top of page

1) Website Privacy Notice (UK) — Bimbi Phillips & Partners

Privacy Notice (UK)

Last updated February 26, 2026

​

This Privacy Notice explains how Bimbi Phillips & Partners (“we”, “us”, “our”) collects, uses, shares and protects personal data when you interact with our website, forms (including Typeform), and communications in connection with our investor and acquisition activities.

​

1. Who we are (Data Controller)

Data Controller: Bimbi Phillips & Partners
Contact email: [info@bimbiphilips.com]
Postal address: 7 Bell Yard, London, England, WC2A 2JR

2. What this notice covers

This notice applies when you:

  • Visit our website;

  • Submit information via our forms (including eligibility/pre-call forms and post-call interest forms);

  • Email, message (including WhatsApp), or call us; and/or

  • Participate in investor onboarding, KYC/AML checks, deal discussions, or documentation.

3. Personal data we collect

We may collect the following categories of personal data:

A) Identity & contact

  • Name, email address, phone number, address, employer/role (if provided).

B) Investor eligibility and preferences

  • Whether you self-identify as a high net worth individual / sophisticated investor (UK categories), and your willingness to sign related statements.

  • Your investment preferences (e.g., ticket size range, time horizon), and availability/“liquidity” timing.

C) Financial information (high level)

  • High-level ranges (e.g., investable amount, liquidity timeframe).

  • We aim to avoid collecting sensitive financial documents at early stages unless required.

D) KYC/AML and source-of-funds (later stage, if applicable)

  • Information and documents reasonably required to meet compliance obligations (e.g., ID verification, source-of-funds/source-of-wealth evidence).

E) Communications

  • Emails, messages, meeting notes, and call details relating to your enquiries and participation.

F) Technical / usage data

  • IP address, device/browser type, pages viewed, approximate location, and similar analytics data via cookies or similar technologies (see Cookies section below).

Special category data: We do not intentionally collect special category data (e.g., health, religion). Please do not submit it.

4. How we use your data (purposes)

We use personal data to:

  1. Respond to enquiries and provide information you request;

  2. Operate eligibility and onboarding processes (e.g., pre-call screening, scheduling calls, NDAs, investor statements);

  3. Assess suitability for receiving deal-related information, including compliance gating;

  4. Manage investor relationships, including communications and record-keeping;

  5. Conduct compliance checks where relevant (e.g., KYC/AML and source-of-funds checks);

  6. Prepare and manage deal processes, including liaising with professional advisers and (where relevant) lenders/banks;

  7. Improve our website and processes (analytics, troubleshooting, security).

5. Our lawful bases (UK GDPR)

We rely on one or more of the following lawful bases:

  • Legitimate interests (Article 6(1)(f)): operating our processes, responding to enquiries, screening eligibility, preventing fraud, maintaining records, improving services. We balance this against your rights and expectations.

  • Steps prior to entering a contract (Article 6(1)(b)): where you ask us to take steps related to potential participation (e.g., onboarding).

  • Legal obligation (Article 6(1)(c)): where we must comply with applicable laws (e.g., AML-related recordkeeping if/when applicable).

  • Consent (Article 6(1)(a)): for optional communications where required (e.g., certain marketing messages). You can withdraw consent at any time.

6. Who we share your data with

We may share personal data with:

  • Form and workflow providers (e.g., Typeform) used to collect responses;

  • Email, calendar and communications providers used to communicate with you;

  • Professional advisers (lawyers, accountants, corporate finance advisers) on a need-to-know basis;

  • KYC/AML or identity verification providers (if/when used);

  • Lenders/banks and their advisers only where necessary for a specific transaction and subject to appropriate safeguards;

  • IT/security and hosting providers supporting our website and systems.

We require service providers to protect personal data and use it only for the services they provide to us.

We do not sell your personal data.

7. International transfers

Some service providers may process data outside the UK. Where this happens, we use appropriate safeguards such as:

  • UK adequacy regulations (where applicable); and/or

  • UK International Data Transfer Addendum / Standard Contractual Clauses and other appropriate measures.

8. How long we keep your data (retention)

We keep personal data only as long as necessary for the purposes above, including legal and compliance obligations. Typical retention periods:

  • Eligibility / pre-call form submissions: up to 12–24 months from last interaction (unless you proceed further).

  • Active investor/onboarding records: for the duration of engagement and typically up to 6 years after the end of the relationship (for legal/accounting purposes).

  • KYC/AML records (if collected): typically up to 5 years after the end of the relationship or as required by law.

  • Website analytics: as per cookie/analytics settings, typically up to 14 months.

We may retain data longer if required to establish, exercise or defend legal claims, or where required by law.

9. Your rights

You have rights under UK GDPR, including:

  • Access to your personal data;

  • Rectification of inaccurate data;

  • Erasure (in certain circumstances);

  • Restriction of processing;

  • Data portability (where applicable);

  • Objection to processing based on legitimate interests;

  • Withdraw consent (where processing is based on consent).

To exercise rights, contact: [privacy@yourdomain.co.uk].

10. Security

We use appropriate technical and organisational measures to protect personal data. However, no method of transmission over the internet is completely secure.

11. Cookies and analytics

We may use cookies or similar technologies to operate the website and understand usage. You can manage cookies through your browser settings and/or [link to cookie banner/settings if applicable].

12. Complaints

If you have concerns, please contact us first and we will try to resolve them. You also have the right to complain to the UK regulator:

Information Commissioner’s Office (ICO)
Website: ico.org.uk

13. Updates to this notice

We may update this notice from time to time. The “Last updated” date above shows when it was most recently revised.

The Promise of Tomorrow

In every venture, every innovation, and every celebration, we stand as a testament to the power of solving problems differently. We are not just building businesses; we are crafting the foundations for a better tomorrow.

Phone +44 01268980895

Address: Chadwell Heath, Essex, United Kingdom

SUBSCRIBE

Sign up to receive news and updates.

Thanks for submitting!

© bimbiphilips 2025 All rights reserved.

bottom of page