Mortgage Select Logo with tagline Mortgage Advice, Made Simple
Contact Us
a
M

Privacy Notice

Last Updated: 3rd March 2026

1. Who We Are

Mortgage Select is a trading style of Mortgage select (SW) Ltd authorised and regulated by the Financial Conduct Authority (FCA) under Firm Reference Number 456022.

Registered Office:
3 Discovery House
Cook Way
Bindon Road
Taunton
TA2 6BJ

For the purposes of UK data protection law, we are a Data Controller. This means we are responsible for deciding how we hold and use personal information about you.

If you have any questions about this Privacy Notice, please contact us at:
Email: gareth@mortgageselectsw.co.uk
Telephone: 01823 323600

2. The Personal Data We Collect

Depending on the services we provide, we may collect and process the following categories of personal data:

Identity Data
Full name, previous names, date of birth, marital status, National Insurance number, passport or driving licence details.

Contact Data
Home address, address history, email address and telephone numbers.

Financial Data
Income, expenditure, assets, liabilities, bank statements, tax returns and credit history.

Employment Data
Employment status, employer details and employment history.

Product & Transaction Data
Details relating to mortgage, insurance or equity release applications and related communications.

Special Category Data
Where necessary (for example for insurance or later life lending), we may collect health or medical information. This is only collected where necessary and lawful.

Technical Data
Limited website usage information such as IP address and browser type.

3. How We Use Your Personal Data

We use your personal data to:

  • Provide mortgage, insurance and later life lending advice
  • Assess affordability and suitability
  • Obtain Decisions in Principle
  • Submit applications to lenders and insurers
  • Carry out anti-money laundering and identity verification checks
  • Communicate with you throughout your application
  • Maintain records to meet legal and FCA regulatory obligations
  • Respond to enquiries

We do not carry out direct marketing communications.

4. Our Lawful Basis for Processing

We rely on the following lawful bases under UK GDPR:

  • Contract – where processing is necessary to provide services to you.
  • Legal Obligation – to comply with FCA rules, anti-money laundering regulations and other legal requirements.
  • Legitimate Interests – to operate our business effectively, provided your rights do not override these interests.
  • Explicit Consent – where required, particularly when processing special category data such as health information.

5. Who We Share Your Personal Data With

We only share your personal data where necessary to provide our services or comply with legal obligations. We do not sell your personal data.

We may share your data with:

  • Mortgage lenders and finance providers
  • Insurance providers
  • Equity release providers
  • Credit reference agencies and fraud prevention agencies
  • Solicitors, conveyancers, surveyors and valuers
  • Compliance consultants and professional advisers
  • IT, CRM and telephony service providers
  • Regulators such as the Financial Conduct Authority (FCA) and the Information Commissioner’s Office (ICO), where required

Lenders and insurers act as independent Data Controllers and will provide their own privacy information to you.

Our IT, CRM and telephony providers act as Data Processors under contractual safeguards.

6. International Data Transfers

Our core business systems and telephony infrastructure are hosted within the United Kingdom and/or the European Economic Area (EEA).

In limited circumstances, certain approved service providers supporting our CRM system may process data outside the UK/EEA. Where this occurs, appropriate safeguards are implemented, including UK International Data Transfer Agreements (IDTA) or Standard Contractual Clauses (SCCs), together with contractual and technical security measures.

7. Call Recording

We record telephone calls for training, quality monitoring, fraud prevention and regulatory compliance purposes.

Call recordings are initially stored securely within our UK-hosted telephony system for a limited period before being transferred to our secure CRM system, where they are retained as part of the client file in accordance with our data retention policy.

Access to recordings is restricted to authorised personnel only.

8. Automated Processing

Our CRM system may use AI-assisted tools to support document review and compliance monitoring. These tools are advisory in nature and do not make fully automated decisions that produce legal or similarly significant effects without human involvement.

Some lenders and insurers may use automated credit scoring systems as part of their application assessment process. These decisions are made by the lender or insurer, not by Mortgage Select.

9. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including satisfying legal, regulatory and accounting requirements.

Client records relating to mortgage and insurance advice are retained for a minimum of six years from the end of our client relationship.

Due to the long-term nature of equity release and later life lending products, records relating to this advice may be retained for a longer period where necessary to meet legal, regulatory and risk management obligations.

Call recordings are retained in line with our regulatory requirements and client file retention policy.

When personal data is no longer required, it is securely deleted or anonymised.

10. Data Security

We have implemented appropriate technical and organisational measures to protect personal data from unauthorised access, loss, misuse or disclosure.

Access to personal data is limited to employees and service providers who have a legitimate business need to access it.

11. Your Rights

Under UK GDPR, you have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request erasure (where applicable)
  • Restrict processing
  • Object to processing
  • Request data portability (where applicable)
  • Lodge a complaint with the Information Commissioner’s Office (ICO)

You can contact the ICO at:
www.ico.org.uk
Telephone: 0303 123 1113

12. Changes to This Privacy Notice

We may update this Privacy Notice from time to time. When we do, we will revise the “Last Updated” date at the top of this document.