Privacy Policy
Introduction
Personal data is data which by itself, or with other data available to us, can be used to identify a person. TEAM is a data controller. This Privacy Policy sets out how TEAM will use personal data. We can be contacted at 1st Floor, 6 Caledonia Place, St Helier, Jersey, JE2 3NG if a data subject has any questions.
TEAM holds and processes data for the purposes of providing regulated financial services, namely investment management and advisory services, to our customers, including trustees of trusts and companies. This notice relates to the use of personal data provided to us by our employees, clients and related parties such as settlors and beneficiaries.
The types of personal data we collect and use
We will use personal data for the reasons set out below and in particular in order to provide services for our clients. The sources of personal data collected are mentioned in this notice. The personal data we collect may include:
- Full name and personal details, including contact information (e.g. home and business address and address history, email address, home, business and mobile phone numbers);
- Date of birth;
- Financial information (e.g. assets, sources of funds and wealth, salary and details of other income, social security information, tax information and details of bank accounts); and
- Education, health and employment details for regulatory and customer due diligence purposes.
Monitoring of communications
Subject to applicable laws, we will monitor and record calls; emails; and other communications relating to clients and related parties dealings with us. We will do this for regulatory compliance, self-regulatory practices, crime prevention and detection, to protect the security of the communications systems, for quality control and staff training, and when we need to see a record of what has been said. This is justified by our legitimate interests or our legal obligations.
Using personal data: the legal basis and purposes
We will process personal data:
- As necessary in order to carry out asset management services, by providing execution only, advisory or discretionary management services, and acting on behalf of clients and related parties including:
- To take steps at a client's request prior to entering into the contract for services;
- To decide whether to enter into a contact for services with prospective clients;
- To be responsible for the buying, selling and monitoring of investments;
- To prepare details of assets held by the client and related parties;
- To update clients and related parties' records; and
- To trace clients' and related parties whereabouts to contact them about the distribution of assets and to make payments.
- As necessary for TEAM's own legitimate interests, or those of our clients and/or other related parties and organisations, e.g.:
- For good governance, accounting, management and auditing of business operations;
- To monitor emails, calls, and other communications with clients and relevant parties; and
- For market research, analysis and developing statistics.
Legitimate Interests means TEAM's interests in conducting and managing our business, to enable us to ensure that the best services are provided. We will make sure that we consider and balance any potential impact on clients and related persons (both positive and negative) and their rights before we process personal data for our legitimate interests. We do not use personal data for activities where such person's interests are overridden by the impact on them (unless we have their consent or are otherwise required or permitted to by law).
- As necessary to comply with a legal obligation, e.g.:
- When a client exercises their rights under applicable data protection laws and makes a request;
- For compliance with legal and regulatory requirements and related disclosures;
- For establishment and defence of legal rights;
- For activities relating to the prevention, detection and investigation of crime; and
- To verify clients' identity, make fraud prevention and anti-money laundering checks.
- Based on consent, e.g.:
- When clients or related parties request that TEAM disclose personal data to other people or organisations such as an audit or accountancy firm handling a tax return, or otherwise agree to disclosures; and
- To send clients or related parties communications where they have agreed to this.
We do not generally process most special categories of personal data (e.g. racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data, data concerning clients' sex life or sexual orientation) with the exception of some health information and copies of passports, which may contain information on racial or ethnic origin. Where special category data is collected by TEAM, the data subject is deemed to consent to us holding and processing such data. If we are provided with information of a sensitive nature relating to a client's investment horizons then we will record it if that information is relevant to their financial objectives.
Clients and related parties are free at any time to change their mind and withdraw consent. The consequence might be that we cannot provide certain services – if so we will confirm this.
Sharing of personal data
Subject to applicable data protection law, we may share clients' and related parties' personal data with:
- Our group of companies (TEAM Plc and its subsidiaries) and related or representative companies which have shareholdings, and employees, officers, agents or professional advisors of these companies;
- Sub-contractors and other persons who help us provide our products and services;
- Companies and other persons providing services to clients and related parties;
- Legal and other professional advisors, including auditors;
- Government bodies and agencies in the Jersey and overseas (e.g. the Jersey tax authority who may in turn share it with relevant overseas tax authorities and with regulators, e.g. the Jersey Financial Services Commission, and the Jersey Office of the Information Commissioner (JOIC) and the equivalent regulators in other jurisdictions;
- Courts and other law enforcement bodies, to comply with legal requirements, and for the administration of justice;
- Other parties where necessary in an emergency, or to otherwise protect clients' and related parties' vital interests;
- Other parties connected with our clients e.g. directors, beneficial owners, beneficiaries, trustees or any named official;
- Other parties if there is a restructure or selling of assets or in the case of a merger or re-organisation;
- Banks, custodians, or investment platforms, who may transfer personal data to others as necessary to operate the accounts and for regulatory purposes; to process transactions; resolve disputes; and for statistical purposes, including sending personal data overseas; and
- Anyone else where the clients or related parties consent is given, or as required by law.
International transfers
Personal data may be transferred between the TEAM group of companies in Jersey (TEAM Plc and its subsidiaries) and third party processors who we use to deliver our services. These transfers will be to businesses in Jersey, the European Economic Area or other jurisdictions who are subject to adequate protections under their data protection laws.
Personal data will also be sent to third parties in jurisdictions requested by our clients in order to facilitate their requirements. Some countries have equivalent protections in place for personal data under their applicable laws, whereas in other countries steps will be necessary to ensure appropriate safeguards apply. These include imposing contractual obligations of adequacy in line with the data protection legislation in Jersey. Where this is not possible the TEAM group of companies will rely on the client's explicit consent to provide such information to entities in these jurisdictions which is considered to be obtained on the basis of the client's instructions to us.
Customer Due Diligence and Identity verification checks
Clients and related persons rights are as follows (noting that these rights don’t apply in all circumstances):
Criteria used to determine retention periods
The following criteria are used to determine data retention periods for personal data:
- Retention in case of queries. We will retain personal data as long as necessary to deal with queries (e.g. if an application to subscribe is unsuccessful);
- Retention in case of claims. We will retain personal data for as long as a client or a data subject might legally bring claims against us; and
- Retention in accordance with legal and regulatory requirements. We will retain personal data after the services provided have come to an end based on our legal and regulatory requirements.
My rights under applicable data protection law
Clients and related persons rights are as follows (noting that these rights don’t apply in all circumstances):
- The right to be informed about the processing of personal data;
- The right to have personal data corrected if it’s inaccurate and to have incomplete personal data completed;
- The right to object to processing of personal data;
- The right to restrict processing of personal data;
- The right to have personal data erased (the “right to be forgotten”);
- The right to request access to personal data and information about how we process it;
- The right to move, copy or transfer personal data (“data portability”);
- The right to object to automated processing;
- The right to raise a concern with TEAM; and
- The right to complain to the JOIC.
Clients and related persons have the right to complain to the JOIC at https://jerseyoic.org/. JOIC has enforcement powers and can investigate compliance with data protection law.
For more details on all the above, clients and related persons can contact us at team@team.je.