Last update: 22nd October 2018
ICECAP Limited is registered in Jersey with registration number 125874 and has its registered office at First Floor, Osprey House, 5-7 Old Street, St Helier, Jersey, Channel Islands (ICECAP) and ICECAP and other companies in the ICECAP Group collect and use certain personal data about you.
We consider privacy to be fundamental to our relationship with our clients and individuals in our corporate clients. We are committed to maintaining the confidentiality, integrity and security of personal data. Accordingly, we have developed internal policies to protect personal data while allowing clients’ needs to be met.
These privacy terms set out the basis on which any personal data about you that you provide to us or that we create or that we obtain about you from other sources, will be processed by us.
For the purposes of data protection law, we are a data controller in respect of your personal data and are responsible for ensuring that we use your personal data in compliance with data protection law.
In these terms:
we or us means ICECAP and our means ICECAP’s;
ICECAP Group means ICECAP and its subsidiaries and any holding company of ICECAP and any other subsidiaries of such holding company;
and personal data means data that relates to a living individual who can be identified from the data (either by itself or when it is combined with other data).
2. Personal data that we collect about you
We collect and process different types of personal data about you as described below.
(a) Personal data that you provide to us or to another member of the ICECAP Group.
This includes information about you that you give us by filling in forms or by communicating with us, whether face-to-face, by phone, e-mail, through our website (the Site) or otherwise. Such information may include:
Basic personal data (such as first name; family name; email address; date of birth, phone number; address; city, postcode; country);
Any information that you choose to share with us which may be considered personal data; and
Information about your dependants, banking relationships and bank account details, tax information, national insurance number, passport or
Passport and/or ID card details, employment details, information about your PEP (Politically Exposed Person) status and source of wealth information
(b) Personal data that we collect or generate about you. Such information may include:
Information about our business relationship with you and our interactions with you;
When you submit identifiable comments or other content to us, we collect whatever information you supply and use this information to communicate with you if requested, and otherwise fulfil the purpose of the content submission;
Call recordings, data relating to IT usage and risk profile information.
(c) Information we obtain from other sources. We may collect and store information that is publicly available on websites such as Companies House and from information sources we may subscribe to such as Thomson Reuters World Check-One.
3. How we use your personal data
Your personal data may be stored and processed by us in the following ways and for the following purposes:
For the management and administration of our business;
Creating, improving and developing our products and services, and the operation of our Site;
Assessing risk profiles, tailoring our product and service offerings to different client needs;
Contacting you about programs, products or services that we believe may be of interest to you, and new product or service announcements or event invitations;
Contacting you to respond to your requests or inquiries and provide user support;
Conducting market research, surveys, and similar inquiries to help us understand trends and user needs across
service/product categories or user groups;
Preventing, investigating, or providing notice of fraud, unlawful or criminal activity, or unauthorised access to or use of personal data, our Site or data systems;
In order to comply with and in order to assess compliance with applicable laws, rules and regulations, and internal policies and procedures;
Investigating and resolving disputes and security issues and enforcing our legal rights; and/or
For the administration and maintenance of databases storing personal data.
We are entitled to use your personal data in these ways because:
We need to do so in order to perform our contractual obligations with our client;
We have obtained your consent;
We have legal and regulatory obligations that we have to discharge;
We need to do so in order to establish, exercise or defend our legal rights or for the purpose of legal proceedings;
The use of your personal data as described is necessary for our legitimate business interests, such as:
(a) allowing us to effectively and efficiently manage and administer the operation of our business;
(b) conducting market research or business analysis;
(c) maintaining compliance with internal policies and procedures; and promoting our business.
4. Disclosure of your personal data to third parties
We may disclose your personal data to other members of the ICECAP Group in relation to the provision of services and for the management and administration of our business; data relating to Know Your Customer (KYC) checks and to perform Anti Money Laundering (AML) checks.
We may share your personal data with third parties namely:
Service providers (third party agents and contractors) for the purposes of providing services to us (for example, accountants, professional advisors, IT and communications providers). These third parties will be subject to appropriate data protection obligations and they will only use your personal data as described in these privacy terms
Legal process, safety and terms enforcement: we may disclose your personal data to the extent required by law, for example if we are under a duty to disclose your personal data to any legal or government regulatory authorities in response to their requests for such information or to assist in investigations. We may also disclose your personal data to third parties in connection with claims, disputes or litigation, when otherwise required by law, or if we determine its disclosure is necessary to protect you or us, or to enforce our legal rights or contractual commitments that you have made; and
Business transfers: Your personal data may be disclosed as part of a corporate business transaction, such as a merger, acquisition, joint venture, or financing or sale of company assets, including bankruptcy proceedings, and could be transferred to a third party as one of the business assets in such a transaction. It may also be disclosed in the event of insolvency, bankruptcy or receivership.
5. Transfer of personal data outside the EU Area
The personal data that we collect from you may be transferred to, and stored at, a destination outside the European Economic Area (EEA). It may also be processed by staff operating outside of the EEA who work for other members of the ICECAP Group or for one of our suppliers.
Where we transfer your personal data from a country within the EEA to another country outside the EEA, we will ensure that it is protected in a manner that is consistent with how your personal data will be protected by us in the EEA. In relation to personal data being transferred outside of the EEA, for example, this may be done in one of the following ways:
the country that we send the data to might be approved by the European Commission as offering an adequate level of protection for personal data;
the recipient might have signed up to a contract based on “model contractual clauses” approved by the European Commission, obliging them to protect your personal data;
where the recipient is located in the US, it might be a certified member of the EU-US Privacy Shield scheme; or
in other circumstances the law may permit us to otherwise transfer your personal data outside Europe.
In other circumstances the law may permit us to otherwise transfer your personal data outside the EEA. In all cases, however, we will ensure that any transfer of your personal data is compliant with data protection law.
You can obtain more details of the protection given to your personal data when it is transferred outside the EEA (including a copy of the standard data protection clauses which we have entered into with recipients of your personal data) by contacting us in accordance with the “How to contact us” section below.
6. How long we keep your personal data
How long we will hold your personal data for will vary and will be determined by the following criteria:
the purpose for which we are using it – we will need to keep the data for as long as is necessary for that purpose;
legal obligations – laws or regulation may set a minimum period for which we have to keep your personal data.
7. Your Rights
In all the above cases in which we collect, use or store your personal data, you may have the following rights and, in most cases, you can exercise them free of charge. These rights include:
The right to obtain information regarding the processing of your personal data and access to the personal data which we hold about you;
The right to withdraw your consent to the processing of your personal data at any time. Please note, however, that we may still be entitled to process your personal data if we have another legitimate reason for doing so. For example, we may need to retain personal data to comply with a legal obligation;
In some circumstances, the right to receive some personal data in a structured, commonly used and machine readable format and/or request that we transmit those data to a third party where this is technically feasible. Please note that this right only applies to personal data which you have provided directly to us;
The right to request that we rectify your personal data if it is inaccurate or incomplete;
The right to request that we erase your personal data in certain circumstances. Please note that there may be circumstances where you ask us to erase your personal data but we are legally entitled to retain it;
The right to object to, or request that we restrict, our processing of your personal data in certain circumstances. Again, there may be circumstances where you object to, or ask us to restrict, our processing of your personal data but we are legally entitled to refuse that request; and
The right to lodge a complaint with the relevant data protection regulator if you think that any of your rights have been infringed by us.
You can exercise your rights by contacting us using the details set out in the “How to contact us” section below.
You can find out more information about your rights by contacting the Information Commissioner’s Office, or by searching their website at https://oicjersey.org.
8. Cookies that we use
9. Cookies used by our service providers
10. Managing cookies
10.1 Most browsers allow you to refuse to accept cookies and to delete cookies. The methods for doing so vary from browser to browser, and from version to version. You can however obtain up-to-date information about blocking and deleting cookies via these links:
(a) https://support.google.com/chrome/answer/95647?hl=en (Chrome);
(d) https://support.microsoft.com/en-gb/help/17442/windows-internet-explorer-delete-manage-cookies (Internet Explorer);
(e) https://support.apple.com/kb/PH21411 (Safari); and
10.2 Blocking all cookies will have a negative impact upon the usability of many websites.
10.3 If you block cookies, you will not be able to use all the features on our website.
11. Our details
11.1 This website is owned and operated by Icecap Limited.
11.2 We are registered in Jersey with registered office is at First Floor, Osprey House, 5-7 Old Street, St Helier, Jersey JE2 3RG.
11.3 Our principal place of business is at First Floor, Osprey House, 5-7 Old Street, St Helier, Jersey JE2 3RG.
11.4 You can contact us:
(a) by post, to the postal address given above;
(b) using our website contact form;
(c) by telephone, on the contact number published on our website; or
(d) by email, using the email address published on our website.
12. Data protection officer
If you would like further information on the collection, use, disclosure, transfer or processing of your personal data or the exercise of any of the rights listed above, please address questions, comments and requests to Richard White who is the Data Protection Officer (firstname.lastname@example.org).