Skip to main content
Case StudiesBlogAboutPricingContactClient Login
Book a Call →
View All ServicesGEO & SEOPerformance MarketingWeb Design & DevelopmentData & AnalyticsAI ConsultingRetention MarketingPerformance Creative

Privacy Policy

Last updated: 21 March 2026

1. Introduction

ikigai ("we", "our", or "us") is a growth marketing consultancy based in Jersey, Channel Islands. We are committed to protecting and respecting your privacy in accordance with the Data Protection (Jersey) Law 2018 ("DPJL 2018") and other applicable data protection legislation.

This Privacy Policy explains how we collect, use, store, and share your personal information when you visit our website at ikigai.je (the "Website"), use our client portal, engage our services, or otherwise interact with us. It also describes your rights under DPJL 2018 and how you can exercise them.

By using our Website or services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with the practices described herein, please do not use our Website or services.

2. Personal Information We Collect

We collect personal information in several ways depending on how you interact with us. The categories of personal information we may collect include:

Account and Contact Information

  • Full name
  • Email address
  • Phone number
  • Company or organisation name
  • Job title or role
  • Postal address

Usage and Technical Data

  • IP address
  • Browser type and version
  • Operating system
  • Device type and screen resolution
  • Pages visited, time spent on pages, and navigation paths
  • Referring website or source
  • Date and time of access

Cookies and Tracking Technologies

We use cookies, pixels, and similar technologies to collect information about your browsing activity. For full details, please see our Cookie Policy.

Third-Party Sources

We may receive personal information about you from third-party sources, including publicly available business directories, social media platforms (such as LinkedIn), referral partners, and analytics providers.

Marketing and Communications Data

  • Your preferences for receiving marketing communications from us
  • Your communication preferences and channel preferences
  • Interactions with our emails (opens, clicks)
  • Responses to surveys, feedback forms, or consultations

3. How We Use Your Personal Information

We use the personal information we collect for the following purposes:

Service Delivery

  • To provide, manage, and deliver our growth marketing services to you
  • To create and manage your account on our client portal
  • To communicate with you about your projects, reports, and deliverables
  • To process and respond to your enquiries and requests

Website Improvement and Analytics

  • To monitor, analyse, and improve our Website and user experience
  • To understand how visitors interact with our content
  • To identify and fix technical issues
  • To conduct A/B testing and optimise performance

Security

  • To protect our Website, services, and users from fraud and abuse
  • To detect and prevent unauthorised access or security breaches
  • To verify user identities where required

Marketing

  • To send you marketing communications about our services, case studies, and industry insights where you have opted in or where we have a legitimate interest to do so
  • To personalise content and advertising
  • To measure the effectiveness of our marketing campaigns

Legal Compliance

  • To comply with applicable laws, regulations, and legal processes
  • To respond to lawful requests from public authorities
  • To establish, exercise, or defend legal claims

4. Legal Basis for Processing

Under the Data Protection (Jersey) Law 2018, we are required to have a valid legal basis for processing your personal information. We rely on the following legal bases depending on the context:

  • Consent: Where you have given clear consent for us to process your personal information for a specific purpose, such as subscribing to our newsletter or accepting non-essential cookies. You may withdraw your consent at any time.
  • Contract Performance: Where processing is necessary for the performance of a contract with you, or to take steps at your request prior to entering into a contract. This includes providing our marketing services and managing your client portal account.
  • Legitimate Interests: Where processing is necessary for our legitimate interests or those of a third party, provided those interests are not overridden by your rights and freedoms. Our legitimate interests include improving our services, conducting analytics, direct marketing to existing clients, and ensuring the security of our Website.
  • Legal Obligation: Where processing is necessary for compliance with a legal obligation to which we are subject under Jersey law or other applicable legislation.

5. How We Share Your Personal Information

We do not sell your personal information. We may share your personal information with the following categories of recipients:

Service Providers

We engage trusted third-party service providers who process personal information on our behalf to help us operate our business and deliver our services. These include hosting providers (Vercel), email service providers, analytics platforms (Google Analytics), CRM systems (HubSpot), payment processors, and cloud storage providers. All service providers are contractually obligated to process your data only as instructed by us and to maintain appropriate security measures.

Legal Requirements

We may disclose your personal information if required to do so by law or in response to valid requests by public authorities, including courts, regulators, or law enforcement agencies in Jersey or elsewhere.

Business Transfers

In the event of a merger, acquisition, reorganisation, or sale of all or a portion of our assets, your personal information may be transferred as part of that transaction. We will notify you of any such change and any choices you may have regarding your personal information.

Affiliates and Partners

We may share your personal information with our affiliates and business partners where necessary to provide our services or for the purposes described in this Privacy Policy. Any such sharing is subject to appropriate data protection safeguards.

6. International Data Transfers

ikigai is based in Jersey, Channel Islands. Jersey has been granted adequacy status by the European Commission, meaning that the European Commission considers Jersey to provide an adequate level of data protection comparable to that of the European Economic Area.

Some of our service providers may be located outside of Jersey and the European Economic Area, including in the United States and other jurisdictions. Where we transfer your personal information to countries that have not been deemed to provide an adequate level of data protection, we ensure that appropriate safeguards are in place, such as:

  • Standard Contractual Clauses approved by the European Commission
  • Transfers to countries or organisations that have been recognised as providing adequate protection
  • Other legally recognised transfer mechanisms under DPJL 2018

You may request further information about the safeguards we have in place for international data transfers by contacting us at the details provided below.

7. Data Retention

We retain your personal information only for as long as is necessary to fulfil the purposes for which it was collected, including to satisfy any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal information, we consider:

  • The nature and sensitivity of the personal information
  • The potential risk of harm from unauthorised use or disclosure
  • The purposes for which we process the information and whether we can achieve those purposes through other means
  • Applicable legal, regulatory, tax, accounting, or other requirements

In general, we retain client account information for the duration of our business relationship and for up to six years thereafter to comply with legal obligations. Analytics and usage data is typically retained in an anonymised or aggregated form for up to 26 months. Marketing data is retained until you withdraw your consent or unsubscribe.

When your personal information is no longer required, we will securely delete or anonymise it in accordance with our data retention procedures.

8. Your Rights

Under the Data Protection (Jersey) Law 2018, you have the following rights in relation to your personal information:

  • Right of Access: You have the right to request a copy of the personal information we hold about you, together with information about how and why we process it.
  • Right to Rectification: You have the right to request that we correct any inaccurate or incomplete personal information we hold about you.
  • Right to Erasure: You have the right to request that we delete your personal information in certain circumstances, such as where it is no longer necessary for the purpose for which it was collected.
  • Right to Restriction: You have the right to request that we restrict the processing of your personal information in certain circumstances, such as where you contest its accuracy.
  • Right to Data Portability: You have the right to receive your personal information in a structured, commonly used, and machine-readable format, and to request that we transfer it to another controller where technically feasible.
  • Right to Object: You have the right to object to the processing of your personal information where we rely on legitimate interests as our legal basis, including for direct marketing purposes.
  • Right to Withdraw Consent: Where we rely on your consent to process your personal information, you have the right to withdraw that consent at any time. Withdrawal of consent does not affect the lawfulness of processing carried out prior to withdrawal.
  • Right to Lodge a Complaint: You have the right to lodge a complaint with the Jersey Office of the Information Commissioner (JOIC) if you believe that your personal information has been processed in a manner that is not compliant with DPJL 2018. The JOIC can be contacted at jerseyoic.org.

To exercise any of these rights, please contact us using the details provided in the "Contact Us" section below. We will respond to your request within one month of receipt. In certain circumstances, we may extend this period by a further two months where the request is complex or we receive a high volume of requests. We will inform you of any such extension and the reasons for it.

We may ask you to verify your identity before processing your request. There is no fee for exercising your rights, although we may charge a reasonable fee or refuse to act on a request if it is manifestly unfounded or excessive.

9. Children

Our Website and services are not directed at individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have inadvertently collected personal information from a child under 18, we will take reasonable steps to delete that information as soon as practicable. If you believe that we may have collected personal information from a child under 18, please contact us immediately using the details provided below.

10. Third-Party Links

Our Website may contain links to third-party websites, services, or applications that are not operated or controlled by us. This Privacy Policy does not apply to those third-party services, and we are not responsible for their content, privacy policies, or practices. We encourage you to review the privacy policies of any third-party websites you visit.

11. Security

We take the security of your personal information seriously and implement appropriate technical and organisational measures to protect it against unauthorised access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit using TLS/SSL
  • Secure hosting infrastructure with access controls
  • Regular security assessments and monitoring
  • Access restrictions based on the principle of least privilege
  • Secure authentication mechanisms for our client portal

However, no method of transmission over the internet or method of electronic storage is completely secure. While we strive to protect your personal information, we cannot guarantee its absolute security. If you become aware of any security breach or vulnerability, please notify us immediately.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes, we will update the "Last updated" date at the top of this page and, where appropriate, notify you by email or through a prominent notice on our Website.

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your personal information. Your continued use of our Website or services after any changes to this Privacy Policy constitutes your acceptance of those changes.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data protection practices, please contact us:

ikigai
Jersey, Channel Islands

Email: hello@ikigai.je

If you are not satisfied with our response to your enquiry or complaint, you have the right to lodge a complaint with the Jersey Office of the Information Commissioner (JOIC). Further information about the JOIC and how to make a complaint can be found at jerseyoic.org.