Find out how and why we use personal data to communicate FCA news and events, including our newsletters.
On this page
This page also includes information on why we use personal data when you register or express interest to attend or join a FCA event or group (including webinars, virtual online events and the FCA TechSprints[1]).
The personal data we use – and why we use it
For various purposes, we collect individuals’ personal data, such as:
- full name
- contact details (such as email address or phone number)
- name of the represented organisation
Purposes include to:
- communicate with individuals
- invite or inform users about upcoming events
- register you for events (including online events)
- verify your identity when attending an event
- facilitate and provide required services
- register interest for our newsletter services
- get feedback on events, newsletters or services
If individuals expressed their interest in joining one of our expert groups, we may request their CV and cover letter. This allows us to assess and select suitable members.
If you represent your organisation and we have a relationship with you, we may use your contact details to invite you to relevant FCA events.
We may also share participant data with our third-party supplier, who may act on our behalf to provide a service.
How we collect this personal data
We collect personal data when individuals express their interest:
- to sign up for our newsletters on our website
- to register for an event via a form
- during their professional engagement with us
- to engage via verbal and written input, consultation papers and dialogue with other regulators, industry bodies and regulated firms
We may sometimes use third parties to carry out the above activities on our behalf.
The lawful basis for us using this personal data
We use this personal data under Article 6(1)(e) of the UK GDPR (it is necessary for the performance of a task carried out in the public interest) and Section 8(c) of the DPA 2018.
Since some activities are entirely optional for an individual’s participation, where necessary we obtain appropriate consent from the individuals who participate in such activities, under UK GDPR Article 6(1)(a) and/or Article 9(2)(a).
When this personal data is transferred outside the UK EU
Some of these third parties transfer data outside the EU in their provision of services to us.
Before we transfer personal data outside the EU, we have robust processes to ensure that appropriate safeguards are put in place to protect any personal data included in such a transfer.
If you would like to obtain more details about the safeguards that we have in place with regard to any personal data about you that we may transfer to a particular non-EU country, please contact us[2].
Learn about your rights
Under the UK GDPR, individuals have a number of rights relating to their personal data.
Read more about your rights and how to exercise them[3].