top of page

Vala Marketing Agency Privacy Policy

DATA PROTECTION GENERAL STATEMENT

​

This Data Protection Statement outlines Vala Marketing Agency (t/a VALA) commitment to its clients, suppliers, and other individuals to operate its business activities in a manner that meets the compliance obligations of the Jersey data protection legislation, the Data Protection (Jersey) 2018 Law (“DPJL”), and the General Data Protection Regulation (EU) 2016/679.

​

VALA understands and respects your right to privacy and is committed to ensuring the confidentiality and security of your personal data and the personal data processing activities within our organisation by applying the appropriate technical and organisational measures required to achieve this objective.

​

This document covers the policies and procedures for processing personal data in a compliant manner and outlines the rights of the data subjects in respect of that data. The Privacy Notice below explains how we may use, process, and store your personal data.

​

DATA CONTROLLER, DATA PROCESSOR

​

VALA's business offices are located at in Jersey, Channel Islands. The company website is Vala Marketing Agency. VALA provides professional services ranging from design, and marketing services and website creation for our clients.

​

Depending on the services provided to our clients, VALA can act as both a Data Controller and Data Processor in the provision of its services. Where VALA provides routine prescribed services to its clients, which are detailed in a data processor agreement or equivalent contract, then we act as a Data Processor. Examples of such services include the provision of website hosting services and managing marketing campaigns and competitions for clients. In all other circumstances, we act as Data Controller.

​

We are registered as a Data Controller and Data Processor under the Data Protection (Jersey) Law 2018. Our registration number is 101724.

​

All personal data processed by us will be done so in accordance with this Privacy Policy and the Jersey data protection law.

​

If you have any questions regarding this policy, data protection, or information security, please contact our Data Protection Manager at contact@valamarketingagency.com.

​

PRIVACY POLICY

​

Scope of Application

​

This policy applies to:

  • Our business activities operating within Jersey, Channel Islands.

  • The personal data processing of data subjects within the European Economic Area (EEA) and the UK.

​

What Data We Collect

​

We may collect and process the following personal information:

  • Contact details: Name, home address, business address, phone number, email address.

  • Social media details: Information from platforms such as Facebook, LinkedIn, Twitter, Instagram, YouTube, Vimeo, TikTok.

  • Banking details: Bank account number and sort code.

  • Personal photographs and videos: With your consent, for use in promoting our client project work.

  • IP address and computer/device information: For monitoring and managing our security policies.

​

What Purposes We Use Your Personal Data

​

  • To provide contracted professional services:

    • Deliver the products and services you have requested. (Lawful Basis: Performance of a contract)

  • To promote and advertise our products and services:

    • Use social media, websites, publications, and other channels for marketing. (Lawful Basis: Legitimate interest)

    • You have the right to object by contacting our Data Protection Manager.

  • To send notifications and direct marketing information:

    • Share updates about our products and services. (Lawful Basis: Consent)

    • You can opt-in or opt-out at any time.

  • To handle client feedback or complaints:

    • Respond to and resolve feedback or complaints. (Lawful Basis: Performance of a contract or Legitimate interest)

    • You have the right to object by contacting our Data Protection Manager.

  • To build and maintain client relationships:

    • Establish and strengthen business relationships. (Lawful Basis: Legitimate interest)

    • You have the right to object by contacting our Data Protection Manager.

  • To meet contractual obligations to suppliers:

    • Coordinate work and ensure timely payments. (Lawful Basis: Performance of a contract)

  • To comply with legal, tax, and regulatory obligations:

    • Fulfill compliance requirements. (Lawful Basis: Legal obligation)

  • To manage security and access:

    • Protect staff, assets, and computer systems. (Lawful Basis: Legitimate interest)

    • You have the right to object by contacting our Data Protection Manager.

  • To provide a safe and secure environment:

    • Ensure compliance with Health & Safety standards. (Lawful Basis: Legitimate interest)

  • To obtain and maintain insurance coverage:

    • Manage risks and seek professional advice. (Lawful Basis: Legitimate interest)

  • To establish and exercise legal rights:

    • Initiate or defend against legal claims. (Lawful Basis: Legitimate interest)​

​

How We Collect Your Data

​

We collect personal data in the following ways:

  • When you complete and submit contact forms on our website.

  • Through direct interactions such as emails, phone calls, text messages, or social media engagements.

  • Via website usage, cookies, and Google Analytics.

  • From publicly available sources such as social media profiles and public registers.

  • Through applications, tracking software, and tools used for business operations.

​

Data Sharing and Disclosure

​

We may disclose personal data to:

  • Service providers processing data on behalf of VALA for branding, design, marketing, and hosting services.

  • Professional advisors such as lawyers, accountants, and auditors.

  • Law enforcement and regulatory authorities where legally required.

  • Successor entities in case of a merger or acquisition.

Third-party processors are contractually obligated to maintain confidentiality and high-security standards.

​

International Data Transfers

​

Where data transfers are required outside Jersey, the UK, or the EEA, we ensure safeguards such as Standard Contractual Clauses are in place. If equivalent safeguards cannot be guaranteed, your consent will be requested.

​

Data Security

​

We employ strict security measures to protect personal data, including:

  • Policies: All staff adhere to data protection policies.

  • Training: Regular mandatory training for staff.

  • Access Control: Restricting data access based on roles.

  • Encryption: Secure communication channels.

  • Data Destruction: Secure disposal of data after retention periods.

​

Data Retention

​

  • Client and supplier records are retained for up to 10 years to comply with financial and regulatory obligations.

  • Non-essential data is deleted one year after the last interaction unless legal or regulatory obligations require otherwise.

​

Your Rights

​

Data subjects have the right to:

  • Access their personal data.

  • Rectify inaccuracies.

  • Request data deletion ("right to be forgotten").

  • Restrict or object to data processing.

  • Data portability.

  • Withdraw consent for specific data processing activities.

To exercise these rights, please contact dpo@vala.com.

​

Changes to This Policy

​

This Privacy Policy may be updated periodically. The latest version will be available at contact@valamarketingagency.com.

​

Contact Details

For questions or complaints regarding this policy, please contact: Vala Marketing Agency
Email: contact@valamarketingagency.com

bottom of page