- our shareholders;
- our beneficial owners;
- our directors;
- staff located at our affiliates; and
- third party supplier contacts.
- The Company’s website may contain links to other third party websites. If you follow a link to any of those third party websites, please note that they have their own privacy policies and that the Company does not accept any responsibility or liability for their policies or processing of your personal data. Please check these policies before you submit any personal data to such third party websites.
3. Personal data that the Company collects
- The Company only collects the personal data that we determine is required for the purposes set out at Section 4: Purposes for which we use your personal data, below. We may collect:
- Information you provide to the Company ►Personal data that you provide to the Company, such as when contacting us using the email or physical address(es) listed on our website, including your name, email address, bank account details (where required) and other contact details;
- In relation to shareholders only, information relating to your shareholding ► share register services are outsourced to registrars, which hold the majority of this personal data. We periodically receive reports listing our shareholders;
- KYC and due diligence information ► information obtained by third party screening providers and publicly available information and background screening, where required by law or applicable financial regulations;
- Our correspondence ► if you contact us, we will typically keep a record of that correspondence. This may include telephone calls in relation to management of shareholdings, and you will be informed that any call is being recorded. If you object to this, you can end the call at that point and utilise an alternative method of communication should you prefer;
- Device Information ► such as information about your operating system, browser, software applications, geolocation, security status and other device information in order to improve your experience, to protect against fraud and manage risk; and
- Website and communication usage ► details of your visits to the Company’s website and information collected through cookies and other tracking technologies including, but not limited to, your IP address and domain name, your browser version and operating system, traffic data, location data, web logs and other communication data, and the resources that you access.
4. Purposes for which we use your personal data
- To understand who our shareholders/beneficial owners are and undertake reporting and analysis ► Our corporate records contain information in respect of shareholders/beneficial owners to include names and addresses, account designations and the amount of shares held. We share this information with our authorised brokers to undertake reporting analysis.
Lawful bases: legitimate interests (to understand our shareholder demographic and undertake reporting and analysis); legal obligations; legal claims (where applicable)
- To maintain our share register ► we may process your personal data to set-up, maintain and update the register of our members, to prepare and issue share or stock certificates, to receive and deal with transfers, probates, powers of attorney, changes of address, and all similar documents normally needed to maintain the register, to deal with telephone enquiries for shareholders, to maintain and update dividend and interest payment instructions and account details, to make dividend payments, to deliver Annual Report and Accounts and Interim Reports, to assist with proxy voting and to enable you to use online platforms which enable you to vote by proxy and access and manager your shareholdings.
Lawful bases: legitimate interests (to manage your shareholding); legal obligations, contractual necessity; legal claims (where applicable)
- For administrative purposes ►we may process your personal data to arrange for payment of directors fees, deal with queries, pay dividends, organise and minute all meetings, liaise with directors regarding meetings and board packs, assist with the arrangement of travel, accommodation and directors’ requirements for board and committee meetings, maintain and keep a register of declared interests, advising directors and monitoring directors’ interests and conflicts.
Lawful bases: legitimate interests (to make corporate decisions and ensure that our directors are engaged consulted appropriately); legal obligations; legal claims (where applicable)
- To comply with legal or regulatory requirements, or as otherwise permitted by law ► we may process your personal data to comply with our regulatory requirements (for example, to comply with KYC, anti-money laundering or insider dealing requirements) or dialogue with our regulators or to defend or prosecute claims. This may involve background checks including screening against PEP, sanctions and/or anti-money-laundering databases on a periodic basis.
It is possible that special categories of personal data (e.g. political opinions, religious beliefs, ethnicity) and/or data relating to criminal convictions or offences may be received as a result of these background checks where such information has been made public or is relevant to the necessary checks.
Lawful bases: legal obligations; legitimate interests (to cooperate with law enforcement and regulatory authorities); legal claims (where applicable). Where special categories of personal data or data relating to criminal convictions or offences is processed, we will rely on substantial public interest (fraud prevention) or legal claims, as applicable.
- To inform you of changes ► to notify you about changes to the Company’s services and products;
Lawful bases: legitimate interests (to notify you about changes to the Company’s services)
- To re-organize or make changes to the Company’s business ► in the event that the Company (i) is subject to negotiations for the sale of the Company’s business or part thereof to a third party, (ii) is sold to a third party or (iii) undergoes a re-organization, we may need to transfer some or all of your personal data to the relevant third party (or its advisors) as part of any due diligence process for the purpose of analysing any proposed sale or re-organisation. The Company may also need to transfer your personal data to that re-organised entity or third party after the sale or re-organisation for them to use for the same purposes as set out in this policy;
Lawful bases: legitimate interests (in order to allow the Company to change its business); legal claims (where applicable)
- To communicate effectively with you and conduct the Company’s business ► to conduct the Company’s business, including to respond to your queries, to otherwise communicate with you (and keep a record of that communication, including recordings of telephone conversations relating to your shareholding), or to carry out our obligations arising from any agreements entered into between you and the Company.
Lawful bases: contract performance; legal obligation (the share registrar is legally required to record all conversations that result or good result in placing a trade); legitimate interests (to enable the Company to perform its obligations and provide its services to you, for the purposes of maintaining service standards and, if applicable, for the prevention, detection, investigation and prosecution of fraud); legal claims (where applicable)
5. Sharing your personal data (and transfers outside of the EEA)
- Sharing outside of the Company: personal data may be provided to third parties, including our brokers, share registrars, administrators, legal advisors, auditors, financial advisors, regulatory authorities or other self-regulatory organisations (when required to satisfy the legal or regulatory requirements of governments), regulatory or law enforcement authorities (where required or in cases of suspected criminal activity or contravention of law), or to comply with a court order or for the protection of our assets.
- Where the Company transfers personal data from inside the EEA to outside the EEA, The Company may be required to take specific additional measures to safeguard the relevant personal data. Certain countries outside the EEA have been approved by the European Commission as providing essentially equivalent protections to EEA data protection laws and therefore no additional safeguards are required to export personal data to these jurisdictions. In countries which have not had these approvals (see the full list here http://ec.europa.eu/justice/data-protection/international-transfers/adequacy/index_en.htm), The Company will establish legal grounds justifying such transfer, such as EU Commission-approved model contractual clauses, or other legal grounds permitted by applicable legal requirements.
- Please contact us at the email address provided in the Contact Us section below if you would like to see a copy of the specific safeguards applied to any export of your personal data.
6. Retention of your personal data
- The Companys retention periods for personal data are based on business needs and legal requirements. The Company retains your personal data for as long as is necessary for the processing purpose(s) for which the information was collected, and any other permissible, related purpose. For example, the Company may retain certain transaction details and correspondence until the time limit for claims arising from the transaction has expired, or to comply with regulatory requirements regarding the retention of such data. When personal data is no longer needed, the Company either irreversibly anonymises the data (and the Company may further retain and use the anonymised information) or securely destroys the data.
7. Safeguarding your personal data
- The Company uses physical, electronic and procedural safeguards to protect against unauthorised use, access, modification, destruction, disclosure, loss or theft of your personal data in the Company’s custody or control.
- The Company has agreements and controls in place with third party service providers requiring that any information the Company provides to them must be safeguarded and used only for the purpose of providing the service the Company has requested the company to perform.
Security over the internet
- No data transmission over the Internet or website can be guaranteed to be secure from intrusion. However, the Company maintains commercially reasonable physical, electronic and procedural safeguards to protect your personal data in accordance with data protection legislative requirements.
- All information you provide to the Company is stored on our or our subcontractors’ secure servers and accessed and used subject to the Company’s security policies and standards. You are responsible for complying with any other security procedures of which you have been notified by the Company.
9. Your Rights
- If you have any questions in relation to the Company’s use of your personal data, you should first contact the Company at the email address provided in the Contact Us section below. Under certain conditions, you may have the right to require the Company to:
- provide you with further details on the use the Company makes of your information;
- provide you with a copy of information that you have provided to the Company;
- update any inaccuracies in the personal data the Company or its service providers hold;
- delete any personal data that the Company no longer has a lawful ground to use;
- where processing is based on consent, to withdraw your consent so that the Company stops that particular processing;
- object to any processing based on the legitimate interests ground unless the Company’s reasons for undertaking that processing outweigh any prejudice to your data protection rights; and
- restrict how the Company uses your information while a complaint is being investigated.
- Your exercise of these rights is subject to certain exemptions to safeguard the public interest (e.g. the prevention or detection of crime) and the Company’s interests (e.g. the maintenance of legal privilege). If you exercise any of these rights, the Company will check your entitlement and respond in most cases within a month.
- If you are not satisfied with the Company’s use of your personal data or the Company’s response to any exercise of these rights you have the right to complain to your local data protection regulator. The relevant regulators are listed here.
|Jurisdiction||Data Protection Regulator|
|UK||Information Commissioner’s Office
SK9 5AFEmail: email@example.comTelephone: 0303 123 1113
|Guernsey||Office of the Data Protection Commissioner
St Martin’s House
St Peter Port
GY1 1BREmail: firstname.lastname@example.orgTelephone: +44 (0)1481 742074
- If you have any questions or concerns about our privacy practices, the privacy of your personal data or you want to change your privacy preferences, please contact the Company at info@PraxisIFM.com or at its registered office (for the attention of Praxis Fund Services Limited) at Sarnia House, Le Truchot, St Peter Port, Guernsey GY1 1GR.
- If after contacting the Company you do not feel that the Company has adequately addressed your concerns, you may contact your local data protection regulator identified above.
ANNEX A: Table of Lawful Bases
These are the principal legal grounds that justify our use of your information:
|Contract performance: where your information is necessary to enter into or perform the Company’s contract with you.|
|Legal obligation: where the Company needs to use your information to comply with its legal obligations.|
|Legitimate interests: where the Company uses your information to achieve a legitimate interest and the Company’s reasons for using it outweigh any prejudice to your data protection rights.|
|Legal claims: where your information is necessary for the Company to defend, prosecute or make a claim against you, the Company or a third party.|