Privacy notice

RIT Capital Partners plc, a UK Investment Trust, and J. Rothschild Capital Management Limited, its wholly-owned manager (collectively “we”, “us” or “our”) are committed to protecting and respecting your privacy and to keeping personal data secure. This policy sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us. Please read the following carefully to understand our practices regarding your personal data and how we will treat it.

For the purpose of the UK General Data Protection Regulation (“GDPR”) and complementary UK legislation, we are the data controller for any personal information gathered by this website or by other sources. Our registered address is 27 St. James’s Place, London, SW1A 1NR.

If you have any questions about this Privacy Notice or the information we hold about you please contact our Data Protection Officer using the details set out below:

Full name of legal entity: J. Rothschild Capital Management Limited

Name or title of DPO or relevant contact:  Head of Compliance

Email address:  [email protected]

Postal address:  27 St. James’s Place, London, SW1A 1NR

Contact telephone numbers:  020 7493 8111

How we collect and use your information

We may collect and process data about you for the following reasons:

Shareholders not listed on the main register  If you have an investment in RIT but do not directly hold share certificates, for example you hold RIT shares through an account with a wealth manager or share dealing service, then it is unlikely that we will have your personal data and it will be your advisor / provider that holds your personal information and the details of your investment.

Shareholders listed on the main register – if you buy RIT shares and receive a share certificate in your name, then your details will be processed by us, by our Registrar, Computershare, and other third parties necessary to administer your interests as a shareholder. Data will have been provided to us by you, or by an advisor or broker on your behalf, and will include basic personal information such as name, date of birth, address and other contact details, and financial and transactional information regarding your investment in RIT shares, such as number of shares held, dividend payments, payment details and preferences such as how you like us to communicate with you or whether you wish dividends to be reinvested. Information is held for as long as you remain a shareholder and, thereafter, retained by our Registrar as required by company law or other legal obligations.

Visitors to the website – if you visit the RIT website we, the third party that runs the website on our behalf, and a third-party analytics service, may collect information relating to your visit including, but not limited to, traffic data, location data, weblogs and other communication data, and the resources that you access. The analytics information is only processed in a way which does not identify anyone. We do not make, and do not allow the analytics service provider to make, any attempt to find out the identities of those visiting our website. Please also see our Terms of Use and our Cookies Policy for further information about the use of the website.

Persons making enquiries about RIT – if you contact us with an enquiry by emailing us, we will keep a record of that correspondence and the limited personal contact details that you provide, should we need to respond to your enquiry now, or in the future. Details of the correspondence will be retained in accordance with companies law and the record keeping requirements of other regulations that RIT or, if relevant its FCA-authorised manager, is subject to.

Visitors to our buildings – in order to protect the security of our buildings, staff, tenants and visitors, it is in our legitimate interest to record security footage within our buildings and in the direct surroundings of our buildings. CCTV security footage is deleted after 30 days and is only shared with third parties if a lawful request is made by a legitimate body, for example by the Metropolitan Police.

Lawful basis for processing

Under the GDPR there must be a lawful basis for processing your personal data. As outlined above, we will only do so for the purpose of running our business, fulfilling contractual obligations, fulfilling our obligations to shareholders or to provide information to shareholders, potential investors or other interested parties making reasonable enquiries. In terms of the GDPR, we will be processing either on the lawful basis of fulfilling a contractual obligation, or the lawful basis of being in our, or your, legitimate interests. Finally, we may process on the lawful basis of fulfilling a legal obligation if this is applicable.

We will seek your consent in case we process your personal data on the lawful basis of consent for marketing purposes.

Who we do share information with

We will only share your personal data with other third parties where it is necessary for the purposes outlined above and in accordance with the relevant lawful basis for processing.

Examples of the third parties that may process personal data on our behalf are:

  • the Registrar for RIT Capital Partners plc
  • organisations that provide due diligence or other checking services
  • our professional advisers and auditors
  • the companies that help us administer this website
  • our regulators including the Financial Conduct Authority (FCA) and the Information Commissioner’s Office (ICO)
  • law enforcement agencies
  • the HM Revenue and Customers (HMRC)

Third parties that process data on our behalf are also subject to all of the requirements of the GDPR and owe us a contractual obligation to only use your personal data for the applicable purpose and to keep your data secure.

We may also disclose your personal information to any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 1159 of the UK Companies Act 2006.

We may disclose your personal information to third parties if we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our terms of use and other agreements; or to protect the rights, property, or safety of RIT or JRCM, customers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.

Finally, in the event that we sell or buy any business or assets, we may disclose personal data to the prospective seller or buyer of such business or assets. If we are acquired by a third party, personal data will be one of the transferred assets.

How information is kept secure

We take all steps reasonably necessary to protect your personal information from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. Where personal data is held electronically we store information on our secure servers and employ security procedures and features to try to prevent unauthorised access.  We have a procedure to deal with any suspected personal data breach and will notify you, and other regulators, where we are legally required to do so.

Our site may, from time to time, contain links to and from the websites of third party websites. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies.

Transfers of data outside of the UK

Personal data that we collect from you will only be transferred to or stored at a destination outside the UK or processed by staff operating outside the UK who work for us or for one of our suppliers if the organisation or country has data protection measures that have been deemed equivalent to those in the UK or if we have put adequate safeguards in place to ensure equivalent treatment of your personal data.

Your individual rights

The GDPR gives you rights in respect of your personal data.

We would draw your attention to the following procedures that we have in place in respect of your rights:

Right to access – you may request that we provide you with confirmation on whether we are processing your data and, if applicable, a copy of your personal data (not personal data in respect of any other individual) and other relevant processing information such as that provided in this privacy notice. To make a request, please contact our Data Protection Officer using the details set out above. There will be no charge for requests that are reasonably made. We will aim to respond to you in writing within one month.

Right to rectification – if personal data that we hold on you is incorrect, please contact our Data Protection Officer using the details set out above, or to your usual contact if applicable, and we will update our records (or let you know if we believe our records are accurate, if appropriate). Please note, if you wish to correct a record on our share register, you will need to contact our Registrar, Computershare, in writing at The Pavilions, Bridgwater Road, Bristol BS99 6ZZ or telephone them on 0370 703 6307.

Right to erasure – you may request that personal data that we hold on you be deleted, however, we are only obliged to erase your data if we no longer have a lawful basis for processing it. Please contact our Data Protection Officer using the details set out above, providing the reason for your request and sufficient detail to accurately identify your records, and we will write to you to let you know the action we have taken.

Right to object – you may object to the processing of your personal data. You must give specific reasons for your objection and we are not obliged to comply with your request if we have a compelling reason to continue processing your personal data in accordance with a lawful basis. Please contact our Data Protection Officer using the details set out above and we will write to you to let you know the action we have taken. If we do not agree with your objection we will explain why and, if you wish, how you may raise a complaint with the Information Commissioner’s Office.

For more information about your rights please see:

https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/

Changes to our privacy policy

We may revise our privacy policy at any time by amending this page. Please check this page from time to time to take notice of any changes we made.