Devil Tree Media Ltd – GDPR Policy
Effective Date: 1st June 2023
- Introduction
1.1 Devil Tree Media Ltd is committed to protecting the privacy and personal data of individuals who visit our website (www.deviltreemedia.co.uk) and use our services. This GDPR Policy outlines how we collect, process, store, and disclose personal data in compliance with the General Data Protection Regulation (GDPR) and any applicable national data protection laws.
1.2 By using our Website and providing us with your personal data, you agree to the terms and conditions of this GDPR Policy.
- Data Controller
2.1 Devil Tree Media Ltd is the data controller for the personal data collected through the Website. You can contact us using the contact information provided at the end of this policy.
- Types of Personal Data Collected
3.1 We may collect and process the following categories of personal data:
- Contact information (such as name, email address, phone number)
- Demographic information (such as age, gender, location)
- Account information (such as username, password)
- Payment information (such as credit card details, billing address)
- Website usage data (such as IP address, browser type, referring/exit pages, date/time stamps)
- Communication data (such as your preferences for receiving marketing communications)
- Purposes and Legal Bases for Processing
4.1 We will process your personal data for the following purposes:
- To provide and maintain our services
- To respond to your inquiries and provide customer support
- To personalize and improve your experience on our Website
- To process transactions and fulfill orders
- To send you marketing communications, subject to your preferences
- To comply with legal obligations
- To protect our rights, interests, and the security of our Website
4.2 We will only process your personal data if we have a legal basis for doing so. The legal bases for processing your personal data may include:
- Performance of a contract with you
- Compliance with a legal obligation
- Consent provided by you
- Legitimate interests pursued by us or a third party
- Data Sharing and Disclosure
5.1 We may share your personal data with the following categories of recipients:
- Service providers and business partners who assist us in operating our Website and providing our services
- Law enforcement agencies, government authorities, or other third parties if required by law or necessary to protect our legal rights
5.2 We may also disclose your personal data to third parties if you have provided your consent to such disclosure.
- International Data Transfers
6.1 Some of our service providers or business partners may be located in countries outside the European Economic Area (EEA). In such cases, we will take appropriate measures to ensure that your personal data is adequately protected, such as using standard contractual clauses or relying on the service providers’ participation in Privacy Shield or other applicable frameworks.
- Data Retention
7.1 We will retain your personal data for as long as necessary to fulfill the purposes outlined in this GDPR Policy, unless a longer retention period is required or permitted by law.
- Your Rights
8.1 You have certain rights with respect to your personal data under the GDPR, including:
- Right to access: You can request access to the personal data we hold about you.
- Right to rectification: You can request the correction of any inaccurate or incomplete personal data.
- Right to erasure: You can request the deletion of your personal data under certain circumstances.
- Right to restrict processing: You can request the restriction of processing of your personal data under certain circumstances.
- Right to data portability: You can request a copy of your personal data in a structured, machine-readable format or transfer it to another controller under certain circumstances.
- Right to object: You can object to the processing of your personal data under certain circumstances.
- Right to withdraw consent: If we rely on your consent to process your personal data, you can withdraw your consent at any time.
8.2 To exercise your rights or if you have any questions or concerns about the processing of your personal data, please contact us using the contact information provided at the end of this policy.
- Security Measures
9.1 We implement appropriate technical and organizational measures to ensure the security of your personal data and protect it against unauthorized access, loss, alteration, or destruction.
- Updates to this GDPR Policy
10.1 We may update this GDPR Policy from time to time. The updated policy will be effective when posted on our Website. We encourage you to review this policy periodically.
- Contact Us
11.1 If you have any questions or concerns about this GDPR Policy or our privacy practices, please contact us at:
Devil Tree Media Ltd, 92L Rolleston Drive, Arnold, Nottingham, NG5 7JP. Contact@deviltreemedia.co.uk, 01156 972 679