Privacy Policy
Last updated: 13 May 2026
This Privacy Policy explains how MortgageConnector ("we", "us", "our") collects, uses, and shares your personal data when you use our mortgage broker matching service at mortgageconnector.co.uk. It is written to comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
1. Who we are
MortgageConnector is the data controller for the personal data you provide through our website.
We are not a mortgage broker and we are not authorised or regulated by the Financial Conduct Authority. We introduce consumers to FCA-authorised mortgage brokers who provide regulated mortgage advice. When we pass your data to a broker, that broker becomes a separate data controller for the data they receive.
2. What personal data we collect
- Contact details: name, email address, phone number.
- Mortgage-matching details: mortgage type (purchase, remortgage, buy-to-let, etc.), property value, deposit, income, employment status, credit profile indicators, location.
- Communications: messages you send us via the contact form or email.
- Technical data: IP address, browser and device information, pages visited, referrer, anonymised analytics events (only with your consent).
3. How we use your data and our lawful bases
| Purpose | Lawful basis under UK GDPR |
|---|---|
| Matching you with an FCA-authorised mortgage broker | Performance of a contract (Article 6(1)(b)) |
| Replying to enquiries you send us | Legitimate interests (Article 6(1)(f)) |
| Fraud prevention and security | Legitimate interests (Article 6(1)(f)) |
| Analytics to improve the service | Consent (Article 6(1)(a)) |
| Marketing communications, if you opt in | Consent (Article 6(1)(a)) |
| Complying with legal obligations | Legal obligation (Article 6(1)(c)) |
4. Who we share your data with
We share your matching data with the FCA-regulated mortgage broker we introduce you to. The broker will use your data to give you regulated mortgage advice and arrange your mortgage. The broker is a separate data controller under UK GDPR.
We also use the following processors who handle data on our behalf:
- Supabase — database and authentication hosting
- Netlify — website hosting and content delivery
- Resend — transactional email delivery (when applicable)
- Analytics provider — only if you give consent for analytics cookies
We do not sell your personal data.
5. International transfers
Some of our processors are located outside the UK. Where this happens we rely on UK adequacy regulations, the UK Addendum to the EU Standard Contractual Clauses, or other safeguards permitted under UK GDPR. We can provide details on request.
6. How long we keep your data
- Matching enquiry data: retained for up to 24 months from the date of enquiry so we can support follow-up matches and audit trails.
- Contact form messages: retained for up to 24 months.
- Cookie consent records: retained for up to 12 months from the date of decision, then re-prompted.
- Anonymised analytics: retained for up to 26 months.
7. Your rights
Under UK GDPR you have the right to:
- access the personal data we hold about you
- request correction of inaccurate data
- request erasure of your data ("right to be forgotten")
- restrict or object to processing
- request portability of your data
- withdraw consent at any time where we relied on it
- complain to the Information Commissioner's Office at ico.org.uk
To exercise any of these rights, email privacy@mortgageconnector.co.uk.
8. Cookies
See our cookies policy for details of the cookies we use and how to manage them.
9. Changes to this policy
We may update this policy. The "Last updated" date at the top reflects the most recent change. Material changes will be highlighted on the homepage.
10. Contact
For privacy questions or data-subject requests, email privacy@mortgageconnector.co.uk.