PRIVACY POLICY INTRODUCTION
We (Blackbeard Entertainment) are committed to protecting your privacy and promise to collect, process and share your data safely and securely when you use our website. Our Privacy Policy tells you how we do this and what your rights are. Any personal data processed in line with our Privacy Policy is controlled by us, as the data controller.
OUR PRIVACY PROMISE
- Transparency – We will always tell you what data we’re collecting about you and how we use it. We only share your data with trusted partners and will never sell your data.
- Secure – We are committed to always follow industry best practices to ensure your data is stored safely and securely. We do this primarily by choosing our business partners carefully and giving visibility of those partners to our customers. We protect the confidentiality, accuracy and availability of the information we collect about you.
- Control – We do not send marketing communication to our customers* and we do not use your information for this purpose. (* we may send marketing information inside of any goods delivery but not separately: we will not send marketing separately by email, phone or post etc)
- When we contact you – We will only contact you to answer questions or queries, to plan and execute the delivery of any contracted services or to send order confirmations, download links, and to confirm when orders have been dispatched.
INFORMATION WE COLLECT ABOUT YOU
​
- Personal and contact information when you place an order, including your name, address, email address, telephone number(s). We may collect some of that contact information when you interact with us including via other forms of contact, such as email.
- Details (and copies) of your communications and interactions with us: including by email, telephone (voice and written recordings), post and online.
- Transaction details including payments from you for our products, payments to you (for example refunds), and details of orders placed.
- Contractual details including services rendered and consent given for us to carry out our contractual duties without fear of repercussion.
- Payment card information, when you make a purchase etc, is fully encrypted by our payment partners.
- We may collect information about how you use our website, and which websites you came to the website from. Technical information about your device or browser when you use our app or website, including geolocation data to determine what country you are accessing our website or app from, your internet protocol (IP) address, device ID, browser type and version and time zone setting, which may in some circumstances be personal data.
- We may also receive personal data directly from you or from social media channels (if you interact with us through those channels), or other third parties in accordance with our order processing (e.g. our couriers or payment processors may pass on failed collection information etc).
HOW WE USE YOUR PERSONAL DATA AND WHY
Below, we set out all of the ways we use your personal data, and why. We have also identified what our legitimate interests are where appropriate.
It is sometimes necessary for us to process your personal data in order to enter into a contract with you, or to satisfy a contractual requirement (referred to as ‘performance of a contract with you’ below), or to comply with a statutory requirement. In those circumstances, if you do not provide the personal data we require, we will be unable to provide our products to you.
How we use your personal data and why:
- Eligibility - We use technical information such as the location or time zone from which you access our website, the personal details you provide at checkout and to check whether you are eligible to order our products. For example, some or all products may not be available to all countries. This is necessary for compliance with a legal obligation.
- Purchasing our products/services - We use the personal and contact information provided by you and the transaction details about your purchases, to provide our products/services to you. This is necessary for the performance of a contract with you.
- Managing your account - We use your personal and contact information, financial information, and transaction details about purchases, to manage your orders and services. We will send order and dispatch confirmations and may have to contact you if there are any queries or problems with your order/service. This is necessary for the performance of a contract with you.
- Communicating with you - We use the personal and contact information provided by you, copies of your communications with us and, in some circumstances, transaction details, to manage our relationship with you. For example to communicate with you in response to any query, request or complaint you may have including by email, telephone or social media whether relating to any products or services that you have purchased from us or otherwise. This may be: necessary for the performance of a contract with you; necessary to comply with a legal obligation; and necessary for our legitimate interests (to keep our records updated).
- Staff training - We may use copies of your communications with us in order to train our staff. This is necessary for our legitimate interests (to ensure that we are able to provide the best service to you).
- Technical issues - If you contact us about an issue, we may use technical information, and personal and contact information to administer and protect our business and this website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data). This is necessary for our legitimate interests (for running our website, the provision of administration and IT services, security and fraud prevention) and may be necessary to comply with a legal obligation.
- Marketing campaign effectiveness - We may use information about your use of our website to measure or understand the effectiveness of our marketing campaigns. This is necessary for our legitimate interests (to determine how effective advertising is in order to improve advertising, its relevance and in order to fulfil contracts we have with our marketing partners).
- Analytics - Currently we are not collecting analytics information.
- Fraud prevention - We may use your personal and contact information, financial information, information about any transaction between you and us, information about your use of the website, or technical information, in order to undertake analysis for the purposes of identifying and dealing with any fraud or fraudulent activity. This is necessary to comply with a legal obligation and necessary for our legitimate interests (to ensure that transactions and interactions with us are not fraudulent).
- Queries - We may use your personal and contact information, financial information, information about any transaction between you and us, information about your use of the website, or technical information for the purpose of dealing with any request, complaint or query from you. This may be necessary to comply with a legal obligation and necessary for our legitimate interests (to respond to you and to deal with any request you may have).
- Additionally - We may use your personal data to create aggregated data sets. You are not identifiable from that aggregated data and it is not considered personal data; such as product sales history.
DIRECT MARKETING
We will never use your information for direct marketing.
HOW WE SHARE YOUR DATA WITH THIRD PARTIES
We sometimes share the data we collect from you with the following trusted third parties:
Payment providers – to obtain payment of any amounts due to us, or to refund purchases. Our Payment providers are:
- Square who are integrated into our website and collect web order payments on our behalf
- Other. With prior agreement we may use established providers, such as PayPal, to send bespoke invoices
Our IT system providers – in order to provide our products, services and communication pathways to you. These include, but are not limited to:
- WIX who host our website and manage our online store (their privacy policy can be found here)
- Google who are our email and cloud server provider (their privacy policy can be found here)
- Square who operate our website payment collection systems (their privacy policy can be found here)
- MyAirBridge who host and enable downloading of Digital Downloads (their privacy policy can be found here)
Our Couriers – In order to send you products we will share your address information, content description and order value (for insurance purposes). We may share more order details if required to meet a legal obligation, such as for customs purposes.
Social media platforms – for the purpose of targeted advertising. We do not share information with social media platforms, but if you follow social media pages you may receive our posts in your news streams.
Digital analytics companies – for the purposes of website analytics and reporting in respect of our analytics and marketing. For example we use the below (though other trusted partners may be used)
- Google adwords to monitor marketing campaign effectiveness (we provide them no customer data for marketing purposes)
Professional advisers including lawyers, bankers, auditors and insurers – for the purposes of providing consultancy, banking, legal, insurance and accounting services.
Police or other such regulatory authority – as part of an investigation or otherwise for legal or regulatory purposes.
Dispute Resolution agencies – for the purposes of dealing with any complaints.
Auditors – to audit our systems and transactions for the purposes of ensuring efficiency, or regulatory or contractual compliance.
UK law enforcement agencies and third party security companies – for the purposes of ensuring that we comply with the law and have adequate security measures in place.
We will disclose your personal information to third parties if we are under a duty to disclose or share your personal data in order to comply with any legal or regulatory obligation or request. We do this in order to protect our rights, property or safety or of our players, or others. This may include exchanging information with other companies and organisations for the purposes of fraud protection.
HOW WE PROTECT YOUR DATA
We protect your data by partnering with established and trusted service providers. Our main providers are:
WIX (our website and web store host) who:
* employ full-time security consultants, dedicated to the security of their customer information.
* WIX is Payment Card Industry Data Security Standards (PCI DSS) compliant and is accredited as a level 1 service provider and merchant. This standard helps create a secure environment by increasing cardholder data, thus reducing credit card fraud. They regularly perform internal security audits to maintain their ISO/PCI security certifications.
* WIX's signup and login services are completed through a secure server (HTTPS/SSL). Click here to learn more.
* WIX uses cryptography hash functions to protect your information. Where used you password is stored as a hash digest and, in the event of a security breach, your original password cannot be recovered from their servers.
* Wix.com is certified under the EU-US Privacy Shield Framework and the Swiss-US privacy Shield Framework as set forth by the U.S. Department of Commerce, regarding the collection, use, and retention of personal information transferred from the European Union and Switzerland to the United States, and therefore adheres to the Privacy Shield Principles.
* In accordance with the GDPR, site visitors have the right to access their data or "be forgotten" (to be permanently deleted from your databases).
* More information available at https://support.wix.com/en/about-wix/privacy
SQUARE (our website payment solution) :
*Square’s approach to security is designed to protect both us and our customers. They monitor every transaction, they continuously innovate in fraud prevention and they protect your data like their business depends on it—because it does. They adhere to industry-leading standards to manage their network, secure their web and client applications and set policies across their organisation.
* Card-processing applications adhere to PCI Data Security Standard (PCI-DSS) Level 1 and require sensitive data to be encrypted using industry-leading methods when stored on disk or transmitted over public networks. Square’s network and servers are housed in a secure facility monitored around the clock by dedicated security staff.
* More information available at https://squareup.com/gb/security
GOOGLE (Both our email host and our cloud server)
* Please see https://privacy.google.com/intl/en-GB/your-security.html
Additionally we restrict the download of personally identifiable data on to company computers (though aggregated data with personalised information removed will be stored). Whilst address labels are printed and used immediately for deliveries, full address information is never saved outside of our secure partners’ systems.
The information we do download is for audit and reconciliation purposes, namely:
* What was purchased (to maintain a sales history and review company performance). Any personally identifiable information is then saved to google drive and local files are deleted. Annonymised sales reports are saved locally.
HOW LONG WE KEEP YOUR PERSONAL DATA
We will only keep your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
At the end of that retention period, your data will either be deleted or anonymised (so that it can no longer be associated with you) for research or statistical purposes.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
In some circumstances you may be entitled to ask us to delete your data: see ‘Your rights’ below for further information.
YOUR RIGHTS
You have the right:
* To request from us access to personal information held about you (see below);
* To ask for the information we hold about you to be rectified if it is inaccurate or incomplete;
* To ask that we stop any consent-based processing of your personal data after you withdraw that consent;
* To ask, in certain circumstances, to delete the personal data we hold about you;
* To ask, in certain circumstances, for the processing of that information to be restricted; and
* To ask, in certain circumstances, for data portability.
CONTACT US
If you have any questions about our Privacy Policy please contact nicole@blackbeardentertainment.co.uk
In order to request a copy of the personal data that Blackbeard Entertainment holds about you, please send your request via email, this will help verify your identity. To enable us to verify your identity and process your request, you must include all of the following information and documentation with your request:
* Your full name
* The email address registered to your account
* A description of the data that you are requesting, including a date range
Note that if we have doubts about the source of the request we may ask for further proof of identification. For example when dealing with third party requests (solicitor etc).
If you are unhappy with our processing of your personal data, you have the right to complain to the Information Commissioner’s Office (ICO) at any time. The ICO’s contact details are available here: https://ico.org.uk/concerns/. We would, however, appreciate the chance to deal with any concerns before you approach the ICO, so please contact the Data Protection Officer by email in the first instance.
COOKIES
Please refer to COOKIE DECLARATION
MANAGE YOUR COOKIES
For more information about cookies, how to opt out and the steps you can take to protect your privacy on the internet, go to http://www.youronlinechoices.com/uk/ – the guide to online behavioural advertising and privacy. This website is operated by the Internet Advertising Bureau, the industry body for online advertising. On here you'll find information about how behavioural advertising works, how to opt out, further information about cookies and the steps you can take to protect your privacy on the internet.
If you'd prefer to restrict, block or delete cookies from our website, you can do so in your browser settings. If you choose to disable cookies, then please note that this may limit the way you use our Website. For example, you may have to re-enter information that would have ordinarily been stored as a cookie.
How to control cookies on your desktop:
* Internet Explorer cookies information - https://support.microsoft.com/en-gb/help/278835/how-to-delete-cookie-files-in-internet-explorer
* Safari cookies information - https://support.apple.com/kb/PH21411?locale=en_US
* Chrome cookies information - https://support.google.com/chrome/answer/95647?hl=en-GB
* Firefox cookies information - https://support.mozilla.org/en-US/kb/delete-cookies-remove-info-websites-stored
How to control cookies on your mobile device:
* Apple iOS Safari - https://support.apple.com/en-gb/HT201265
* Android Chrome - https://support.google.com/accounts/answer/61416?co=GENIE.Platform%3DAndroid&hl=en
CHANGES TO THIS PRIVACY POLICY
Any changes that we may make to our Privacy Policy in the future will be posted on our website.
This Privacy Policy was last reviewed on 25th March 2020.