Privacy & Security Policy

Respecting your privacy is extremely important and is a task we take seriously.

This privacy and security policy explains how we collect, store and process data via this service. This is a long document but outlines, in detail, exactly what data we process, how long we retain it for and more.

Policy Summary

  • We are Virgin Islands Shipping Registry (the Data Controller) and you can contact us at 1st Floor Ritter House, Wickhams Cay II, Road Town, Tortola, Virgin Islands (British) VG1110;
  • We collect, store and process your data to provide our services to you, or for our legitimate interests;
  • We only process your data for as long as we need to, and then we delete it;
  • We do not sell or share your data with others unless they are providing a service to us (such as payment service providers), or unless you ask us to share your data;
  • We do not market to you without your consent and, if you give us your consent, you can withdraw it at any time;
  • We do not share your data, unless you explicitly request us to;
  • This service is hosted by Oceans HQ Ltd (the Data Processor) on servers in European data centres.

How we process your data

Throughout your interactions with us we will only collect the data that we require in order to provide you with the service that you are requesting. The key information that we process is shown below for your information.

IP Addresses

When you access this service we will store a record of your IP address along with details of your request in our logs. This information is stored and used by our system team to ensure the integrity of our services.

Data Retention: This information is stored in rotating logs, which are kept for up-to 12 months.

Authorisation & Session Data

If you login to this service we will use at least two cookies that will identify your session to the service. This is necessary to provide the service to you.

The browser_id cookie is a permanent cookie that uniquely identifies your browser to us and allows us to ensure that previous sessions from that browser are invalidated when logging in again. This is only used for the purposes of invalidating these sessions as well as allowing us to notify you when new sessions are created in new browsers.

The user_session cookie is, initially, a session-only cookie that contains a unique token that identifies your specific session. This data is not stored on our end and is only stored on your machine in a hashed form. If you choose to persist your login session, this cookie will be converted to a more permanent cookie with an expiry time at some point in the future.

In addition to these cookies, we also store IP addresses & user agents with your session. This allows us to look for anomalies in its use to help us protect your account and our systems.

Data Retention: This data is stored until such time as the associated user account is deleted.