(d) legal obligation(s) under applicable law to retain data for a certain period of time;
(e) our legitimate interest;
(f) statute of limitations under applicable law(s);
(g) (potential) disputes;
(h) if you have made a request to have your information deleted; and
(i) guidelines issued by relevant data protection authorities.

Otherwise, we securely erase your information once this is no longer needed.

4. Who do we share your personal information with?

We may share your personal information with the persons, and for the purposes, described below. Third parties with whom we share your personal information comply with similar, and equally stringent, undertakings of privacy and confidentiality as we do. We do not allow them to use your personal information for their own purposes and only permit them to use your personal information for specified purposes and in accordance with our instructions.

Corporate finance advisory services

Personal information obtained when providing our corporate finance advisory services may be shared with the other parties to the transaction, or other corporate activity, on which we are advising and with those parties’ legal, financial and other advisers.

Business processes

In connection with our day-to-day business processes, we share your personal information with third parties who perform functions on our behalf and who also provide services to us, such as professional advisors, IT consultants carrying out testing and development work on our business technology systems and function co-ordinators.

Sharing with group members and affiliates

We may share your personal information amongst our group members and affiliates in connection with the provision of services to you or for internal reasons, such as for business and operational purposes. Our group members and affiliates will only use your personal information for the purposes described in this privacy policy.

Other instances of sharing

If another entity acquires us or merges with us your personal information will be disclosed to such entity.

Where required we share your personal information with third parties: (i) to comply with a legal obligation; (ii) when we believe in good faith that an applicable law requires it; (iii) at the request of governmental authorities conducting an investigation; (iv) to verify or enforce contracts or applicable policies; (v) to detect and protect against fraud, or any technical or security vulnerabilities; (vi) to respond to an emergency; or (vii) otherwise to protect the rights, property, safety, or security of third parties, visitors to our websites, our businesses or the public.

5. What happens if you do not provide us with the information we request or ask that we stop processing your information?

If you do not provide the personal information that we request, or if you withdraw your consent for the processing of your personal information, then we will not be able to provide the services to you for which the information is required.

6. Do we make automated decisions concerning you?

Automated decisions are those made without human intervention that have a legal or other similarly significant effect on you. We do not carry out automated decision making.

7. Do we use Cookies to collect personal data on you?

To provide a better service to you on our Websites, we use cookies to collect your personal information when you browse. See our cookie policy at oakleyadvisory.com/cookie-policy for more information.

8. Do we transfer your personal information outside the UK?

We may transfer the personal information we collect about you between countries within the EU and between those EU member states and the UK. This is for the purposes of managing our business processes in an efficient manner, including through the use of EU based service providers. There are adequacy regulations in respect of the UK (from the perspective of the EU) and in respect of the EU (from the perspective of the UK). This means that the countries to which we transfer your data are deemed to provide an adequate level of protection for your personal information. If we transfer data to a country that has not been deemed to provide adequate data protection standards by the relevant authority, we always have security measures and approved standard contractual clauses or other adequate safeguards in place to protect your personal information. Please contact us if you would like more details about our safeguards for data transfers.

9. Data security

We have put in place appropriate security measures to prevent your personal information from being accidentally lost, used, or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal information to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal information on our instructions and they are subject to a duty of confidentiality.
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

10. What are your rights?

By law, you have a number of rights when it comes to your personal information. Please contact us using the contact details below to exercise any of your rights. Please note that these rights are not without restriction and may not apply in all circumstances. Further information and advice about your rights can be obtained from the data protection regulator in your country.

a. The right to object to processing

You have the right to object to certain types of processing, including processing for direct marketing (i.e. if you no longer want to be contacted with potential opportunities).

b. The right to be informed

You have the right to be provided with clear, transparent and easily understandable information about how we use your information and your rights. This is why we are providing you with the information in this policy.

c. The right of access

You have the right to obtain access to your information (if we’re processing it), and certain other information (similar to that provided in this privacy policy).
This is so you are aware and can check that we are using your information in accordance with data protection law.

d. The right to rectification

You are entitled to have your information corrected if it is inaccurate or incomplete.

e. The right to erasure

This is also known as ‘the right to be forgotten’ and, in simple terms, enables you to request the deletion or removal of your information where there’s no compelling reason for us to keep using it. This is not a general right to erasure; there are exceptions.

f. The right to restrict processing

You have rights to ‘block’ or suppress further use of your information. When processing is restricted, we can still store your information, but may not use it further. We keep lists of people who have asked for further use of their information to be ‘blocked’ to make sure the restriction is respected in future.

g. The right to data portability

You have rights to obtain and reuse your personal information for your own purposes across different services. For example, if you decide to switch to a new provider, this enables you to move, copy or transfer your information easily between our IT systems and theirs safely and securely, without affecting its usability.

h. The right to lodge a complaint

You have the right to lodge a complaint about the way we handle or process your personal information with your national data protection regulator.

i. The right to withdraw consent

If you have given your consent to anything we do with your personal information, you have the right to withdraw your consent at any time (although if you do so, it does not mean that anything we have done with your personal information with your consent up to that point is unlawful). This includes your right to withdraw consent to us using your personal information for marketing purposes.
We usually act on requests and provide information free of charge, but may charge a reasonable fee to cover our administrative costs of providing the information for:

• baseless or excessive/repeated requests, or
• further copies of the same information.

Alternatively, we may be entitled to refuse to act on the request.

Please consider your request responsibly before submitting it. We’ll respond as soon as we can. Generally, this will be within one month from when we receive your request but, if the request is going to take longer to deal with, we will come back to you and let you know.
We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal information (or to exercise any of your other rights). This is a security measure to ensure that personal information is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
Please note that you may exercise your rights in relation to personal information collected on the Websites at any time and may opt out of any and all marketing at any time, by contacting us using the contact details below.

11. How will we contact you?

We may contact you by phone, post, email or social media. If you prefer a particular contact method over another, please just let us know.

12. How can you contact us?

If you have any enquires you can contact us at: info@oakleyadvisory.com or by writing to us at:

Justine Crean
Oakley Advisory Limited
3 Cadogan Gate
London
SW1X 0AS

13. How to complain

You have the right to make a complaint at any time to the UK’s Information Commissioner’s Office (ICO) at https://ico.org.uk/concerns/handling/ or on +44 (0)303 123 1113. However, we would, appreciate the chance to deal with your concerns before you approach the ICO, so please contact us in the first instance.