Privacy Policy


1. Introduction
This Privacy Notice sets out how the Jersey Data Protection Association (the “JDPA”) deals with your personal data which we collect in the course of your use of this website and as a result of you interacting with The JDPA entities in other ways. We may collect certain information about you in the course of your use of this website and otherwise in your interaction and correspondence with us. We take privacy and security of your information seriously and will only use such personal information as set out in this privacy policy.

2. Collection of Information by Third Parties
The JDPA website contains links to other sites whose information practices may differ from those of The JDPA. If you should visit such third party sites, you should ensure that you review the appropriate privacy notices as we have no control over information that is submitted to, or collected by, these third parties.

Our subscription mailing list is managed through Mailchimp.  Their privacy policy can be found at

Events are advertised and attendance recorded through Eventbrite, unless otherwise stated.  Their privacy policy can be found at

3. Who We Are – The JDPA
Information which is collected as a result of your use of this website will be the responsibility of the JDPA, who will act as data controller in relation to your personal data.
The JDPA is a members’ association for those with an active interest in Jersey data protection issues.

4. Where And When we Collect your Data
We may collect and process your personal data from a variety of sources including:
• Your use of this website;
• Your interactions with our officers, committee and members;
• The information you provide us when you are applying to join the JDPA;
• When you interact with us on behalf of your own employer or institution;
• Your colleagues when they write to us on your behalf; and
• Information which we collect from our contact on social media (including but not limited to Twitter and Linkedin).

5. What Data We May Collect
We may collect and process the following types of personal data:
• Your work and home details, such as email address, postal address and/or telephone number (both landline and mobile);
• Your job title;
• Details of your visits to our websites and applications including, but not limited to, traffic data, location data and other communication data, and the resources that you access;
• Details of your interactions with us, including any which occur electronically or in person;
• Details of your professional and personal relationships;

6. What we use your personal data for
The JDPA and/or persons acting on our behalf may process your personal data for a number of business purposes, (depending on the capacity in which you deal with the JDPA) which may include:
• to ensure the content on our websites and applications is presented in the most effective manner for you;
• to manage your membership of the JDPA and any training requirements which you may have from time to time;
• to ensure the protection of the interests and reputation of the JDPA.
• to comply with our legal, tax and regulatory obligations;;
• for monitoring and assessing compliance with the JDPA’s policies and standards;
• for promotional and marketing materials and activities, including photos and videos;
• to provide you with requested products or services;
• in order to ensure the security and access of our systems, premises, platforms and secured websites and applications; and
• other purposes reasonably ancillary to the above
Many of the above ways in which we process data may be as a result of legal or regulatory obligations. Some may be based on your consent (which we will obtain at the time of collection and at appropriate other times).
Where we process data for our legitimate business interests, you have the right to object to such processing (see below in relation to your rights). Please bear in mind that if you do object this may affect our ability to carry out tasks above for your benefit.

7. When we may disclose your personal data
We may disclose your personal data to the following for the purposes
• To other JDPA members.
• To third party data processors who process your personal data on our behalf (such as our IT systems providers);
• To third parties service providers which are themselves data controllers such as professional advisors, banks and other service providers;
• To third parties in the course of providing membership benefits and products.
• To any national and/or international regulatory, enforcement or exchange body or court where we are required to do so by applicable law or regulation or at their request.
• To any central or local government department and other statutory or public bodies as required.

8. Data Security
The JDPA uses up-to-date data storage and security techniques to protect your personal information from unauthorised access, improper use or disclosure, unauthorised modification or unlawful destruction or accidental loss.
Any third parties we engage to process your personal information are obliged to respect the confidentiality of your information.

9. International Transfers
The personal data we collect from you may be processed in (including being accessed in or stored in) a country or territory outside your home country, including outside the European Economic Area (“EEA”).
Where we transfer data to another jurisdiction, which does not offer the same level of protection of personal data as may be enjoyed within your home country, we will ensure that your data is appropriately protected.

10. How we use cookies and other similar technology on our websites
This website uses cookies. A cookie is a small text file that a website saves onto your device when you visit the site. It enables our website to remember your actions and preferences over a period of time, so you don’t have to keep re-entering them when you come back to the site or browse from one page to another. It makes your experience with us more seamless.
Our pages use cookies to remember:
• Your display preferences, such as colour settings or font size.
• If you have already replied to any pop-ups that appear so that you won’t be asked again;
• If you have agreed (or not) to our use of cookies on this site;

Any videos embedded in our pages use a cookie to anonymously gather statistics on how you got there and what videos you visited.
Enabling these cookies is not strictly necessary for the website to work, but it will provide you with a better browsing experience. You can delete or block these cookies through your browser, but if you do that some features of this site may not work as intended.
The cookie-related information is not used to identify you personally and the pattern data is fully under our control.
These cookies are not used for any purpose other than those described here.

11. How Long We Retain Personal Data
We will retain your personal data for as long as necessary to fulfil the purpose for which it was collected.
Once those purposes are completed, we then have legal and regulatory obligations to fulfil in connection with data retention which we will need to fulfil.
Additionally, we may also retain personal data in some circumstances for a period of least ten years in order to ensure that we are able to answer and deal with any queries, complaints, tax enquiries or investigations or any legal proceedings which may arise.

12. Your rights
You have the right to apply for a copy of the personal data we hold about you and to have any inaccurate personal data about you rectified.
In some circumstances you may also have the right to ask us to erase your personal data or restrict its processing.
Where we process your data for our legitimate interests, you have the right to object to such processing.
Where our processing is based on consent, you may withdraw your consent by emailing
Please bear in mind that if you object to processing or withdraw your consent, this may affect our ability to deliver services to you.
Should you wish to discuss the exercise of any your rights, please contact us as set out below.

13. Office of the Information Commissioner
The Commissioner is an independent statutory authority, with a mission to promote respect for the private lives of individuals through ensuring privacy of your personal information.
Please bear in mind that the Office of the Information Commissioner (OIC) as referred to in this Policy and on our website is that in the Bailiwick of Jersey and not the United Kingdom.

14. Contacting the OIC
If you would like to make a complaint to the Information Commissioner, or learn more about data protection in Jersey please visit their website at

15. Contact information
If you have any questions in relation to this policy or data protection within please contact us at:

If you currently receive marketing information from us which you would prefer not to receive in the future please email us at