Privacy Notice

Updated 29th April 2026

The following information constitutes our privacy notice. In this document, "we", "our", or "us" refer to YOUR AGENT Ltd.

Our registered office is at Suite 2, Sears House, Alamein Road, Swansea, SA1 2HY.

You can contact us by e-mail about privacy at info@your-agent.co.uk.

Introduction

1. This is a notice to inform you of our policy about all information that we record about you. It sets out the conditions under which we may process any information that we collect from you, or that you provide to us. It covers information that could identify you (“personal information”) and information that could not. In the context of the law and this notice, “process” means collect, store, transfer, use or otherwise act on information.
2. We take seriously the protection of your privacy and confidentiality. We understand that you are entitled to know that your personal data will not be used for any purpose unintended by you, and will not accidentally fall into the hands of a third party.
3. We undertake to preserve the confidentiality of all information you provide to us, and hope that you reciprocate.
4. Our policy complies with UK law accordingly implemented, including that required by the EU General Data Protection Regulation (GDPR).
5. The law requires us to tell you about your rights and our obligations to you in regards to the processing and control of your personal data. We do this now, by requesting that you read the information provided at www.knowyourprivacyrights.org
6. Except as set out below, we do not share, or sell, or disclose to a third party, any information collected through our website or otherwise.

Personal information we may process

We aim to process data, whether personal data or not, only to the extent necessary for us to provide our clients with our services and for other agreed purposes.

Often we may aggregate information in a general way and use it to provide class information. If we use it for this purpose, you as an individual will not be personally identifiable.

Personal information that we may process may include:

Client information

If you are a client, personal information may include your identity and contact information, information about your family members, and financial information.

We may also process information deemed to be “special category” information, such as your race or ethnic origin, and information about criminal records.

In most cases, your personal data will have been provided to us by you. However, with your consent, or if it is necessary in order to provide you with our services, we may have obtained your personal data from a third party source.

Related third party information

We may process your personal data if you have a personal or business connection with any of our clients or suppliers. For example, you may be a family member, business partner, other adviser, supplier or transaction counterparty.

The data we process may include contact information, information about your business activities, and financial information such as that relating to income and expenses.

We may be given your personal data by our clients or suppliers, or by third parties acting on the instructions of a client or a supplier.

Supplier information

If you supply our business with goods or services, including subcontracted services that we supply to our clients, then we may process your personal information. However, we do so only to the extent necessary to contract with you.

The bases on which we process information about you

The law requires us to determine under which of six defined grounds we process different categories of your personal information, and to notify you of the basis for each category.

If a basis on which we process your personal information is no longer relevant then we shall immediately stop processing your data.

If the basis changes then if required by law we shall notify you of the change and of any new basis under which we have determined that we can continue to process your information.

7. Information we process because we have a contractual obligation with you

When a contract is formed between you and us, in order to carry out our obligations under that contract we must process personal information.

As examples, a contract between us could be formed by:

• • your signing an agreement to allow us to act as agent for you
  • your signing an agreement to allow us to carry out services required in order to let or to buy a property
  • your agreement to our terms and conditions when you register on our website

We use your information in order to provide you with our services under that contract, for example:

• • to help you find properties, prospective buyers or tenants
  • to verify your identity for security purposes
  • to carry out credit checks and to obtain personal references
  • to provide other parties with whom you have expressed interest to contract and their representatives with sufficient information to make a decision as to whether to enter into a contract with you, and then to enter into a contract with you
  • to negotiate on your behalf
  • to provide you with advice
  • to pay rent we have collected into your bank account

We process this information on the basis there is a contract between us, or that you have requested we use the information before we enter into a legal contract.

We shall continue to process this information until the contract between us ends or is terminated by either party under the terms of the contract.

8. Information we process with your consent

Only when you have given us explicit permission to do so, do we process your personal information under the basis of consent.

For example, you might have agreed that we may track your actions on our website or pass your name and contact information to selected associates whom we consider may provide services or products you would find useful.

We continue to process your information on this basis until you withdraw your consent or it can be reasonably assumed that your consent no longer exists.

You may withdraw your consent at any time by telling us. However, if you do so, you may not be able to use our services further.

9. Information we process for the purposes of legitimate interests

We may process information on the basis there is a legitimate interest of doing so, either to you or to us.

Where we process your information on this basis, we do after having given careful consideration to:

• • whether the same objective could be achieved through other means
  • whether processing (or not processing) might cause you harm
  • whether you would expect us to process your data, and whether you would, in the round, consider it reasonable to do so

For example, we may process your data on this basis for the purposes of:

9. • record-keeping for the proper and necessary administration of our business
   • responding to communication from you to which we believe you would expect a response
   • protecting and asserting the legal rights of any party
   • insuring against or obtaining professional advice that is required to manage business risk
   • protecting your interests where we believe we have a duty to do so
10. Information we process because we have a legal obligation

Sometimes, we must process your information in order to comply with a statutory obligation.

For example, we may be required to give information to legal authorities if they so request or if they have the proper authorisation such as a search warrant or court order.

This may include your personal information.

Specific uses of information you provide to us

11. Communicating with you

When you contact us, whether by telephone, through our website or by e-mail, we collect the data you have given to us in order to reply with the information you need.

We record your request and our reply in order to increase the efficiency of our business.

We keep personally identifiable information associated with your message, such as your name and email address so as to be able to track our communications with you to provide a high quality service.

12. Dealing with complaints

When we receive a complaint, we record all the information you have given to us.

We use that information to resolve your complaint.

If your complaint reasonably requires us to contact some other person, we may decide to give to that other person some of the information contained in your complaint. We do this as infrequently as possible, but it is a matter for our sole discretion as to whether we do give information, and if we do, what that information is.

If the complaint relates to information on our website and we feel it is justified or if we believe the law requires us to do so, we shall remove the content while we investigate.

If we think your complaint is vexatious or without any basis, we shall not correspond with you about it.

We may compile statistics from information relating to complaints to assess the level of service we provide, but not in a way that could identify you or any other person.

13. Office visitors

Closed circuit television (CCTV) is used at our premises and surrounding area in order to deter and to help investigate crime.

We process personal information including images and behaviours on the basis of legitimate interests.

This information may be shared with the data subject, our employees and agents and the police.

Our landlords and their agents may also use CCTV.

14. Customer relationship management system

We use a customer relationship management (CRM) system to process personal data.

Data subjects include existing, former and prospective clients and their agents and representatives.

Personal data that we process includes the name of the person, information about his or her employer and job position, and contact information.

We process this data on the basis of consent for purposes that include:

• managing and developing our business or services
• informing clients and prospective clients about our services
• determining relationships between clients and our partners and employees
• analysing whether we provide clients with a high level of service

We do not sell or share any personal data with third parties unless we have explicit consent to do so from the data subject.

15. Job applications and employment

If you send us information in connection with a job application, we may keep it for up to three years in case we decide to contact you at a later date.

If we employ you, we collect information about you and your work from time to time throughout the period of your employment. This information will be used only for purposes directly relevant to your employment. After your employment has ended, we will keep your file for six years before destroying or deleting it.

Use of information we collect through automated systems when you visit our website

16. Cookies

Cookies are small text files that are placed on your computer's hard drive by your web browser when you visit any website. They allow information gathered on one web page to be stored until it is needed for use on another, allowing a website to provide you with a personalised experience, and the website owner with statistics about the actions you have taken.

Some cookies may last for a defined period of time, such as one day or until you close your browser. Others last indefinitely.

Your web browser should allow you to delete any you choose. It also should allow you to prevent or limit their use.

Our website uses cookies. They are placed by software that operates on our servers, and by software operated by third parties whose services we use.

When you first visit our website, we ask you whether you wish us to use cookies. If you choose not to accept them, we shall not use them for your visit except to record that you have not consented to their use for any other purpose.

If you choose not to use cookies or you prevent their use through your browser settings, you will not be able to use all the functionality of our website.

We use cookies in the following ways:

16. 1. to track how you use our website
    2. to record whether you have seen specific messages we display on our website
    3. to provide a consistent personalised experience across our site
    4. to record your answers to surveys and questionnaires on our site while you complete them
    5. to record the conversation thread during a live chat with our support team
17. Personal identifiers from your browsing activity

Requests by your web browser to our servers for web pages and other content on our website are recorded.

We record information that could identify your location, such as your IP address. We also record information reported by the software you are using to browse our website, such as the type of computer or device and the screen resolution.

We use this information in aggregate to assess the popularity of the webpages on our website and how we perform in providing content to you.

If combined with other information we know about you from previous visits, the data possibly could be used to identify you personally, even if you are not signed in to our website. However, our policy is not to use such data for the purpose of personal identification.                

18. Our use of re-marketing

Re-marketing involves placing a cookie on your computer when you browse our website in order to be able to serve to you an advert for our services when you visit some other website.

An advertisement that you see for our services may have been shown because we have used a third party to provide us with re-marketing services. However, we advertise in many places and an advertisement shown for our services may be coincidental to your visit to our website. 

Disclosure and sharing of your information

19. Information we obtain from third parties

Although we do not disclose your personal information to any third party (except as set out in this notice), we sometimes receive data that is indirectly made up from your personal information from third parties whose services we use.

No such information is personally identifiable to you.

20. Third party advertising on our website

Third parties may advertise on our website. In doing so, those parties, their agents or other companies working for them may use technology that automatically collects information about you when their advertisement is displayed on our website.

They may also use other technology such as cookies or JavaScript to personalise the content of, and to measure the performance of their adverts.

We do not have control over these technologies or the data that these parties obtain. Accordingly, this privacy notice does not cover the information practices of these third parties.

21. Data may be processed outside the European Union

Our websites are hosted in the United Kingdom.

We may also use outsourced services in countries outside the European Union from time to time in other aspects of our business.

Accordingly data obtained within the UK or any other country could be processed outside the European Union.

We use the following safeguards with respect to data transferred outside the European Union:

1. 1. the processor is within the same corporate group as our business or organisation and abides by the same binding corporate rules regarding data processing.
   2. the data protection clauses in our contracts with data processors include transfer clauses written by or approved by a supervisory authority in the European Union [, specifically that in the country of …]
   3. we comply with a code of conduct approved by the supervisory authority in the United Kingdom.
   4. we are certified under an approved certification mechanism as provided for in the GDPR.

Management of your information

22. Access to your personal information
    1. At any time you may review or update personally identifiable information that we hold about you.
    2. To obtain a copy of the information we hold about you, please contact us.
    3. After receiving the request, we will tell you when we expect to provide you with the information, and whether we require any fee for providing it to you.
23. Removal of information

If you wish us to remove personally identifiable information from our website, you should contact us.

This may limit the service we can provide to you.

24. Verification of your identity

When we receive any request to access, edit or delete personal identifiable information we shall first take reasonable steps to verify your identity before granting you access or otherwise taking any action. This is important to safeguard your information.

25. Retention period for personal data

Except as otherwise mentioned in this privacy notice, we keep your personal information only for as long as required by us:

1. 1. to provide you with the services you have requested;
   2. to comply with other law, including for the period demanded by our tax authorities;
   3. to support a claim or defence in court.

Other matters

26. If you are not happy with our privacy policy
    1. If you are not happy with our privacy policy or if you have any complaint then you should tell us.
    2. If a dispute is not settled then we hope you will agree to attempt to resolve it by engaging in good faith with us in a process of mediation or arbitration.
    3. If you are in any way dissatisfied about how we process your personal information, you have a right to lodge a complaint with the Information Commissioner's Office. This can be done at https://ico.org.uk/concerns/
27. Compliance with the law

Our privacy policy has been compiled so as to comply with the law of every country or legal jurisdiction in which we aim to do business. If you think it fails to satisfy the law of your jurisdiction, we should like to hear from you.

28. Review of this privacy policy

We may update this privacy notice from time to time as necessary. The terms that apply to you are those posted here on our website on the day you use our website. We advise you to print a copy for your records.

If you have any question regarding our privacy policy, please contact us.

 

YOUR AGENT’s Equality and Diversity Policy

1. In the work place

Equality and diversity are important principals to YOUR AGENT and the should be part of everything we do both within the workplace and how we interact with our stakeholders.

2. In the work place

2.1       It is the Company's policy to provide equal opportunities in employment irrespective of race, ethnic or national origin, sex, mental or physical disabilities, age, marital status, actual or perceived sexual orientation, religion or belief.

2.2       This Policy applies to all Employees and to all applicants for employment.

2.3       The company is committed to the promotion of equal opportunities and to ensure that the human resources, talent and skills of all Employees are maximised.

2.4       The Company's policy is to treat all Employees with respect and dignity, and to ensure that Employees are not victimised or subjected to sexual or racial harassment, or discrimination on the grounds outlined above.

2.5       The Company seeks to fulfil this commitment to equal opportunities through the application of Policies and Procedures, which are consistent and equitable, and recognise the expertise and ability of each individual.

2.6       All allegations of discrimination will be thoroughly and promptly investigated. Where allegations are substantiated, appropriate disciplinary action up to and including dismissal will be taken against any person responsible.

3. Other stakeholders

3.1       We are obliged by law, regulations and our own moral code to not discriminate against landlords, tenants, guarantors, suppliers, or anyone else we interact whilst carrying out our business based on race, ethnic or national origin, sex, mental or physical disabilities, age, marital status, actual or perceived sexual orientation, religion or belief.

3.1       Examples of illegal discrimination

-           Rejecting a tenant based on a disability or refusing to make reasonable adjustments to a property to accommodate a tenant with a disability. An example of this is providing additional visual alarms in a property to assist a person with hearing difficulties.

• Rejecting a group of male tenants because the landlord prefers female tenants.
• Advertising that a property is available to let to women or men only. N.B. It IS legal to advertise a property and include in the details that three of the four tenants are currently female. If a male wishes to rent the property then he can not be rejected based on his sex.
• Refusing to provide copies of contracts and paperwork in a form which a blind person can access.

3.2       Further reading:

https://www.citizensadvice.org.uk/housing/discrimination-in-housing/what-are-the-different-types-of-discrimination-in-housing/indirect-discrimination-in-housing/

4.         What to do if you experience discrimination

If you feel that you are the victim of or witness to direct or indirect discrimination then you need to report it to us by email at info@your-agent.co.uk, or write to Your Agent, Suite 2, Sears House, Alamein Road, Swansea, SA1 2HY

Credit references and Affordability checks

Credit Reference and Affordability Checks To help us assess applications, prevent fraud, and meet our legal and regulatory obligations, we may obtain information about you from credit reference agencies (CRAs).

We obtain this information via Creditsafe, which uses its data partner TransUnion to supply consumer credit and identity data.

  *   Creditsafe Business Solutions Limited is authorised and regulated by the Financial Conduct Authority FCA Firm Reference Number: 742313

  *   TransUnion International UK Limited is authorised and regulated by the Financial Conduct Authority FCA Firm Reference Number: 805757

The information we receive may include data relating to your identity, credit commitments, payment history, and public record information. This data is used solely for legitimate business purposes, including creditworthiness assessment, identity verification, and fraud prevention, in accordance with applicable data protection laws.

Further information about how Creditsafe and TransUnion process your personal data can be found in their respective privacy notices:

 *   Creditsafe Privacy / Transparency Notice:

 Transparency Notice | Customers & Suppliers<https://www.creditsafe.com/gb/en/legal/transparency-notice-customer-supplier.html>

 *   TransUnion CRAIN (Credit Reference Agency Information Notice):

https://www.transunion.co.uk/legal/privacy-centre/pc-credit-reference

 *   TransUnion Bureau Privacy Notice:

 https://www.transunion.co.uk/legal/privacy-centre/pc-bureau

 

Contact details of the Data Protection Officer (DPO) - Jonathan Thomas info@your-agent.co.uk

 

Legitimate interests pursued by the controller.

Our legitimate interests include operating our business, fulfilling contractual obligations, ensuring system and data security, preventing fraud, supporting audit and compliance activities, and protecting TransUnion data. These interests are balanced against the rights and freedoms of individuals, with appropriate safeguards in place.

The recipients or categories of recipients of the personal data We may share personal data with customers or business partners, third-party service providers, regulators, or law enforcement bodies where required, and professional advisers. Where data is shared outside the UK, appropriate safeguards will apply.

 

Details of any international data transfers outside the UK/EU and the safeguards in place.

We may transfer personal data to recipients or service providers located outside the UK and/or European Economic Area (EEA).

Where such transfers take place, we ensure appropriate safeguards are in place to protect personal data in accordance with applicable data protection laws. These safeguards may include the use of approved standard contractual clauses, international data transfer agreements, or transfers to countries that have been recognised as providing an adequate level of data protection.

 

We keep personal data only for as long as necessary for its purpose and to meet legal or regulatory obligations. Data used for credit reference or affordability checks is retained only for as long as required and then securely deleted.

Right of access.

 Right of access – You have the right to request a copy of the personal data we hold about you and information about how it is used.

 

Right to rectification

Right to rectification – You have the right to request that inaccurate or incomplete personal data is corrected.

Right to erasure

Right to erasure (“right to be forgotten”) – You have the right to request that we delete your personal data where there is no lawful reason for us to continue processing it.

Right to restrict processing

You have the right to request that we limit how we use your personal data in certain circumstances.

Right to data portability

You have the right to receive your personal data in a structured, commonly used, and machine readable format, and to request that we transfer it to another organisation where technically feasible.

Right to object

You have the right to object to the processing of your personal data where we rely on legitimate interests or where data is used for direct marketing.

 

The right to lodge a complaint with the Information Commissioner’s Office (ICO) or another supervisory authority.

You have the right to complain to the UK Information Commissioner’s Office (ICO) or another relevant data protection authority if you are dissatisfied with how we manage your personal data.

 Provision of Personal Data

Is the provision of personal data statutory or contractual?

The provision of certain personal data is primarily contractual and, in some circumstances, required to meet legal and regulatory obligations.

 Personal data is required to:

 *   enter into and perform contracts with customers, suppliers, or business partners.

 *   process orders, manage accounts, and deliver goods and services.

 *   verify identity and prevent fraud; and

 *   comply with applicable legal, regulatory, accounting, and tax obligations.

 What are the consequences of not providing personal data?

f you choose not to provide the personal data, we request:

   *   we may be unable to enter into a contract with you.

   *   we may be unable to fulfil orders, supply goods, or provide services.

   *   we may be unable to conduct necessary verification, compliance, or fraud prevention checks; and

   *   as a result, our services may be delayed, restricted, or declined.

 Where personal data is requested for optional purposes, such as marketing communications, providing this data is not mandatory, and you may withdraw your consent at any time without affecting your ability to receive goods or services from us.

 

Non-Automated Decision Making and Profiling

 

 We may use automated systems and tools to support certain business processes, such as risk assessment, fraud prevention, affordability checks, identity verification, or record management.  These tools may analyse personal data using predefined criteria or rules to generate indicators, scores, or recommendations. However, we do not make decisions that have a legal or similarly significant effect on individuals based solely on automated processing. Any such decisions are subject to meaningful human review.

The use of these tools may influence the speed or level of review applied to an application or request, but individuals will not be subject to automatic rejection or adverse decisions without human involvement.