In May 2018, Jersey introduced Data Protection Law with equivalent principles to the European General Data Protection Regulations (“GDPR”). The Data Protection (Jersey) Law 2018 brings equivalence to the principles of the GDPR. This means that individuals privacy rights will be strengthened and your information will be safer.
We are registered with the Office of the Information Commissioner (registration number 67889). All Personal Data is held and Processed by us strictly in accordance with the provisions of the Data Protection (Jersey) Law 2018 and the Data Protection Authority (Jersey) Law 2018.
By instructing us to provide you with our Services you warrant and undertake that you have obtained the requisite consent to enable all such Personal Data to be used, disclosed and otherwise Processed by us for the purposes of performing the Services and any compatible supporting functions.
means any applicable law, order, regulation, rule, order of court, code or similar in any jurisdiction, as amended, reenacted or modified from time to time and the law governing these Terms & Conditions, including but not limited to the Data Protection (Jersey) Law 2018 and the Data Protection Authority (Jersey) Law 2018;
means any agreement between Virteffic and the Client to which our Terms & Conditions apply;
(or “you” or “yours”)
means the person, company, firm or organisation to whom Virteffic agrees to provide the Services in accordance with the Agreement and our Terms & Conditions;
means all information that a Party discover because of or through the relationship created between the Parties under the Agreement and which is about or relating to the business of each Party (including information of the business, affairs, customers, contractors, employees, products, developments, operations, processes, pricing, networks, trade secrets, design rights, know-how and financial information, products, Services, service levels, customer satisfaction, proposed Services and products, pricing, and margins) or the people connected to the Party (including the directors or partners, investors, staff, suppliers, customers, clients, prospects and contractors) but excludes information that is openly published by such Party, or information that is publicly available without breach of our confidentiality obligation;
means all fees payable by the Client to Virteffic as set out in the Agreement, or as otherwise agreed in Writing;
shall not imply any limitation on the generality of the concept or thing of which examples are being given;
includes a natural person, corporate or unincorporated body (whether or not having separate legal personality);
has the meaning as defined in Article 2 of the Data Protection (Jersey) Law 2018;
Process or Processing or Processes
when applied to Personal Data, will include (without limitation) the collection, organisation, recording, storage, altering, using and disposal of Personal Data;
Party or Parties
refer to the Parties to the Agreement;
means any service rendered by Virteffic to the Company, pursuant to or in connection with any Agreement and the Services to be provided by Virteffic to the Customer under the Agreement as specified in the Fee Schedule
Terms & Conditions
means these standard terms and conditions;
(or “we” or “our” or “us”)
means Virteffic Limited, trading as Virteffic, a company registered in Jersey with registered number 132020 whose registered office is at Norowsa, La Vallee de St Pierre, St Lawrence, Jersey JE3 1EG; and
shall be construed as written or represented by any means reproducible in writing, including any form of print, email, facsimile or photograph or represented by any other substitute or format for storage or transmission for writing or partly one and partly another.
Words imparting the singular number shall include the plural and vice versa.
References to any gender shall include the other gender and the neuter.
What sort of personal information do we collect?
The type of personal information which we collect will vary significantly depending on numerous factors, including your personal circumstances, the nature of your relationship with us, and the nature of Services we are asked to perform and the extent of contact with you. The personal information we obtain can be grouped into the following categories:
Your contact details such as title, name, job title, postal address, email address and phone number, demographic information such as postcode, preferences and interests and any other information you provide by filing in a form. This includes information provided during our correspondence, at the time of completing a contact form via the website, when completing our Agreement, subscribing to our email list or blog posts, or requesting further Services.
We may also hold information provided to us in relation to an application, or expression interest in a job with Virteffic. Such personal information may include employment history, academic background, nationality, license status in Jersey and contact details. We may also collate information from third-party whilst performing background checks, collating references and credit references. By entering into an employment contact with Virteffic, you consent to Personal Data being processed by Virteffic as required by the Data Protection (Jersey) Law 2018.
Information about you which we obtain in order to provide Services to corporate clients. Depending on the circumstances and the nature of your relationship with us, such information may include, without limitation, your assets and liabilities, any directorships / partnerships you hold, and information about your personal circumstances. This may include, but is not limited to, identity information such as your passport or other identity document details, date of birth, nationality, place of birth and country of residence, job title and address details.
Details of your visits to our site
Social media, blogs, reviews
Any social media posts or comments you send to us (for example via Facebook, Instagram, LinkedIn and/or Twitter) will be shared under the terms of the relevant social media platform on which they are written and could be made public. We have no control over that policy or the terms of such social media platforms, including but not limited to Facebook, Instagram, Twitter, LinkedIn, Pinterest, as other people, not us, control these platforms. We are not responsible for this kind of sharing. We recommend you should review the terms and conditions and privacy policies of the social media platforms you use. That way, you will understand how they will use your information, what information relating to you they will place in the public domain, and how you can stop them from doing so if you are unhappy about it. Any comments you post on the website or on our blog will be visible and shared with all other visitors and the public at large. Any comments you make on these Services and on social media in general, must not be offensive, insulting or defamatory. You are responsible for ensuring that any comments you make comply with any relevant policy.
How we use your Personal Data and the legal basis for doing so
We require this information to understand your needs and provide you with a better service, and in particular for the following purposes:
Our legitimate business interest to facilitate the provision of our Services to you.
Internal management, administrative and organisational purposes
We may keep you information for internal record keeping. This includes maintaining internal records and carrying out other business administration tasks, and to facilitate the effective management and administration of our business, including in relation to matters such as business planning, budgeting, and forecasting, as well as enforcement of our Terms & Conditions of service and collection our Fees. We do so in relation to our legitimate business interest to Process your Personal Data in order to manage our business Processes.
Development and Improvements
We may use the information to improve our Services and/or to develop new products and Services.
Marketing about our Services, our news and events
We may periodically send promotional emails about new Services, special offers or other information which we think you may find interesting using the email address which you have provided, including sending you our news emails, information about our Services, related information which may be of interest to you and to invite you to our events. We would do so to promote the Services we offer and in respect of our legitimate business interest to send you marketing and promotional materials from time to time. Where we have obtained your consent to send marketing then we instead rely on consent as the legal basis. You can tell us to stop sending you marketing information at any time by objecting or withdrawing your consent. You can do so by contacting firstname.lastname@example.org
or by using the unsubscribe link in any marketing email you receive from us.
Research, statistics and other data analysis
From time to time, we may also use your information to contact you for market research purposes. We may contact you by email, phone or mail. We may use the information to customise the website according to your interests. We may also create forecasts and business plans, improving our service and developing new Services. We consider this our legitimate business interest to Process your Personal Data to develop and improve our business through aggregated and anonymised reporting analysis.
To manage, maintain, and develop our relationship with our clients.
Carrying out due diligence
Sharing data with other third Parties
Including third Parties who Process Personal Data on our behalf. We refer to our legitimate business interest to share your data with trusted third Parties who provide us with Services relating to our provision of Services to you, including professional advisers, any screening service providers and IT service providers.
How does Virteffic obtain your personal information and collect your data
We endeavor to collect your personal information directly from you wherever possible. However, the nature of the Services we perform and the context in which we handle your personal information can often result in us collecting your personal information indirectly from third Party sources. Additionally, there may be circumstances where we are required to seek your personal information from independent sources (for example when we need to use your personal information to comply with any legal requirements to validate your identity or background).
Virteffic may use the following methods to collect data:
Direct interactions on our website
For example when you fill our and submit a contact form, sign up to a newsletter, making an enquiry or comment on our website or on our social media accounts. We will ask you to agree that we can hold your personal information for this purpose as part of the sign up Process.
Automated technologies or interactions
Third Parties or publicly available sources
We may receive Personal Data about you from various third Parties and public sources.
On Social Media
We have a number of social media platforms where we interact with individuals who follow our sites or respond to our postings. We will engage with and respond to individuals who also have a presence on these platforms and all these interactions remain on the site on which they are posted. We use the analytics provided by these platforms in order to understand how our posts are engaging users.
Our clients and people who email or phone us
Our business idea is to work on an ongoing basis with a portfolio of businesses based in Jersey. We may receive email and phone enquiries from individuals who ask us for further details in respect of the Services we provide. In these cases, we will meet in person, by telephone or online video messaging or enter into an email correspondence with individuals in order to provide the information they need. During this Process, individuals may share commercially sensitive information with us about their business.
Providing your Personal Data to others
We will not sell or lease your personal information to third Parties unless we have your permission or the law requires us to do so.
We may disclose your personal information to third Parties, only:
● If we are under a duty to disclose or share your Personal Data in order to comply with any legal obligation, our customers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.
● We may disclose your Personal Data to our insurers and/or professional advisers insofar as reasonably necessary for the purposes of obtaining or maintaining insurance coverage, managing risks, obtaining professional advice, or the establishment, exercise or defence of legal claims, whether in court proceedings or in an administrative or out-of-court procedure.
● To our suppliers or sub-contractors insofar as reasonably necessary for proper administration of our website and business and communications.
● In the event that we sell or buy any business or assets, in which case we may disclose your Personal Data to the prospective seller or buyer of such business or assets.
Whenever we share your personal information, whether internally or externally, we will ensure that such sharing is kept to the minimum necessary.
How long do we keep your information for?
We only retain your information for as long as we actually need it for the purposes we acquired it for, to ensure we meet our legal data protection and privacy obligations.
Customarily, this mean that we will hold your information during the period that we provide you with our Services.
Following the termination of our engagement and post the delivery of our Services, we may keep your information and data for a reasonable period of time afterwards for marketing purposes (which shall take into account whether you have had contact with us or otherwise actively engaged with us during that time) from receipt subject to an individual’s right to unsubscribe or be forgotten at any time. Active engagement shall mean if you are actively engaging with our online Services where you communicate with us or click through from our marketing communications.
After that we will delete it other than where we lawfully can keep any data for audit or legal reasons.
Your Rights and Obligations
The Data Protection (Jersey) Law 2018 grants people a range of specific rights they can exercise over their Personal Data, in certain circumstances (exemptions may apply). Your rights under the Data Protection (Jersey) Law 2018 include the rights to:
● Your right of access – You have the right to ask us for copies of your personal information.
● Your right to rectification – You have the right to ask us to rectify information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete.
● Your right to erasure – You have the right to ask us to erase your personal information in certain circumstances.
● Your right to restriction of processing – You have the right to ask us to restrict the processing of your information in certain circumstances.
● Your right to object to processing – You have the right to object to the processing of your personal data in certain circumstances.
● Your right to data portability – You have the right to ask that we transfer the information you gave us to another organisation, or to you, in certain circumstances.
You have the right to ask us not to Process your Personal Data for marketing purposes. We will usually inform you (before collecting your data) if we intend to use your data for such purposes or if we intend to disclose your information to any third Party for such purposes. You can exercise your right to prevent such Processing by checking certain boxes on the forms we use to collect your data. You can also exercise the right at any time by contacting us.
You will not have to pay a fee to access your Personal Data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances.
We may need to request specific information from you to help us confirm your identity and ensure your right to access your Personal Data (or to exercise any of your other rights). This is a security measure to ensure that Personal Data is not disclosed to any Person who has no right to receive it.
We may also contact you to ask you for further information in relation to your request to speed up our response.
You may request details of personal information which we hold about you under the GDPR Law 2018 & Jersey Data Protection Laws or request that we copy, delete or amend the details of the information held. You can easily do so by:
Write to us at Virteffic Limited, Norowsa, La Vallee de St Pierre, St Lawrence, Jersey JE3 1EG, or by email to email@example.com.
If you believe that any information we are holding on you is incorrect or incomplete, please write to or email us as soon as possible, at the above address. We will promptly correct any information found to be incorrect.
If you are dissatisfied with our response and wish to make a formal complaint to the data protection authority in Jersey, the details are as follows:
Office of the Information Commissioner | Brunel House, Old Street, St Helier, Jersey, JE2 3RG or https://oicjersey.org .
We will email you if we become aware of a Personal Data breach. We will assist you in your investigations in establishing how this occurred. We will assist you, as you may reasonably require, in meeting your GDPR obligations in relation to the security of Processing, the notification of Personal Data breaches and data protection impact assessments. This may result in additional time-related charges.
If you have instructed us to do something we believe is not within the Applicable Law, we reserve the right to take advice from the Information Commissioner’s help line and to act in accordance with their indications or advice.
It is your responsibility at all times to specify suitably secure platforms and Processes and to share data with us in a secure way.
Security is important to us and we are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and administrative procedures (including this Policy) to safeguard and secure the information we collect online, as follows:
● Virteffic has invested in all the technology and software required to ensure we can work securely and efficiently. We use Microsoft 365 Business Premium with protection against sophisticated cyberthreats to help protect against malware, viruses, phishing attempts, malicious links, and other threats. This is the safest windows ever which features control access to sensitive information using encryption to help keep data from being accidentally shared. The data stored on our Microsoft 365 platform is encrypted but you should be aware that if we are corresponding with you via a platform that you use which is not encrypted then these emails and their attachments may not be protected in transit.
● All our equipment are secured and set up with Bitlocker and Two Factor Authentication.
● Virteffic work with Logicalis (a Microsoft Gold Certified Partner and an Azure Expert Partner) not only for the provision of Cloud Services for email and file storage but also to deliver a level of security, management, monitoring and maintenance to Virteffic’s Microsoft Cloud and local computer estate including enhanced Microsoft Security Patching for Cloud and Local Environments. We are utilising Microsoft 365 products add additional layers of security, redundancy and resilience such as backup, cyber security awareness training, email archiving and endpoint defence as it is these extra measures which will make the environment that much more difficult to compromise.
● We will regularly review and enhance our procedures and this Policy to ensure your personal information is kept safe, confidential and protected from unauthorised access, accidental loss, misuse and abuse.
● All access to Virteffic’s website is covered by HTTPS.
● We will notify you and any applicable regulator of a breach, in the event of any suspected Personal Data breach and where we are legally required to do so.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your Personal Data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access. Please be aware that communications over the Internet, such as emails / webmails, are not secure unless they have been encrypted. Your communications may route through a number of countries before being delivered – this is the nature of the World Wide Web/Internet. Virteffic cannot accept responsibility for any unauthorised access or loss of personal information that is beyond our control
Virteffic Limited Virtual Assistants | Secretarial Support & Administration Services | Jersey, Channel Islands
Subscribe to the Virteffic blog
Subscribe to the Virteffic Blog via Email
Virteffic Limited (“Virteffic“) is not regulated or licensed under the Financial Services (Jersey) Law 1998, as amended (the “Financial Services Law“). Accordingly, Virteffic does not provide any regulated services and does not carry on any regulated activities which would require us to be a “registered person” under and defined in the Financial Services Law. Where it is necessary for such a regulated activity is to be carried out, you will be required to use the services of a firm that is registered under the Financial Services Law, to provide such services. Virteffic may provide certain secretarial support and administration services as a virtual assistant, however, the services are of an administrative nature only and your appointed company secretary and/or the directors of your company have full responsibility to ensure the accuracy of the work that Virteffic does for you, to have the final sign-off and to check the work before it is released, published and/or executed.