Privacy Policy
YOUR PEACE OF MIND
Effective Date: October 12, 2020
The Abbey Recording Company Limited ( “ARC”, “we”, “our”, “us”) respects your privacy. When it comes to your personal information, we believe in transparency. That’s why we’ve set out here what personal information we collect, what we do with it and your choices and rights.
By using any of our Services, you confirm you have read and understood this Privacy Policy and the cookies our hosting provider Squarespace uses.
1. Some key terms
In our Privacy Policy, when we refer to “Users”, we mean our customers who use our Services, including visitors to our website. Use of “Site” or “Website” refers to https://www.abbeyrecording.com We explain who we are in the “Who is The Abbey Recording Company Limited?” section below.
2. How does this Privacy Policy apply?
This Privacy Policy describes what we do with personal information that we collect and use for our own purposes (i.e., where we are a controller), such as information about how you use and interact with our Services, including information you may submit to us. This Privacy Policy does not apply to personal information of our employees or job applicants (except to the extent employees or job applicants are Users).
We use cookies and similar technologies. This page (https://support.squarespace.com/hc/en-us/articles/360001264507) describes how we use them in that regard.
3. Personal information we collect
We collect various personal information regarding you or your device. This includes the following:
Information you may provide such as email address, first name, last name, telephone number and any other details provided.
Your marketing preferences.
The emails and other communications that you send us or otherwise contribute, such as customer enquiries, forms or reviews. Please be aware that information on public parts of our site is available to others.
Information you share with us in connection with surveys, contests or promotions.
Information from your use of the Services. This includes: IP addresses, preferences, web pages you visited prior to coming to our or our site, information about your browser, network or device (such as browser type and version, operating system, internet service provider, preference settings, unique device IDs and language and other regional settings), information about how you interact with the Services and our site (such as timestamps, clicks, scrolling, browsing times, searches, transactions, referral pages, load times, and problems you may encounter, such as loading errors).
Information we get from our partners to support our marketing initiatives, improve our Services and better monitor, manage and measure our ad campaigns, such as details about when a partner of ours shows you one of our ads on or via its advertising platform.
Other information you submit to us directly or through Third Party Services if you use a Third Party Service to connect with our Services (based on your privacy settings with such Third Party Service).
4. How we collect personal information
We obtain personal information from various sources. We do this in three main ways:
You provide some of it directly when entering information on on our Site
We record some of it automatically when you use our Services (including with technologies like cookies).
We receive some of it from third parties (like when you register for a Service using a Third Party Service or when you make payments to us using our payment processor or via a mobile app store).
We’ve described this in more detail below.
a. Personal information you provide
When you use our Services, we collect information from you in a number of ways. For instance, we ask you to provide your name and email address to sign-up for our newsletter. We also maintain your marketing preferences and the emails and other communications that you send us or otherwise contribute, such as customer support enquiries or posts to our customer message boards or forums. You might also provide us with information in other ways, including by responding to surveys, submitting a form or participating in contests or similar promotions.
Sometimes we require you to provide us with information for contractual or legal reasons. For example: we may ask you to select your jurisdiction when you sign up for Paid Services to determine if, and how much, tax we need to collect from you. We’ll normally let you know when information is required, and the consequences of failing to provide it. If you do not provide personal information when requested, you may not be able to use our Services if that information is necessary to provide you with the service or if we are legally required to collect it.
b. Personal information obtained from your use of our Services
When you use our Services, we collect information about your activity on and interaction with the Services, such as your IP address(es), your device and browser type, the web page you visited before coming to our sites, what pages on our sites you visit and for how long and identifiers associated with your devices.
Some of this information is collected automatically using cookies and similar technologies when you use our Services. You can read more about our use of cookies here: https://support.squarespace.com/hc/en-us/articles/360001264507. Some of this information is similarly collected automatically through your browser or from your device.
c. Personal information obtained from other sources
If you use a Third Party Service (such as Google) to connect to our Services, the Third Party Service may provide us with your Third Party Service account information on your behalf, such as your name and email address (we don’t collect or store passwords you use to access Third Party Services). Your privacy settings on the Third Party Service normally control what they share with us. Make sure you are comfortable with what they share by reviewing their privacy policies and, if necessary, modifying your privacy settings directly on the Third Party Service.
5. How we use your personal information
We use the personal information we obtain about you for the following purposes:
Provision of the Services. manage marketing activities, provide and personalise our Services, process payments and respond to your enquiries.
Communicate with you, including by sending you emails about your transactions and Service-related announcements.
Administer surveys, contests and other promotions.
Promote our Services and send you tailored marketing communications about products, services, offers, programs and promotions of ARC and our partners and measure the success of those campaigns. For example, we may send different marketing communications to you based on your region or what we think may interest you based on other information we hold about you.
Analyse your interactions with our Services and third parties’ online services so we can tailor our advertising to what we think will interest you. For example, we may decide not to advertise our Services to you on a social media site if you already signed up for Services or we may choose to serve you a particular advertisement based on your personal preferences.
Customising the Services. Provide you with customised services. For example, we may use your location information to determine your language preferences or display accurate date and time information. We also use cookies and similar technologies for this purpose.
Improving our Services. Analyse and learn about how the Services are accessed and used, evaluate and improve our Services (including by developing new products and services and managing our communications) and monitor and measure the effectiveness of our advertising. We usually do this based on anonymous, pseudonymised or aggregated information which does not focus on you individually. For example, if we learn that most Users of our Services use a particular integration or feature, we might wish to expand on that integration or feature.
Ensure the security and integrity of our Services.
Manage our vendor and partner relationships.
Enforce our Terms of Service and other legal terms and policies.
Protect our and others’ interests, rights and property (e.g., to protect our Users from abuse).
Complying with law. Comply with applicable legal requirements, such as tax and other government regulations and industry standards, contracts and law enforcement requests.
We process your personal information for the above purposes when:
You have consented to the use of your personal information in a particular way. When you consent, you can change your mind at any time.
Performance of a contract. We need your personal information to provide you with Services requested by you, or to respond to your enquiries. In other words, so we can perform our contract with you or take steps at your request before entering into one.
Legal obligation. We have a legal obligation to use your personal information, such as to comply with applicable tax and other government regulations or to comply with a court order or binding law enforcement request.
Legitimate interests. We have a legitimate interest in using your personal information. In particular, we have a legitimate interest in the following cases:
To operate the ARC business and provide you with tailored advertising and communications to develop and promote our business.
To analyse and improve the safety and security of our Services - we do this as it is necessary to pursue our legitimate interests in ensuring ARC is secure, such as by implementing and enhancing security measures and protections and protecting against fraud, spam and abuse.
To provide and improve the Services, including any personalised services - we do this as it is necessary to pursue our legitimate interests of providing an innovative and tailored offering to our Users on a sustained basis.
To comply with a court order or binding law enforcement request.
To anonymise and subsequently use anonymised information.
Protecting you and others. To protect your vital interests, or those of others.
Others’ legitimate interests. Where necessary for the purposes of a third party’s legitimate interests, such as our partners who have a legitimate interest in delivering tailored advertising to you and monitoring and measuring its effectiveness or our Users who have a legitimate interest in having their sites function properly and securely and analysing the usage of their sites so they can understand trends and improve their services.
6. How we share your personal information
We share personal information in the following ways:
Business partners. We may share personal information with business partners. For example, we may share your personal information when our Services are integrated with their Third Party Services, but only when you have been informed or would otherwise expect such sharing.
Service providers. We share personal information with our service providers that perform services on our behalf. For example in the case of collecting testimonials and reviews.
Following the law or protecting rights and interests. We disclose your personal information if we determine that such disclosure is reasonably necessary to comply with the law, protect our or others’ rights, property or interests (such as enforcing our Terms of Service) or prevent fraud or abuse of ktltd.co.uk or our Users or End Users. In particular, we may disclose your personal information in response to lawful requests by public authorities, such as to meet national security or law enforcement requirements.
Advertising. We share personal information with third parties so they and we can provide you with tailored advertising and measure and monitor its effectiveness. For example, we may share your pseudonymised email address with a third party social media platform on which we advertise to avoid serving ARC ads to people who already use our Services.
Business transfers. If we're involved in a reorganisation, merger, acquisition or sale of some or all of our assets, your personal information may be transferred as part of that deal or the negotiation of contemplated deals.
7. Your rights and choices
Where applicable law requires (and subject to any relevant exceptions under law), you may have the right to access, update, change or delete personal information.
You can access, update, change or delete personal information by contacting us at enquiries@abbeyrecording.com to request the required changes. You can exercise your other rights (including deleting your personal information) by contacting us at the same email address. Please note that we may need to verify your identity in connection with your requests, and such verification process may require you to provide us with additional information (e.g., government identification). If we are unable to verify your identity or request, we may not, in accordance with applicable law, be able to fulfil your request.
You can also elect not to receive marketing communications by following the unsubscribe instructions in such communications.
Please note that, for technical reasons, there may be a delay in deleting your personal information from our systems when you ask us to delete it. We also will retain personal information in order to comply with the law, protect our and others’ rights, resolve disputes or enforce our legal terms or policies, to the extent permitted under applicable law.
You may have the right to restrict or object to the processing of your personal information or to exercise a right to data portability under applicable law. You also may have the right to lodge a complaint with a competent supervisory authority, subject to applicable law. If you are subject to EU data protection laws, we suggest you lodge any such complaints with our lead supervisory authority:
The ICO is the UK's independent body set up to uphold information rights. https://ico.org.uk/
Additionally, if we rely on consent for the processing of your personal information, you have the right to withdraw it at any time and free of charge. When you do so, this will not affect the lawfulness of the processing before your consent withdrawal.
Opting Out of Cookies. You can set your browser to not accept cookies, but this may limit your ability to use the Services.
8. How we protect your personal information
While no service is completely secure, we are dedicated to keeping your personal information safe. We maintain administrative, technical and physical safeguards that are intended to appropriately protect against accidental or unlawful destruction, accidental loss, unauthorised alteration, unauthorised disclosure or access, misuse and any other unlawful form of processing, of the personal information in our possession. Our hosting provider (Squarespace) employ security measures such as using firewalls to protect against intruders, building redundancies throughout their network (so that if one server goes down, another can cover for it) and testing for and protecting against network vulnerabilities.
9. How we retain your personal information
We retain personal information regarding you or your use of the Services for as long as your Account is active or for as long as needed to provide you or our Users with the Services. We also retain personal information for as long as necessary to achieve the purposes described in this Privacy Policy, for example, to comply with our legal obligations, to protect us in the event of disputes and to enforce our agreements and to protect our and others’ interests.
The precise periods for which we keep your personal information vary depending on the nature of the information and why we need it. Factors we consider in determining these periods include the minimum required retention period prescribed by law or recommended as best practice, the period during which a claim can be made with respect to an agreement or other matter, whether the personal information has been aggregated or pseudonymised, and other relevant criteria.
As Users may come back to us after an Account becomes inactive, we don’t immediately delete your personal information when your trial or course expires or you cancel all Paid Services. Instead, we keep your personal information for a reasonable period of time, so it will be there for you if you come back.
You may request that we delete your Account by contacting us at enquiries@abbeyrecording.com and we will delete the personal information we hold about you (unless we need to retain it for the purposes set out in this Privacy Policy).
Please note that in the course of providing the Services, we collect and maintain aggregated, anonymised or de-personalised information which we may retain indefinitely.
10. Data transfers
Personal information that you submit through the Services may be transferred to countries other than where you live, such as, for example, to servers in the U.S. We also store personal information locally on the devices you use to access the Services.
Your personal information may be transferred to countries that do not have the same data protection laws as the country in which you initially provided the information.
We rely upon a number of means to transfer personal information which is subject to the European General Data Protection Regulation (“GDPR”) in accordance with Chapter V of the GDPR. These include:
Standard data protection clauses. We transfer, in accordance with Article 46 of the GDPR, personal information to recipients that have entered into the European Commission approved contract for the transfer of personal data outside the European Economic Area.
Other means. We may, in accordance with Articles 45 and 46 of the GDPR, transfer personal information to recipients that are in a country the European Commission or a European data protection supervisory authority has confirmed, by decision, offers an adequate level of data protection, pursuant to an approved certification mechanism or code of conduct, together with binding, enforceable commitments from the recipient to apply the appropriate safeguards, including as regards data subjects’ rights, or to processors which have committed to comply with binding corporate rules.
You can find out more information about these transfer mechanisms here.
11. Squarespace Privacy Shield
While Squarespace no longer relies upon the EU-U.S. or Swiss-U.S. Privacy Shield Frameworks (each individually and jointly, the “Privacy Shield”) to provide a legal basis for transfers to the US, Squarespace, Inc. has certified its compliance to the Privacy Shield, which continues to apply.
Squarespace is committed to treating personal information received from the European Economic Area, Switzerland and the United Kingdom pursuant to the Privacy Shield in accordance with the applicable Principles. You can find Squarespace’s certification here and you can learn more about the Privacy Shield and Principles by visiting https://www.privacyshield.gov/.
Squarespace’s accountability for personal information they receive and subsequently transfer to a third party is described in the Privacy Shield Principles. In particular, they may use third parties to process data on our behalf as described in this Privacy Policy, and remain liable if they do so in a manner inconsistent with the Privacy Shield Principles, unless they prove that they are not responsible for the event giving rise to the damage.
If you have a question or complaint you believe to be within the scope of Squarespace’s Privacy Shield certification, please contact them at privacy@squarespace.com. They should respond within 45 days.
Nothing in Privacy Shield affects your rights as a data subject under any European Commission approved standard data protection clauses used for transfers to the US.
12. Updates to this Privacy Policy
We’ll update this Privacy Policy from time to time to reflect changes in technology, law, our business operations or any other reason we determine is necessary or appropriate. When we make changes, we’ll update the “Effective Date” at the top of the Privacy Policy and post it on our sites. If we make material changes to it or the ways we process personal information, we’ll notify you (by, for example, prominently posting a notice of the changes on our sites before they take effect or directly sending you a notification).
We encourage you to check back periodically to review this Privacy Policy for any changes since your last visit. This will help ensure you better understand your relationship with us, including the ways we process your personal information.
13. Who is The Abbey Recording Company Limited?
When we say “ARC” (or “we”, “us” or “our”), we mean: The Abbey Recording Company Limited a private limited company registered in England. Company number 10347980.
14. How to contact us
If you have questions, comments or complaints about this Privacy Policy or our privacy practices or if you would like to exercise your rights and choices, please email us at enquiries@abbeyrecording.com, or write to us at the addresses below:
The Abbey Recording Company
1 Abbey Street,
Eynsham,
Oxfordshire, OX29 4TB
United Kingdom
15. Complaints about the use of your personal data
If you wish to raise a complaint on how we have handled your personal data, you can contact us to have the matter investigated by writing to our registered address. If you are not satisfied with our response or believe we are processing your personal data not in accordance with the law you can complain to the UK data protection regulator, the Information Commissioner’s Office. Further details can be found at www.ico.org.uk or by calling 0303 123 1113.