Privacy Policy

360 Dot Net Limited

360 Dot Net Limited is committed to protecting the privacy and security of your personal information in accordance with the UK GDPR and Data Protection Act 2018 (“Data protection legislation”) and any replacement legislation which may come into effect. We take care to protect the privacy of our customers, visitors and users of our products that communicate (online or offline) with us, at events, over the phone, through email, through our websites and social media platforms.

We have developed this privacy notice to inform you of the data we collect, what we do with your information, what we do to keep it secure as well as the rights and choices you have over your personal information.

360 Dot Net Limited is the data controller for the personal information we process, unless otherwise stated. We are registered with the Information Commissioner’s Office (the ICO) with registration number Z2674467.

You can contact us either by phone, email or post.

Our main 360 Dot Net Limited Trading/postal address:

12-14 Upper Marlborough Road
St Albans

Phone: 08456 592360

Our Data Protection Officer is:

The DPO Centre Ltd.
50 Liverpool Street

This Privacy Notice explains:

  • How, when and why we collect personal information
  • How we use the information
  • How long we keep it
  • When and how we may share it with others
  • How we keep it secure, and
  • Your privacy rights and how the law protects you

We only use personal information if we have an appropriate reason (lawful basis) to do so and this includes sharing information outside 360 Dot Net Limited.

360 Dot Net Limited

360 Dot Net’s complete end to end practice management system, 360 Lifecycle, supports mortgage and insurance brokers, to grow their business.

The company has grown to become a major player in the mortgage intermediary software market; 20% of mortgage brokers rely on its software, and its clients include leading names in UK financial advice.

360 Lifecycle keeps advisers on track of their daily activities, saving time, costs, improving relationships and increasing productivity. Our product was built to focus on advisers and their customers by introducing a secure Client Portal and FactFind. Our Client Portal allows advisers and clients to interact securely. Our comprehensive FactFind seamlessly integrates with our sourcing partners and saves advisers 45 to 90 minutes of data entry per sales journey. Advisers can source for multiple products on mortgages, protection and GI all in one place making the advice process seamless.

Lawful basis of processing your personal data

  • Consent
  • Contractual obligation
  • Legal obligation
  • Legitimate interests

Where we have gained your consent for activities such as marketing communications you have the opportunity to withdraw your consent at any time by emailing and requesting removal.

Where we process special category personal data (e.g. health information, race, ethnic origin etc) we will ensure the correct lawful basis and special condition are applied. If you do have any concerns to how we use a lawful basis and special condition you can contact us using our details as described in this notice or you can contact our Data Protection Officer as also described above.

How do we collect information from you?

We obtain information when you:

  • Complete an online contact form
  • Speak to us on the telephone
  • Provide information via email or post
  • Make a payment (including via cheque, BACs, direct debit etc.)
  • Sign a contract
  • Complete a survey
  • Sign up to receive marketing material
  • Testimonials
  • Face-to-face events

What type of information is collected from you?

The personal information we collect may include:

  • Name
  • Address
  • Email address
  • Telephone number
  • Enquiry details
  • Credit/debit card information; including bank details for direct debit payers
  • Testimonials
  • Voice recordings of telephone calls made to the Service Desk


360 Dotnet uses the following processors to process your data:

  • We use Tidio, Horizon, Mailchimp and Manage Engine

How is your information used?

We use your information to:

  • Process an application or renewal that you have made for 360 Dot Net
  • Seek your views or comments on the services we provide
  • Notify you of changes to our services
  • Send you communications which you have requested and that may be of interest to you, which may include information about new products, services, events, and activities
  • Handle an enquiry or complaint
  • Publish your testimonial
  • Process any refunds that may be applicable
  • Calls to the service desk are recorded to monitor the interaction between our Staff and the callers for training purposes and to deal with any complaints made by either party such as verbal abuse

Recruitment and criminal data processing

From time to time we will advertise on our website vacancies which may arise. For the recruitment and selection, we will require personal data to determine a pool of suitable applicants. More information on data processing for recruitment can be found here.

We do not carry out criminal records checks in our recruitment process.

How long is your information kept?

We review how long we keep personal information on a regular basis. We are legally required to hold some types of information to fulfil our statutory obligations, for example, all financial records are held for seven years. In other areas of the business, we hold your personal information on our systems, only for only as long as is necessary for the relevant activity, or as long as is set out in any relevant contract or agreement you hold with us.

If you use the online chat function this may be held by our Helpdesk for up to three years if a ticket is raised.

If you call the Helpdesk, the call recordings are held for six months. If a ticket is subsequently raised, this may be held by our Helpdesk for up to three years.

Data security

360 Dot Net Limited takes data security very seriously. We will ensure personal data will be kept safe and secure against any instances (including but not limited to) loss, misuse or alteration. If we become aware of any instances where personal data may be compromised in anyway, we will work closely with our IT team, DPO and other parties as necessary to investigate the incident at hand. We have put into place the relevant procedure and policies in place to investigate, mitigate and report (when needed to relevant parties) such instances.

360 Dot Net Limited’s website is built in HTTPS. The principal motivation for HTTPS is authentication of the website and protection of the privacy and integrity of the information exchanged while in transit. You can be assured that any personal information that requires extra security (such as credit or debit card details) is encrypted and protected using industry standard security measures, including the Secure Socket Layer (SSL) protocol.

Telephone Calls made to the Helpdesk are recorded on an AES 256 encrypted system.

Online Chat is encrypted using AES 256 SSL protocol.

Third parties and data transfers

360 Dot Net Limited uses third party processors where needed to carry out certain activities for us. These third parties are Horizon for recording telephone communications and Tidio for online chat. Tidio may transfer some of your data outside the UK. Where such data transfers do occur, Standard Contractual Clauses are used to ensure that there are appropriate safeguards in place for the data transfer to take place.

Your rights to your personal data

The right to be informed about our collection and use of personal data

You have the right to be informed about the collection and use of your personal data. We ensure we do this with our internal data protection policies and through our external website notice. These are regularly reviewed and updated to ensure these are accurate and reflect our data processing activities.

Right to access your personal information

You have the right to access the personal information that we hold about you in many circumstances, by making a request. This is sometimes termed ‘Data Subject Access Request’. If we agree that we are obliged to provide personal information to you (or someone else on your behalf), we will provide it to you or them free of charge and aim to do so within 1 month from when your identity has been confirmed.

We would ask for proof of identity and sufficient information about your interactions with us that we can locate your personal information.

Please contact

Right to correction of your personal information

If any of the personal information we hold about you is inaccurate, incomplete, or out of date, you may ask us to correct it.

If you would like to exercise this right, please contact

Right to stop or limit (restrict) our processing of your data

You have the right to object to us processing your personal information for particular purposes, to have your information deleted if we are keeping it too long or have its processing restricted in certain circumstances.

If you would like to exercise this right, please contact

Right to erasure

You have the right to have personal data erased. This is also known as the ‘right to be forgotten’. The right is not absolute and only applies in certain circumstances.

If you would like to exercise this right, please contact

Right to portability

The right to portability gives you the right to receive personal data you have provided to a controller in a structured, commonly used and machine readable format. It also gives you the right to request that a controller transmits this data directly to another controller.

If you would like to exercise this right, please contact

For more information about your privacy rights

The Information Commissioner’s Office (ICO) regulates data protection and privacy matters in the UK. They make a lot of information accessible to consumers on their website and they ensure that the registered details of all data controllers such as ourselves are available publicly. You can access them here

Questions or concerns

If you have any questions or concerns to this notice or please send an email to

Effective date: 17th November 2021