Privacy Policy

Introduction

This privacy policy is for this website; Create Future Studios Limited and served by [CreateFuture, 120 Pitt Street, Edinburgh, EH6 4DD] and governs the privacy of its users who choose to use it. It explains how we comply with the GDPR (General Data Protection Regulation), the DPA (Data Protection Act) and the PECR (Privacy and Electronic Communications Regulations).

Create Future Studios Limited is a company incorporated in Scotland with company number SC528637 and having its registered office at 120 Pitt Street, Edinburgh, Scotland, EH6 4DD (we, us and our). For the purposes of the Data Protection Act 2018, as that Act may be amended of replaced, (‘Data Protection Legislation’), we are the data controller.

This policy will explain areas of this website that may affect your privacy and personal details, how we process, collect, manage and store those details and how your rights under the GDPR, DPA & PECR are adhere to. Additionally it will explain the use of cookies or software, advertising or commercial sponsorship from third parties and the download of any documents, files or software made available to you (if any) on this website. Further explanations may be provided for specific pages or features of this website in order to help you understand how we, this website and its third parties (if any) interact with you and your computer / device in order to serve it to you. Our contact information is provided if you have any questions.

We are committed to protecting your privacy. This policy explains how we use personal data we may obtain from or about you in relation to your use of our services or the site.

Information we may collect from you

We may collect and process the following information about you:

Query Information: this is the information you provide when you use the Contact section of our Site to send a message, ask a question or subscribe to our email mailing list.

Cookie Information: this is the information we obtain from use of cookies as explained in the cookies section below.

Account Information: this is the information on a User’s use of the Services.

Cookies

This website uses cookies to better the users experience while visiting the website. As required by legislation, where applicable this website uses a cookie control system, allowing the user to give explicit permission or to deny the use of saving cookies on their computer / device.

What are cookies?

Cookies are small files saved to the user's computers hard drive that track, save and store information about the user's interactions and usage of the website. This allows the website, through its server, to provide the users with a tailored experience within this website.

Users are advised that if they wish to deny the use and saving of cookies from this website onto their computers hard drive, they should take necessary steps within their web browsers security settings to block all cookies from this website, and its external serving vendors or use the cookie control system if available upon their first visit.

Uses made of your information

We will use the information held about you in the following way:

1. We use Query Information to deal with and respond to your comments, queries and requests;

2. We use Cookie Information as explained in the cookie section above;

3. We use Account Information to check that the use of the Services is in accordance with our customer agreements

Basis for processing

We are entitled to use your data as described in paragraph 1 above as we are responding to your request and therefore have your consent to this processing.

We are entitled to use your data as described in paragraph 2 above as the purpose stated is within our legitimate interests.

We are entitled to use your data as described in paragraph 3 as we require to do this as part of our contractual obligations to provide the Services.

Information sharing

We share personal information in the following ways:

1. We may disclose your personal information if we are under a duty to disclose or share your personal data in order to comply with any legal obligation.

2. We may disclose personal information if we believe that such action is necessary to prevent fraud or cyber crime or to protect the Site or rights, property or personal safety of any person.

3. We may disclose your personal information to a third party technology partner with who we engage with to provide any discrete element of our Services or the technology platform on which it runs (“Third Party Provider”). All disclosures or transfers of personal data to any Third Party Provider will only be for specific agreed purpose and shall be in accordance with applicable data protection legislation.

Basis for processing

• We are entitled to disclose your data as described in paragraph 1 on the basis that we are legally required to do so.

• We are entitled to disclose your data as described in paragraph 2 above as the purposes stated are necessary to protect the interest of the individuals concerned.

• We are entitled to disclose your data as described in paragraph 3 above as the purposes stated are all within our legitimate interests.

Contact & communication with us

Users contacting us through this website do so at their own discretion and provide any such personal details requested at their own risk. Your personal information is kept private and stored securely until a time it is no longer required or has no use.

Email mailing list & marketing messages

We operate an email mailing list program, used to inform subscribers about products, services and/or news we supply/publish. Users can subscribe through an online automated process where they have given their explicit permission. Subscriber personal details are collected, processed, managed and stored in accordance with the regulations named in 'The policy' above. Subscribers can unsubscribe at any time through an automated online service, or if not available, other means as detailed in the footer of sent marketing messages. The type and content of marketing messages subscribers receive, and if it may contain third party content, is clearly outlined at the point of subscription.

Email marketing messages may contain tracking beacons / tracked clickable links or similar server technologies in order to track subscriber activity within email marketing messages. Where used, such marketing messages may record a range of subscriber data relating to engagement, geographic, demographics and already stored subscriber data.

Our EMS (email marketing service) provider is Mailchimp and you can read their privacy policy in the resources section.

External links

The Site may, from time to time, contain links to external sites. We are not responsible for the privacy policies or the content of such sites. Although we only look to include quality, safe and relevant external links, users are advised to adopt a policy of caution before clicking any external web links mentioned throughout this website. (External links are clickable text / banner / image links to other websites, similar to; BBC, Google, AdWeek.)

Shortened URLs; URL shortening is a technique used on the web to shorten URL's (Uniform Resource Locators) to something substantially shorter. This technique is especially used in social media and looks similar to this (example: http://bit.ly/zyVUBo). Users should take caution before clicking on shortened URL links and verify their authenticity before proceeding.

We cannot guarantee or verify the contents of any externally linked website despite our best efforts. Users should therefore note they click on external links at their own risk and we cannot be held liable for any damages or implications caused by visiting any external links mentioned.

Social media policy & usage

We adopt a Social Media Policy to ensure our business and our staff conduct themselves accordingly online. While we may have official profiles on social media platforms users are advised to verify authenticity of such profiles before engaging with, or sharing information with such profiles. We will never ask for user passwords or personal details on social media platforms. Users are advised to conduct themselves appropriately when engaging with us on social media.

There may be instances where our website features social sharing buttons, which help share web content directly from web pages to the respective social media platforms. You use social sharing buttons at your own discretion and accept that doing so may publish content to your social media profile feed or page. You can find further information about some social media privacy and usage policies in the resources section below.

Security

We place great importance on the security of all personally identifiable information associated with our users. We have security measures in place to attempt to protect against the loss, misuse and alteration of personal information under our control. For example, our security and privacy policies are periodically reviewed and enhanced as necessary and only authorised personnel have access to personal information. Whilst we cannot ensure or guarantee that loss, misuse or alteration of information will never occur, we use all reasonable efforts to prevent it.

You should bear in mind that submission of information over the internet is never entirely secure. We cannot guarantee the security of information you submit via the Site whilst it is in transit over the internet and any such submission is at your own risk.

Storage of your information

Information that you submit via the Site is sent to and stored on secure servers located in the United Kingdom and Ireland. This is necessary in order to process the information. Information submitted by you may be transferred by us to our other offices and/or to the third parties mentioned in the circumstances described above (see Information sharing), which may be situated outside the European Economic Area (EEA) and may be processed by staff operating outside the EEA. The countries concerned may not have similar data protection laws to the EEA. Where we transfer your information we will take all steps required by Data Protection Legislation to ensure that your privacy rights continue to be protected.

How long we will store your personal data

We only store your information for as long as is necessary for the purpose it was obtained or for any additional purpose we have explained to you. We also implement policies to regularly audit the personal data we hold to ensure we do not retain any personal data for longer than we are entitled to.

Your rights

Under Data Protection Legislation there are various rights which can apply in respect of information held about an individual. These rights are as follows:

Access to information: You have the right to request a copy of the information we hold about you. If you would like a copy of some or all of your personal information, please email us at hello@createfuture.com.

Ensuring accuracy of information: We want to make sure that your personal information is accurate and up-to-date. You may ask us to correct or complete information that is inaccurate or incomplete.

Right to erasure: You may have a right to erasure, which is more commonly known as the ‘right to be forgotten’. This means that in certain circumstances you can require us to delete personal information held about you.

Ability to restrict processing: You may also have the right to require us to restrict our use of your personal information in certain circumstances. This may apply, for example, where you have notified us that the information we hold about you is incorrect and you would like us to stop using such information until we have verified that it is accurate.

Right to data portability: You may have the right to receive personal data we hold about you in a format that enables you to transfer such information to another data controller (e.g. such as another service provider).

Review by an independent authority: You will always have the right to lodge a complaint with a supervisory body. The relevant authority in the UK is the Information Commissioner’s Office (ICO).

Preventing direct marketing: We do not sell your data. From time to time, we may send emails containing information about new features and other news about us. This is considered direct marketing. You have the right to stop us from contacting you for these purposes. We will always inform you if we intend to use your personal data for such purposes, or if we intend to disclose your information to any third party for such purposes. You can usually exercise your right to prevent such marketing by checking certain boxes on the forms we use to collect your data. You can also exercise the right at any time by contacting us at hello@createfuture.com.

Objecting to other uses of your information: You may also have the right to object to our use of your information in other circumstances. In particular, where you have consented to our use of your personal data, you have the right to withdraw such consent at any time. You may do this by contacting us at hello@createfuture.com.

Contacting us

Please submit any questions, concerns or comments you have about this Privacy Policy or any requests concerning your personal data by email to hello@createfuture.com.

Resources & further information

• Overview of the GDPR - General Data Protection Regulation

• Data Protection Act 1998

• Privacy and Electronic Communications Regulations 2003

• The Guide to the PECR 2003

• Twitter Privacy Policy

• Facebook Privacy Policy

• Google Privacy Policy

• Linkedin Privacy Policy

• Mailchimp Privacy Policy

v.2.0 August 2019.CreateFuture Studios Ltd