Fiscale’s Privacy Policy
Terms for engaged business parties and commercial relationships

Fiscale is the trading name of Fiscale Limited, a wholly owned subsidiary of Fiscale (Holdings) Ltd. Fiscale is a registered Trademark of Fiscale Ltsd. Our Trademark must not be used without our approval.

1.0 – Privacy Notice and Policy

1.1 – Introduction

This document refers to personal data, which is defined as information concerning any living person (a natural person who hereafter will be called the Data Subject)

This notice explains what personal data  we hold about you, how we collect it, and how we use and may share information about you. We are required to notify you of this information under data protection legislation. Please ensure that you read this notice (sometimes referred to as a ‘privacy notice’) and any other similar notice we may provide to you from time to time when we collect or process personal information about you.

The General Data Protection Regulation (GDPR) seeks to protect and enhance the rights of data subjects. These rights cover the safeguarding of personal data, protection against the unlawful processing of personal data and the unrestricted movement of personal data within the EU.

Fiscale is used to mean Fiscale (Holdings) Limited and all of its wholly owned subsidiaries, including, but not exclusively, Fiscale Limited.

1.2 – Personal Data

When entering into a commercial relationship, Fiscale collects data from you and from other sources, to process in different ways, depending on the nature of our commercial relationship.

Depending on our relationship, personal data may include but not limited to, contact information, Identification documents, bank account, National Insurance and PAYE reference numbers.

Fiscale may also collect statistics about the behavior of visitors to its website.

Fiscale’s website uses cookies, which is a string of information that a website stores on a visitor’s computer, and that the visitor’s browser provides to the website each time the visitor returns.

Fiscale website visitors who do not wish to have cookies placed on their computers should set their browsers to refuse cookies before using Fiscale’s website.

Fiscale will only collect the information needed so that it can provide you with professional services and will never sell or broker your data.

If you have engaged with Fiscale as a client, Franchisee or Professional Referrer, we will continue to hold personal data about you on a contractual basis. 

If you are a potential client (lead), business contact, a strategic partner or supplier we may hold personal data about you based on a Legitimate Interest assessment.  We believe that we hold this information, and communicate with you, on the basis that it is essential for you to be informed about Government Legislation that could lead to valuable claims being made for Research & Development Tax Credits, Patent Box and any other professional services.

1.3 – Disclosure

Fiscale may share your personal data with other related companies and in some cases the person or organisation who referred you.

Fiscale may on occasions pass your Personal Information to third parties such as HMRC, to process your claim. Fiscale do not broker or pass on information gained from your engagement without your consent. However, Fiscale may disclose your Personal Information to meet legal obligations, regulations or valid governmental request.

1.4 – Retention Policy

Fiscale will process personal data and will continue to store such personal data in accordance with our policy, which is set out below.

The personal data may, but not exclusively, include the following, not all of which will be held in every case.

Our Relationship with youPersonal Data we may, but not necessarily, holdLegal Basis for collecting informationRetention Policy
Business Contacts, LeadsContact details

Employee Salary

Telephone and meeting notes
Legitimate Interest18 months after most recent contact recorded in the CRM Hub
ClientContact Details

Bank Account Details

Identification documents

National Insurance Number, PAYE Number, Salary, Overtime and Bonus details

Details of staff and Directors, including above items

Photographic or Video website content
Contractual6 years after most recent claim is processed
Professional ReferrersContact Information

Our Agreement

Bank Account Details
Contractual18 months if arrangement not concluded or 18 months after the final claim for the final referral is processed
Strategic PartnerContact informationLegitimate Interest18 months if arrangement not concluded or 18 months after the final claim for the final referral is processed
FranchiseeContact Information

Our Agreement

Bank Account Details

Identification Documents

National Insurance Number

PAYE Number

Credit Rating


Performance Details

Payment Records

Training Records

AMLL Training Details

Website content, including photographs or video
Contractual18 months if arrangement not concluded or 18 months after the final claim for the final referral is processed

1.5 – Data Storage

Data is held in the United Kingdom using multiple secure servers. Fiscale does not store personal data outside the EEA.

1.6 – Automated Data Processing

Fiscale does not use automated data processing

1.7 – Your Rights as a Data Subject

At any point whilst Fiscale is in possession of or processing your personal data, all data subjects have the following rights:

  • Right of access – you have the right to request a copy of the information that we hold about you
  • Right of rectification – you have a right to correct data that we hold about you that is inaccurate or incomplete
  • Right to be Erasure – in certain circumstances you can ask for the data we hold about you to be erased from our records
  • Right to restriction of processing – where certain conditions apply you have a right to restrict the processing

Please note that exercising some rights may have contractual consequences

1.8 – Keeping your Personal Information secure

We have appropriate security measures in place to prevent personal information from being accidentally lost, used or accessed in an unauthorised way. We limit access to your personal information to those who have a genuine business need. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.

We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.

1.9 – Your right to correct and access your information and to ask for it to be erased

Please contact our Data Protection Officer (DPO) at email if you would like to correct or request access to information that we hold relating to you or if you have any questions about this notice. You also have the right to ask our Data Protection Officer for some but not all of the information we hold and process to be erased (the ‘right to be forgotten’) in certain circumstances. Our Data Protection Officer will provide you with further information about the right to be forgotten, if you ask for it.

1.10 – Complaints

In the event that you wish to make a complaint about how your personal data is being processed by Fiscale, you have the right to complain.

Contact the Fiscale Data Protection Officer at email

If you do not get a response within 30 days you can complain to the Information Commissioner Office.

1.11 – Terms & Definitions

General Data Protection Regulation (GDPR): The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) is a regulation by which the European Parliament, the Council of the European Union and the European Commission intend to strengthen and unify data protection for all individuals within the European Union (EU). It also addresses the export of personal data outside the EU.    

Data Controller: the entity that determines the purposes, conditions and means of the processing of personal data.

Data Processor: the entity that processes data on behalf of the Data Controller.

Data Protection Officer (DPO): an expert on data privacy who works independently to ensure that an entity is adhering to the policies and procedures set forth in the GDPR.

Data Subject: a natural person whose personal data is processed by a controller or processor.

Personal Data: any information related to a natural person or ‘Data Subject’, that can be used to directly or indirectly identify the person.

Processing: any operation performed on personal data, whether or not by automated means, including collection, use, recording, etc.

Regulation: a binding legislative act that must be applied in its entirety across the Union.

Subject Access Right: also known as the Right to Access, it entitles the data subject to have access to and information about the personal data that a controller has concerning them.