Privacy Policy

Midas Finance is committed to protecting and respecting your privacy.

Midas Corporate Finance Ltd T/A Midas Finance. What we do –

We are an Asset Finance Broker and can assist you and / or your business with Hire Purchase, Leasing or Loan Facilities when you purchase assets. Midas Corporate Finance Ltd is authorised and regulated by the Financial Conduct Authority, FRN 724721

We work with a panel of asset finance lenders to find a suitable arrangement for you.

Once we have found a suitable arrangement, we will present the lender’s agreement to you to sign. We will discuss this with you and will be happy to explain any terms of the agreement to you.

This policy sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it. By visiting our websites you are accepting and consenting to the practices described in this policy.

For the purpose of the European Data Protection Regulations (‘GDPR’) and the Data Protection Act 2018 (the Act) and, the data controller is Midas Corporate Finance Ltd. PO Box 468, Witney, Oxon, OX28 5GD

This Privacy Statement explains how we process your information and your rights under both DPA and GDPR.

Data Controller: Midas Corporate Finance Ltd (Incorporated in England under company number: 0637008)

Data Protection Officer: Gary Ambrosini

Information we may collect from you
  • Information you give us
    • Name, address and contact details of your business.
    • General description of your business activities and current plans.
    • Accounts, bank statements and other financial details relevant to obtaining finance.
    • Director’s personal details which may include address, date of birth etc.
    • Bank account details
    • When requested, personal finance information such as income and expenditure, details of assets and liabilities and personal and or business bank statements.
    • Copies of proof of identification and proof of address for Anti Money Laundering purposes.
  • Information we receive from other sources
    • Credit decision from our panel of lenders.
    • Information from suppliers detailing a description and cost of your purchase.
    • Settlement figures from our panel of lenders if required.
Uses made of the information

We use information you give us and the information we hold about you in the following ways:

  • We will share this information with one or more members of our Panel of Funders in order that they can to make credit decisions about you and/or your business. This can be for specific purchases or as a general credit line to assist with your future buying plans.
  • To give Suppliers information so they can raise their invoice correctly.
  • To make a diary note when next to be in touch based on your buying plans.
  • To comply with Anti-Money Laundering regulations.
  • For the prevention of Fraud.
Where we store your personal data

The data that we collect from you may be transferred to, and stored at, a destination outside the European Economic Area ("EEA"). It may also be processed by staff operating outside the EEA who work for us or for one of our suppliers. Such staff maybe engaged in, among other things, the fulfilment of your order, the processing of your payment details and the provision of support services. By submitting your personal data, you agree to this transfer, storing or processing. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this privacy policy.

Your rights

You have the right to ask us not to process your personal data for marketing purposes. We will inform you (before collecting your data) if we intend to use your data for such purposes or if we intend to disclose your information to any third party for such purposes. You can exercise your right to prevent such processing by checking certain boxes on the forms we use to collect your data. You can also exercise the right at any time by contacting us at

Your rights under Data Protection Law

We operate under the Data Protection Act 2018 (‘DPA’) and the European General Data Protection Regulation (‘GDPR’).

The DPA and GDPR apply to ‘personal data’ we process and the data protection principles set out the main responsibilities we are responsible for.

We must ensure that personal data shall be:

a) Processed lawfully, fairly and in a transparent manner

b) Collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes

c) Adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed

d) Accurate and where necessary kept up to date

e) Kept for no longer than is necessary for the purposes for which the personal data are processed. We operate a data retention policy that ensures we meet this obligation. We only retain personal data for the purposes for which it was collected and for a reasonable period thereafter where there is a legitimate business need or legal obligation to do so. Processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures

We ensure lawful processing of personal data by obtaining consent; or where there is a contractual obligation to do so in providing appropriate products and services; or where processing the data is necessary for the purposes of our legitimate interests in providing appropriate products and services.

In the majority of cases we process personal data based on your contract with us. In other cases, we process personal data only where there are legitimate grounds for so doing.

To meet our Data Protection obligations, we have established comprehensive and proportionate governance measures.

We ensure data protection compliance across the organisation through:

a) Implementing appropriate technical and organisational measures including internal data protection policies, staff training, internal audits of processing activities, and reviews of internal HR policies

b) Maintaining relevant documentation on processing activities

c) Implementing measures that meet the principles of data protection by design and data protection by default including data minimisation, pseudonymisation, transparency, deploying the most up-to-date data security protocols and using data protection impact assessments across our organisation and in any third party arrangements

Under the GDPR You have the following specific rights in respect of the personal data we process:

1. The right to be informed about how we use personal data - This Privacy Statement explains who we are; the purposes for which we process personal data and our legitimate interests in so doing; the categories of data we process; third party disclosures; and details of any transfers of personal data outside the UK

2. The right of access to the personal data we hold. In most cases this will be free of charge and must be provided within one month of receipt

3. The right to rectification where data are inaccurate or incomplete. In such cases we shall make any amendments or additions within one month of your request

4. The right to erasure of personal data, but only in very specific circumstances, typically where the personal data are no longer necessary in relation to the purpose for which it was originally collected or processed; or, in certain cases where we have relied on consent to process the data, when that consent is withdrawn and there is no other legitimate reason for continuing to process that data; or when the individual objects to the processing and there is no overriding legitimate interest for continuing the processing.

5. The right to restrict processing, for example while we are reviewing the accuracy or completeness of data, or deciding on whether any request for erasure is valid. In such cases we shall continue to store the data, but not further process it until such time as we have resolved the issue

6. The right to data portability which, subject to a number of qualifying conditions, allows individuals to obtain and reuse their personal data for their own purposes across different services

7. The right to object in cases where processing is based on legitimate interests, where our requirement to process the data is overridden by the rights of the individual concerned; or for the purposes of direct marketing (including profiling); or for processing for purposes of scientific / historical research and statistics, unless this is for necessary for the performance of a public interest task

8. Rights in relation to automated decision making and profiling

Please contact our privacy officer at for more information about the GDPR and your rights under Data Protection law.

If you have a complaint about data protection at Midas Corporate Finance, please contact our privacy officer at or call 01993 702189 Alternatively contact our supervisory authority for data protection compliance:

Information Commissioner’s Office

Wycliffe House

Water Lane




Tel: 0303 123 1113 (local rate) or 01625 545 745 (national rate)

Changes to our privacy policy

Any changes we may make to our privacy policy in the future will be posted on this page and, where appropriate, notified to you by e-mail. Please check back frequently to see any updates or changes to our privacy policy.


Questions, comments and requests regarding this privacy policy are welcomed and should be addressed to

Policy last updated: Date: 24 May 2018

Call us for further information 01993 702189 / 01895 675757

The Golden Partnership for your Business

Midas Corporate Finance Ltd is authorised and regulated by the Financial Conduct Authority. We are a Credit broker and not a lender and offer credit facilities from a panel of lenders.