Privacy Policy
Last Updated: 15 August 2025
JMJ Asset Management Ltd (“JMJ-AM”, “we”, “us”, “our”) respects your privacy and is committed to protecting your personal data. This privacy notice explains how we look after your personal data when you visit our website (www.jmj-am.co.uk) and tells you about your rights and how the law protects you.
1. Important information and who we are
Purpose of this privacy notice
This notice gives you information on how JMJ Asset Management Ltd collects and processes your personal data through your use of this website and any related services you may use.
This website is not intended for children and we do not knowingly collect data relating to children.
JMJ Asset Management is a residential and estate management company. In some circumstances, we act on behalf of our clients (for example, landlords or management companies). In these cases, we may act as a data processor and the client’s privacy policy will apply. If you are unsure which applies, please contact us.
Controller
JMJ Asset Management Ltd is the controller responsible for your personal data when we decide the purpose and means of processing.
Contact details
JMJ Asset Management Ltd
Formal House
60 St George’s Place
Cheltenham, GL50 3PN
Telephone: 01242 500839
Email: [email protected]
Data Compliance Manager
We have appointed a Data Compliance Manager who oversees questions in relation to this privacy notice and our data protection practices.
Name: Jodie Fraser
Role: Data Compliance Manager
Email: [email protected]
If you have any questions about this notice or wish to exercise your legal rights, please contact Jodie Fraser using these details.
Complaints
You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection:
Website: www.ico.org.uk
Helpline: 0303 123 1113
We would appreciate the opportunity to deal with your concerns before you contact the ICO.
Compliance statement
JMJ Asset Management Ltd complies with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
Changes to the privacy notice
This policy was last updated on 15 August 2025. We may update it periodically, and any changes will be posted on this page.
Third-party links
Our website may include links to third-party websites. Clicking on those links may allow third parties to collect or share data about you. We are not responsible for these third parties’ privacy notices.
2. The data we collect about you
Personal data means any information that can identify you. We may collect:
Identity Data – name, title, date of birth, gender
Contact Data – address, email, telephone numbers
Financial Data – bank details, payment card details
Transaction Data – payments to and from you, property or service history
Technical Data – IP address, browser type and version, device type, cookies data
Usage Data – information on how you use our website and services
We do not collect Special Category Data (e.g., health, race, religion) or information about criminal convictions unless required by law.
3. How your personal data is collected
We collect data in the following ways:
Direct interactions – via forms, calls, post, email, or meetings
Automated technologies – through cookies and similar tracking tools when you use our website
Third parties – from analytics providers such as Google (outside the UK), or from public sources such as the Land Registry
4. How we use your personal data
We will only use your data when the law allows us to. Our main uses include:
Purpose | Lawful Basis |
To manage our client relationships and provide services | Performance of a contract |
To respond to enquiries | Legitimate interests |
To comply with legal obligations (e.g., HMRC, property and safety laws) | Legal obligation |
To send you relevant marketing (with your consent where required) | Consent or legitimate interests |
5. Marketing
We may occasionally send you information about our services where we have your consent or a legitimate interest to do so. You can opt out at any time by contacting us or using the unsubscribe link in our emails.
6. Cookies
Our website uses cookies to improve your browsing experience. You can set your browser to refuse cookies, but some features may not work. See our Cookie Policy for more details.
7. Disclosures of your personal data
We may share your personal data with:
Service providers (e.g., IT, hosting, CRM, email delivery, payment processing)
Professional advisers (lawyers, accountants, insurers)
HMRC, regulators, law enforcement and other authorities
Our clients (where we act as managing agent)
All third parties are required to protect your data and only process it according to our instructions.
8. International transfers
We do not routinely transfer personal data outside the UK. If we do, we will ensure adequate safeguards are in place in line with UK GDPR requirements (e.g., adequacy regulations or International Data Transfer Agreements).
9. Data security
We have put in place appropriate technical and organisational measures to prevent personal data being accidentally lost, used, or accessed in an unauthorised way, altered, or disclosed. Measures include encryption in transit and at rest where appropriate, access controls, least-privilege user management, secure backups, multi-factor authentication where available, and regular security reviews and patching.
10. Internal data handling and governance
We maintain a data protection governance framework designed to keep your information safe and to meet our legal obligations. This includes:
Documented retention schedules aligned to legal and business needs
Staff training and confidentiality obligations
Access controls and role-based permissions
Incident and breach response procedures, including notification to the ICO and affected individuals where required
Regular reviews of processors and data sharing arrangements
Periodic policy and risk assessments, including DPIAs where appropriate
Clear marketing consent and unsubscribe workflows
11. Your rights, timeframes and fees
Under data protection law you have rights including access, rectification, erasure, restriction, objection, and data portability. To exercise any of these rights, please contact the Data Compliance Manager (details above).
Timeframes: We aim to respond to your request without undue delay and in any event within one month of receipt. Where requests are complex or numerous, we may extend this period by up to a further two months; if so, we will inform you within one month and explain why.
Identity verification: We may need to request specific information to help us confirm your identity to ensure your right to access your personal data (or to exercise any of your other rights).
Fees: You will not have to pay a fee to exercise your rights. However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive, or we may refuse to comply in these circumstances.
12. Data retention
We keep your personal data only for as long as necessary to fulfil the purposes we collected it for, including any legal or accounting requirements:
General enquiry data: up to 2 years
Contract-related data: 7 years after the end of the contract
Marketing data: until you opt out
We may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes; in which case we may use this information indefinitely without further notice to you.