Last updated: May 11, 2026
Lucid Cognition Ltd is committed to complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We take our data protection responsibilities seriously and have implemented appropriate measures to ensure your personal data is processed lawfully, fairly, and transparently.
Lucid Cognition Ltd is the data controller responsible for your personal data.
Registered Office:
42 Finsbury Square
London EC2A 1AD
United Kingdom
Contact Email: [email protected]
We process personal data under the following lawful bases:
Where you have provided explicit consent for us to process your data for specific purposes, such as marketing communications or initial consultations.
When processing is necessary to perform our pension advisory services under a contract with you, or to take steps at your request before entering into a contract.
When we must process your data to comply with legal requirements, including:
When processing is necessary for our legitimate business interests, such as:
We balance our legitimate interests against your rights and only process data where our interests do not override your fundamental rights.
We adhere to the following data protection principles:
We process personal data lawfully, fairly, and in a transparent manner. We provide clear information about how and why we use your data.
We collect personal data for specified, explicit, and legitimate purposes and do not process it in ways incompatible with those purposes.
We only collect personal data that is adequate, relevant, and limited to what is necessary for the purposes for which it is processed.
We take reasonable steps to ensure personal data is accurate and kept up to date. Inaccurate data is corrected or deleted without delay.
We retain personal data only for as long as necessary for the purposes for which it was collected, or as required by law.
We process personal data securely using appropriate technical and organizational measures to protect against unauthorized or unlawful processing and accidental loss, destruction, or damage.
We are responsible for demonstrating compliance with GDPR principles through documentation, policies, and procedures.
You have the right to request a copy of the personal data we hold about you. We will provide this information within one month of your request, free of charge.
You can request correction of inaccurate or incomplete personal data. We will update your information within one month.
You may request deletion of your personal data in certain circumstances, such as when data is no longer necessary for the purpose it was collected. However, we may need to retain certain data to comply with legal obligations.
You can request that we restrict processing of your personal data in certain situations, such as when you contest the accuracy of the data.
You have the right to receive your personal data in a structured, commonly used, and machine-readable format and transmit it to another controller.
You can object to processing based on legitimate interests or for direct marketing purposes. We will stop processing unless we have compelling legitimate grounds.
You have the right not to be subject to decisions based solely on automated processing, including profiling, which produce legal or similarly significant effects. We do not currently use automated decision-making in our pension advisory services.
Where processing is based on consent, you have the right to withdraw that consent at any time. This does not affect the lawfulness of processing before consent was withdrawn.
To exercise any of your data protection rights, please contact us:
Email: [email protected]
Post: Lucid Cognition Ltd, 42 Finsbury Square, London EC2A 1AD
We will respond to your request within one month. In complex cases, this may be extended by up to two months, and we will inform you of any delay.
We implement appropriate technical and organizational measures to protect personal data, including:
In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify the Information Commissioner's Office (ICO) within 72 hours of becoming aware of the breach. If the breach poses a high risk to you, we will also notify you directly without undue delay.
We primarily store and process data within the United Kingdom. If we transfer personal data outside the UK, we ensure appropriate safeguards are in place, such as:
While we are not currently required to appoint a Data Protection Officer, our senior management team is responsible for overseeing GDPR compliance. Questions about data protection can be directed to [email protected].
If you are dissatisfied with how we handle your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):
Information Commissioner's Office
Wycliffe House, Water Lane
Wilmslow, Cheshire SK9 5AF
Telephone: 0303 123 1113
Website: lucid-cognition.com
We may update this GDPR Compliance Statement from time to time to reflect changes in our practices or legal requirements. Material changes will be communicated through our website.