Privacy Notice for Punkgirldiaries and Unglamorous Music
Customers are asked to email firstname.lastname@example.org if there are any questions or concerns regarding this policy.
Who we are?
Punkgirldiaries is a blog site set up by Ruth Miller (Vim Renault) and Polly Hancock (Lene Cortina) that has now expanded to sell printed items online. The financial side of the business is provided by unglamorous music, 20 Deacon Street, Leicester, LE2 7EF. The data controller is Ruth Cheney – email: email@example.com.
What information do we collect?
We collect personal information when people order items from us, follow the blog, enter competitions or comment on the blog. This may include:
- Names, including user names
- Email address
- Postal address
- Items purchased
We do not record financial or bank details. We do not collect data from third parties.
How do we use personal information?
We use email addresses and social media usernames to let customers know of new products and offers, aiming not to send unsolicited emails more than once per month, and trying to respond to any requests promptly.
At times, we may conduct surveys; inviting people to take part via social media or email. Responses will be used anonymously and collectively to inform marketing and content.
Postal addresses are used to identify levels of interest in different geographical locations across the world to inform marketing and content.
What legal basis do we have for processing your personal data?
Your personal data is processed by punkgirldiaries/unglamorous music by consent. In marketing emails, customers are invited to withdraw their consent by unsubscribing.
When do we share personal data?
Punkgirldiaries/unglamorous music will treat all personal data as confidential and will not share it with third parties. Any lists or databases are only accessed by company staff when processing orders or communicating with customers and are not accessible by anyone else. Information that is entered by customers using online companies such as Paypal etc is subject to those companies’ data policies.
Where do we store and process personal data?
Data is stored in the UK.
How do we secure personal data?
To ensure business continuity, data is backed up.
In the event of other people being employed, they will be trained on data security.
Steps are taken as needed to ensure unauthorised access, including password and 2-step authorisation if necessary.
How long do we keep your personal data for?
We will retain personal information for two years after the last communication. If an unsubscribe notification is received, computer records will be deleted immediately. Any paper records will be shredded if they contain personal details.
Your rights in relation to personal data
Under GDPR, you have the right to see and control your personal data. Since only minimal data is held, it is very easy for us to answer any questions promptly via email firstname.lastname@example.org or email@example.com
If there is a major problem, you have the right to lodge a complaint with the Information Commissioner’s Office.
Use of automated decision-making and profiling
We do not use any automated decision making or profiling.
How to contact us?
Linking to other websites / third party content
When we provide links to other websites or companies, it does not mean that we have approved all their content.