Privacy Policy
We understand that privacy and the security of your personal information are extremely important. This policy sets out what we do with your information, how we keep it secure, where and how we collect your personal information, and your rights over any personal information we hold about you. This Policy explains how we do this and informs you about your privacy rights and how the law protects you.
1. Introduction
1.1 This privacy notice applies to this website and other interactions (e.g., when you create an account, purchase or sign up for our product or service, sign up for our newsletter, updates, open a support ticket, or contact us via email, phone, or social media) you may have with us. If you do not agree with the terms, do not access our website or any other aspect of our services.
1.2 If you have any questions about privacy practices, please contact us using the support/contact us form on the website or via email at [email protected].
2. Data Controller and Processor
2.1 Debbie Lucas on behalf of Debbie Lucas Ltd trading as Eyes On Digital Media is the registered data controller and processor for the company. This means that we are responsible for determining the purposes and means of processing your personal data.
3. What Data Do We Collect About You
3.1 Personal Data: Personal data refers to any information capable of identifying an individual. It does not include anonymised data. We may collect and process your personal data in different ways:
- Communication Data: Includes any communication you send to us, whether through the contact form on our website, email, text, social media messaging, social media posting, or any other communication you send us.
- Customer Data: Includes data related to any purchases of goods and/or services such as your name, title, billing address, delivery address, email address, phone number, contact details, purchase details, and your payment card details.
- User Data: Includes data about how you use our website and any online services, together with any data that you post for publication on our website or through other online services.
- Technical Data: Includes data about your use of our website and online services, such as your IP address, login data, browser details, length of visit to pages on our website, page views, navigation paths, and other technology on the devices you use to access our website.
- Marketing Data: Includes data about your preferences in receiving marketing from us and our third parties and your communication preferences.
3.2 Other Information Collected: We may collect data directly from you when you provide it (e.g., filling in forms or sending us emails). We may also automatically collect certain data from you as you use our website through cookies and similar technologies. Please refer to our Cookie Policy for more details.
3.3 Third-Party Data: We may receive data from third parties such as analytics providers (e.g., Google), advertising networks (e.g., Facebook), and other providers of technical, payment, and delivery services. We may also receive data from publicly available sources.
4. How We Use Your Personal Data
4.1 We will only use your personal data when legally permitted. The most common uses of your personal data are:
- To perform the contract between us and provide you with goods or services.
- To process data in accordance with your instructions as a customer.
- For our legitimate interests or those of a third party, provided your interests and fundamental rights do not override those interests.
- To comply with legal or regulatory obligations.
4.2 We do not generally rely on consent as a legal ground for processing your personal data, other than in relation to sending marketing communications via email or text message. You have the right to withdraw consent to marketing at any time by contacting us.
5. Purpose and Legitimate Basis for Processing Your Personal Data
5.1 Below is a description of the ways we intend to use your personal data and the legal grounds on which we will process such data:
- Communication Data: Processed for communicating with you, record keeping, and for legal claims. The lawful ground is legitimate interests, to reply to communications, keep records, and establish, pursue, or defend legal claims.
- Customer Data: Processed to supply the goods and/or services purchased and keep records of such transactions. The lawful ground is the performance of a contract.
- User Data: Processed to operate our website, ensure security, maintain backups, and enable publication and administration of our website. The lawful ground is legitimate interests, to properly administer our website and business.
- Technical Data: Processed to analyse your use of our website, administer and protect our business, deliver relevant content and advertisements, and understand advertising effectiveness. The lawful ground is legitimate interests, to grow our business and decide our marketing strategy.
- Marketing Data: Processed to enable participation in promotions, deliver relevant content and advertisements, and measure the effectiveness of advertising. The lawful ground is legitimate interests, to grow our business and decide our marketing strategy.
6. Marketing Communications
6.1 The lawful ground for processing your personal data to send marketing communications is either your consent or our legitimate interests.
6.2 Under the Privacy and Electronic Communications Regulations (PECR), we may send you marketing communications if you have made a purchase, requested information about our goods or services, or agreed to receive marketing communications and have not opted out.
6.3 If you are a limited company, we may send marketing emails without your consent under PECR, though you can opt out at any time.
6.4 Before sharing your personal data with any third party for their marketing purposes, we will obtain your express consent.
6.5 You can stop receiving marketing messages at any time by adjusting your preferences on our website, following opt-out links on marketing messages, or contacting us.
6.6 Opting out of marketing communications does not apply to personal data provided as a result of other transactions, such as purchases.
7. Disclosures of Your Personal Data
7.1 We may share your personal data with the following parties:
- Online course platform provider champagne-room.io , acting as data processor.
- Service providers such as Amazon, Sendgrid, FileStack, Vimeo, and Zoom, who provide IT, cloud infrastructure, video hosting, and other system administration services.
- Professional advisers including lawyers, bankers, auditors, and insurers.
- Government bodies that require reporting of processing activities.
- Third parties involved in business transfers or mergers.
7.2 We require all third parties to respect the security of your personal data and to treat it in accordance with the law.
8. International Transfers
8.1 We may transfer your data outside the European Economic Area (EEA). Whenever this happens, we ensure a similar level of protection by implementing appropriate safeguards, such as:
- Transferring data to countries deemed to provide an adequate level of protection by the European Commission.
- Using specific contracts approved by the European Commission that ensure personal data receives the same protection it has in Europe.
- Transferring data to providers in the United States that are part of the EU-US Privacy Shield or have signed data processing agreements.
8.2 If no other safeguards are available, we may request your explicit consent for the transfer, which you can withdraw at any time.
9. Data Security
9.1 We have implemented security measures to prevent your personal data from being lost, used, or accessed unlawfully. Access to your personal data is limited to employees, agents, contractors, and other third parties with a business need to know.
9.2 We have procedures in place to deal with any suspected personal data breach and will notify you and any applicable regulator where legally required.
10. Data Retention
10.1 We will retain your personal data only as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting requirements.
10.2 For tax purposes, we are required to keep basic customer information for six years after you cease being a customer.
10.3 In some cases, we may anonymise your personal data for research or statistical purposes, in which case we may use this information indefinitely.
11. Your Legal Rights
11.1 Under certain circumstances, you have rights under data protection laws, including:
- Requesting access to your personal data.
- Requesting correction or erasure of your personal data.
- Objecting to or requesting restriction of processing your personal data.
- Requesting transfer of your personal data.
- Withdrawing consent.
11.2 For more information about these rights, visit the ICO website: [ICO Individual Rights](https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/).
11.3 You will not be charged for accessing your data or exercising your rights unless the request is unfounded, repetitive, or excessive.
11.4 We may request additional information to confirm your identity and ensure your right to access your data.
11.5 We aim to respond to all legitimate requests within 30 days. If your request is complex or you have made several requests, it may take longer, but we will keep you updated.
12. Third Party Links
12.1 Our website may include links to third-party websites, add-ons, and applications. We are not responsible for their privacy practices. We encourage you to read the privacy notice of every website you visit.
13. Cookies
13.1 You can set your browser to refuse cookies or alert you when websites set or access cookies. Disabling cookies may affect your website experience. For more information, please see our Cookie Policy.
14. Age Limitations
14.1 By providing us with your data,
you warrant that you are over 13 years of age.
15. How to Contact Us
15.1 You can contact Debbie Lucas Ltd trading as Eyes On Digital Media at any time if you have any questions about this Privacy Policy or our practices, or if you are seeking to exercise any of your statutory rights. You may contact us via email at [email protected].
16. Data Protection Authority
16.1 If you are unhappy with how we handle your data, you have the right to complain to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would appreciate the chance to resolve your concerns before you approach the ICO, so please contact us first.
17. Keeping Your Information Up-to-Date
17.1 It is important that the personal information we hold about you is accurate and current. Please let us know if your personal information changes by emailing us or updating your profile in your account.
©2024 All rights reserved
