Privacy Policy (Buyer)

JOHNS&CO Offices

Privacy Policy (Buyer)

Privacy Notice (Buyer)

The Data Controller connected with this Privacy Notice is Johns & Co Real Estate Ltd

1. Purpose

In this instance your data is being processed for the specific purpose of buying a property through Johns & Co.

2. Lawful Basis

The collection of your data for this purpose is under the Lawful Basis of Contract, because we require this information in order to manage the formation and execution of a contract between you, the Buyer and the Vendor (Seller) of the property, who has appointed Johns & Co to act as their Agent in this matter.

3. Information Collected

The personal data we will collect and process about you in connection with this purpose is:

  • Name
  • Address
  • Telephone number(s)
  • Email Address
  • Proof of ID
  • Proof of Address
  • Proof of funds

In addition, we may collect other non-personal data such as:

  • Solicitor’s details
  • Financial Adviser’s / Mortgage Broker’s details
  • Details regarding any associated sales “Chain” if you are selling a property in order to make the purchase.

4. Retention

Under the Lawful Basis referenced in paragraph 2, your data will be retained to the end of the financial year in which your property purchase is completed and for a further 6 years thereafter in accordance with HMRC requirements for financial record keeping. Thereafter some details of the property will be retained indefinitely for historical record keeping purposes, to aid any future evaluation of the property, past sales activity and property value.

5. Destruction

At the end of this retention period your data will be destroyed using an approved method unless prevented by Court order.

6. Data Sharing

Whilst we control your personal data we will need to share this data with the following parties, for the following purposes, in order to provide you with the services you are seeking from us:

  1. Eurolink Technology Ltd and Bespoke Systems Ltd for the sole purpose of providing Johns & Co with IT services to maintain and store a consumer database so we can provide you with our service.
  2. The Vendor for the purpose of expediting the purchase.
  3. The Buyer’s and Vendor’s solicitors for the sole purpose of facilitating the purchase. The details of these firms will be made known to you in the Memorandum of Sale, which will be issued to all parties at the point at which the purchase is agreed, subject to contract.
  4. The other Agents in the “Chain” of sales / purchases associated with the sale, for the sole purpose of managing the sale.
  5. Identity and fraud prevention suppliers to ensure we are compliant with our legal responsibilities in relation to Anti Money Laundering and other legislation.
  6. The Property Ombudsman for the sole purpose of administering any investigation by them.
  7. Digital Ethos Limited and dotdigital EMEA Limited for the purpose of email marketing.

7. Rights of the Data Subject

  1. Under the General Data Protection Regulation, you, the Data Subject have certain rights regarding the control and processing of your personal data. Details regarding your rights can be found on the Information Commissioner’s Office (ICO) website.
  2. Should you wish to contact Johns & Co in order to exercise any of these rights, please email the Data Controller’s representative using the following email address: Alternatively, please call +44 (0)20 7118 0200 and ask to speak with Sophie Moir.

8. Security

  1. Recognising the importance of personal data to our consumers, we endeavour to put in place appropriate organisational and technical measures to protect that data.
  2. Personal data we hold on electronic media is encrypted and stored in a secure data centre located in the UK.
  3. We do not generally hold personal data on paper. Where we do take it, we shred it just as soon as the details have been transferred onto our IT systems. In the few instances where we have some legacy files covering historic transactions these are secured in lockable cabinets in secure offices.
  4. Data Subjects should be aware that not all electronic communications are secure. We use Transport Layer Security (TLS) to encrypt and protect email traffic in line with government advice. However, if your email service does not support TLS, you should be aware that any emails we send or receive may not be protected in transit.
  5. We will also monitor any emails sent to us, including file attachments, for viruses or malicious software. Please be aware that you have a responsibility to ensure that any email you send is within the bounds of the law.

9. Additional Services

As a consumer of our services we may occasionally contact you to make you aware of other similar services we offer, which we feel could be of assistance to you. Such communications will be sent to you under the Privacy and Electronic Communications Regulations and you will be given the option to opt out of similar communications on each occasion.

10. Data Protection Concerns

Should you have any concerns regarding the way an organisation is processing your personal data, the ICO recommends that in the first instance you contact the organisation concerned. If the organisation does not address those concerns in an appropriate manner, you then have the option to escalate the issue to the ICO. If you wish to contact us because you have concerns about our use of your personal data, please contact us using the details provided in paragraph 7.2.

11. Updates

This Privacy Notice is kept under review and is updated as appropriate. It was last updated on 6th July 2023.