Our use of your personal data is regulated under the General Data Protection Regulation (Regulation (EU) 2016/679)) for as long as the United Kingdom is a member of the European Union or is subject to any transition arrangements after leaving the European Union, the Data Protection Act 2018 and any other privacy related laws or regulations the UK may implement as a result of it leaving the European Union. We are responsible as “Controller” for the purposes of those laws.
We use information held about you in the following ways:
We may associate any category of information with any other category of information and will treat the combined information as personal data in accordance with this policy for as long as it is combined.
You agree that we have the right to disclose your personal information to any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 1159 of the Companies Act 2006.
We may also disclose your personal information to third parties:
All information you provide to us is stored on our secure servers. Any payment transactions carried out by us or our chosen third-party provider of payment processing services will be encrypted using industry leading encryption technology. Where we have given you (or where you have chosen) a password that enables you to access certain parts of our Sites, you are responsible for keeping this password confidential. We strongly recommend you not to share your password with anyone.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our Site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
Under data protection legislation, you have the right to request access to information about you that we hold (this is called a Data Subject Access Request or DSAR). To make a request for your personal information see the Contact section below.
We will always inform you (before collecting your personal information) of how we plan to use that personal information. You can exercise your right to prevent such processing by checking certain boxes on the Site when you submit your information. You can also exercise the right at any time by contacting us via email to firstname.lastname@example.org.
Our Site may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites and any services that may be accessible through them have their own privacy policies and that we do not accept any responsibility or liability for these policies or for any personal data that may be collected through these websites or services, such as contact and location data. Please check these policies before you submit any personal data to these websites or use these services.
This data will be retained in our records for no longer than is necessary to:
Details of retention periods are available on request. See Contact section below.
You can also complain to the ICO if you are unhappy with how we have used your data.
The ICO’s address:
Information Commissioner’s Office