06Privacy
How we collect, use
and protect your data.
Last updated: 26/02/2026 · FCA authorised & regulated · FRN 823503
Grow Money Group Insurance ('Website') is provided by Grow Money Group ('we'/'us'/'our'). In doing so, we may be in a position to receive and process personal information relating to you. As the controller of this information, we're providing this Privacy Policy to explain our approach to personal information gathered through our website and through providing our services to you. This Policy forms part of our Terms and Conditions, which govern the use of this Website.
We intend only to process personal information fairly and transparently as required by data protection law including the UK General Data Protection Regulation (UK GDPR). Before obtaining information from you (including through use of cookies) we intend to alert you to this Policy, let you know how we intend to process the information, and that we'll only process the information as permitted by law. The UK GDPR also defines certain 'special categories' of personal information that's considered more sensitive. These categories require a higher level of protection, as explained below.
You may browse parts of this Website without providing any information about yourself and without accepting cookies. In that case, it's unlikely we'll possess and process any information relating to you.
Sometimes, when you take a new service or product from us, or discuss taking a new service or product but decide against it, we might wish to provide you with further information about similar services or products by email or other written electronic communication. In that situation, we'll always give you the opportunity to refuse to receive that further information and you can change your mind at any point (opt-out) by contacting our Data Protection Officer (DPO) as set in clause 1.4.
1.Identity and contact details
- 1.1 Registered number — 16578730
- 1.2 Registered office — 71-75 Shelton Street, London, WC2H 9JQ
- 1.3 Email address — enquiries@growmoneygroup.co.uk
- 1.4 Our Data Protection Officer (DPO) — Our DPO welcomes communication from you regarding any matter relating to data protection, and can be contacted by email at enquiries@growmoneygroup.co.uk.
2.When we're allowed to collect information from you
We will only collect personal information relating to you if one of the following conditions has been satisfied:
- 2.1 You have clearly told us that you are content for us to collect that information for the particular purpose or purposes that we will have specified.
- 2.2 The processing is necessary for the performance of a contract that we have with you.
- 2.3 The processing is necessary so that we can comply with the law.
- 2.4 The processing is necessary to protect someone's life.
- 2.5 The processing is necessary for the performance of a task that's in the public interest.
- 2.6 The processing is necessary for our or another's legitimate interests — but in this case, we'll balance those interests against your interests.
3.How to consent
- 3.1 If we need your consent to collect and use certain information, we'll provide you with the opportunity to tell us that you're happy to provide that information at the point of collecting it.
- 3.2 If at any point in time you change your mind and decide that you want to withdraw your consent, please let us know and we'll endeavour to stop processing your information in the specified manner, or we'll delete your data if there is no continuing reason for possessing it.
- 3.3 If you don't consent to a particular bit of processing, we'll endeavour to ensure that the Website and our service continue to operate without the need for that information.
4.Sensitive information
- 4.1 Certain information we collect may be considered to be in special categories of personal information. In particular, it may: reveal political opinions, racial or ethnic origins, religious or philosophical opinions, trade union membership, relate to biometric data, genetic data, your health, or your sex life or sexual orientation.
- 4.2 If we do collect such information as specified in clause 4.1, we'll also ensure that one of the additional reasons for processing outlined in the UK GDPR applies.
- 4.3 It's likely that we'll need to process information relating to criminal convictions or offences or related security measures. If we do so, we'll make sure we comply with the extra conditions set out in the UK GDPR.
5.Information we expect to collect from you
5.1 We envisage collecting the following types of information from you:
| Information Type | Purpose | Justification |
|---|---|---|
| Identity Data (e.g., Full Name) | To identify who we are communicating with and to personalise our response. | Necessary for the performance of a contract with you or to take steps at your request before entering into a contract. |
| Contact Data (Email, Phone) | To respond to your enquiry, provide requested information, or send service updates. | Necessary for the performance of a contract with you. |
| Enquiry / Message Content | To understand the nature of your request and provide appropriate assistance or advice. | Necessary for our legitimate interests (responding to users and managing business enquiries). |
| Special Category Data (Health, ethnicity, etc.) | To provide specialised support / advice relevant to your circumstances (see clause 4.1). | We'll ensure that one of the additional special category justifications applies. |
| Criminal Offence Data (if disclosed) | Relates to criminal convictions, offences, or related security matters for vetting or legal assessment. | Only processed if authorised in accordance with the UK GDPR for criminal matters. |
- 5.2 We may collect personal information about you from a number of sources, including: from you when you agree to take a service or product from us; when you contact us with an enquiry; as you interact with this Website (automatically collecting technical information); from documents available to the public; and from third parties to whom you have provided information with your consent.
- 5.3 If you refuse to provide information requested, then if that information is necessary for a service we provide to you we may need to stop providing that service.
- 5.4 If at any point you think we've invited you to provide information without explaining why, feel free to object and ask for our reasons.
6.Using your personal information
- 6.1 Data protection, privacy and security are important to us, and we shall only use your personal information for specified purposes and shall not keep such personal information longer than is necessary to fulfil these purposes. Examples include: to help identify you when you contact us; to identify accounts, services and products you could benefit from; to administer and contact you about improved services; to carry out marketing analysis; to help prevent and detect fraud; and to contact you about products and services where you have consented.
- 6.2 We will not disclose your personal information to any third party except in accordance with this Policy, including where they process data on our behalf as a data processor, where it's necessary to share with another data controller, or where we consider it to be in your interest (with your agreement).
- 6.3 Where you give us personal information on behalf of someone else, you confirm that you have provided them with the information set out in this Policy and that they have not objected to such use.
- 6.4 In connection with any transaction, we may carry out credit checks and share information with credit reference agencies as detailed in our full policy.
- 6.5 We may allow other people and organisations to use personal information we hold about you in limited circumstances, such as business acquisitions, legal proceedings, or where companies perform functions on our behalf.
- 6.6 The data retention period — we keep personal data only for as long as necessary for its purpose and to meet legal or regulatory obligations.
7.Protecting information
- 7.1 We have strict security measures to protect personal information.
- 7.2 We work to protect the security of your information during transmission by using appropriate technology to encrypt information you input.
- 7.3 We maintain physical, electronic and procedural safeguards in connection with the collection, storage and disclosure of personally identifiable customer information.
- 7.4 It is important for you to protect against unauthorised access to your password and to your computer. Be sure to sign off when you finish using a shared computer.
8.The internet
- 8.1 If you communicate with us using the internet, we may occasionally email you about our services and products. When you first give us personal information through the Website, we will normally give you the opportunity to say whether you would prefer that we don't contact you by email for that purpose.
- 8.2 Please remember that communications over the internet, such as emails and webmails, are not secure unless they have been encrypted. Your communications may go through a number of countries before they are delivered — this is the nature of the internet. We cannot accept responsibility for any unauthorised access or loss of personal information that is beyond our control.
9.Cookies and other internet tracking technology
- 9.1 When we provide services, we want to make them easy, useful and reliable. This sometimes involves placing small amounts of information on your computer, which is sent back to us at a later time. These are called 'cookies'.
- 9.2 Where applicable, this section of the Policy also relates to related technology but the term 'cookie' is used throughout.
- 9.3 Some of these cookies are essential to services you've requested from us, whereas others are used to improve services for you.
- 9.4 To learn more about cookies, you may wish to visit: allaboutcookies.org, youronlinechoices.eu or google.com/policies/technologies/cookies.
9.5 This Website uses, or allows use of, the following cookies:
| Cookie | Qualities | Consent |
|---|---|---|
| wf-csrf | Security cookie to prevent CSRF. Category 1 (Strictly Necessary). First Party. Session duration. | No |
| _ga | Distinguishes unique users. Category 2 (Performance). First Party (Google Analytics). 24 months. | Yes |
| _ga_<id> | Persists session state and tracks individual user journeys. Category 2. 24 months. | Yes |
| _gid | Distinguishes users on a daily basis. Category 2. 24 hours. | Yes |
9.6 Cookie categories:
- Category 1 — Strictly Necessary: Essential cookies to move around the website and use its features.
- Category 2 — Performance: Collect information about how visitors use a website, used only to improve how a website works.
- Category 3 — Functionality: Allow the website to remember choices you make and provide enhanced, more personal features.
- Category 4 — Targeting and Advertising: Used to deliver adverts more relevant to you and your interests.
9.7 As with any other information we may collect from you, we'll work to protect the security of your information during transmission by using appropriate technology to encrypt information you input.
10.Your legal rights
- 10.1 Under certain circumstances, you have rights under data protection laws in relation to your personal information.
- 10.2 You have the right to: request access to your personal information; request correction of incomplete or inaccurate information; request erasure of your personal information; object to processing; request restriction of processing; request the transfer of your personal information; and withdraw consent at any time.
- 10.3 You will not have to pay a fee to access your personal information. However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive.
- 10.4 We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal information.
- 10.5 We try to respond to all legitimate requests within one month.
- 10.6 You have the right to lodge a complaint with the Information Commissioner's Office (ICO) or another supervisory authority if you are dissatisfied with how we manage your personal data.
11.Further information
- 11.1 If you would like any more information or you have any comments about this Policy, or if you wish to exercise any of your legal rights, please write to our Data Protection Officer as detailed in clause 1.4.
- 11.2 Please note that we may have to amend this Policy on occasion. If we do that, we will publish the amended version on the Website.
- 11.3 You can ask us for a copy of this Policy by writing to the above address or by emailing us at enquiries@growmoneygroup.co.uk. This Policy applies to personal information we hold about individuals. It does not apply to information we hold about companies and other organisations.