SAPPHO ART LTD – PRIVACY POLICY

At Sappho Art Ltd (a company registered in England and Wales, with company number 15531591) (we, us or our), we understand that protecting your personal data is important. We are fully committed to complying with the UK General Data Protection Regulation (GDPR) and have implemented robust policies and safeguards to ensure GDPR compliance. This Privacy Policy sets out our commitment to protecting the privacy of personal data provided to us, or otherwise collected by us when providing our Sappho mobile application and website (Services) or when otherwise interacting with you.

It is important that you read this Privacy Policy together with any other detailed privacy notices we may provide when we are collecting or processing personal data about you so that you understand our privacy practices in relation to your data.

What data do we collect?

Personal data: is information that relates to an identified or identifiable individual.

We may collect, use, store and disclose different kinds of personal data about you which we have listed below:

  • Identity Details including first name, last name, title, date of birth, and images of you (optional).

  • Contact Details including billing address and email address.

  • Financial Details including bank account and payment card details through our third-party payment processor Stripe.

  • Transaction Details including details about payments to you from us and from you to us and other details of products and services you have purchased from us, or we have purchased from you.

  • Technical and Usage Details including internet protocol (IP) address, your login data, your browser session and geo-location data, device and network information, statistics on page views and sessions, acquisition sources, search queries and/or browsing behaviour, information about your access and use of our website, including through the use of Internet cookies, your communications with our website, the type of browser you are using, the type of operating system you are using and the domain name of your Internet service provider.

  • Your Profile Details including your username and password for our Services, profile picture, purchases or orders you have made with us, support requests you have made, content you post, send, receive, and share through our platform, information you have shared with our social media platforms, your interests, preferences, feedback, and survey responses.

  • Your Interaction Details including information you provide to us when you participate in any interactive features of our Services, including surveys, contests, promotions, activities, or events.

  • Marketing and Communications Details including our preferences in receiving marketing from us and our third parties and your communication preferences.

  • Special Categories of Personal Data is a special category of personal data that includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data. We do not actively request special categories of data about you, nor do we collect any information about criminal convictions and offences. However, in the course of providing our Services, we may come across special categories of personal data, in different situations including where you purchase tickets to events or send messages to hosts, that may indicate your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership or information about your health. We will always only use such data as required by or authorised by law.

How we collect personal data?

We collect personal data in a variety of ways, including:

  • Directly: We collect personal details which you directly provide to us, including when you register for an account, through our mobile application or when you request our assistance via email, our website or over the telephone.

  • Indirectly: We may collect personal details which you indirectly provide to us while interacting with us, such as when you use our website, in emails, over the telephone and in your online enquiries.

  • From third parties: We collect personal details from third parties, such as details of your use of our website and mobile application from our analytics and cookies providers and marketing providers. See the “Cookies” section below for more detail on the use of cookies.

We take the privacy and security of your personal details very seriously. We only collect and use your data when we have a legitimate reason to do so, as allowed by law.

  • To provide our Services to you: We process your identity, contact, and transaction details to allow you to access and use our mobile app, host, and register for events, and communicate with you about our Services. This processing is necessary for the performance of our contract with you.

  • To communicate with you: We process your identity and contact details to respond to any inquiries you make through our website or mobile application. This is based on our legitimate interest to provide the best client experience by answering your questions.

  • For administrative purposes: We process your identity, contact, financial, and transaction details for record-keeping, invoicing, billing, and debt recovery purposes. This is necessary for performing our contract, complying with legal obligations, and pursuing our legitimate interests in proper administration.

  • To improve our Services: We process details like your profile, identity, contact, financial, technical usage, and transaction details to analyse and develop our business, improve our Services and associated applications/platforms. This is based on our legitimate interests to keep our offerings relevant and aligned with our marketing strategy.

  • For marketing: We process details like your identity, contact, profile, and marketing details to send you promotional information about our events that may interest you. This is based on our legitimate interests in developing our Services and growing our business.

  • For promotions and additional benefits: We process details like your identity, contact, profile, interaction, and marketing details to run promotions, competitions, and offer additional benefits.

  • For legal compliance: We process any relevant personal details as necessary to comply with our legal obligations.

You can change your mind about any consent provided at any time. If we process your data based on legitimate interests, you can object to such processing, although this may mean you can no longer use our services.

What third parties do we share personal data with?

We may disclose personal data to:

  • our employees, contractors and/or related entities;
  • IT service providers, data storage, web-hosting and server providers such as Cloudflare, Algolia and Google Firebase;
  • marketing or advertising providers such as SendGrid;
  • professional advisors, bankers, auditors, our insurers and insurance brokers;
  • payment systems operators such as Stripe;
  • our existing or potential agents or business partners;
  • anyone to whom our business or assets (or any part of them) are, or may (in good faith) be, transferred;
  • courts, tribunals and regulatory authorities, in the event you fail to pay for goods or services we have provided to you;
  • courts, tribunals, regulatory authorities, and law enforcement officers, as required or authorised by law, in connection with any actual or prospective legal proceedings, or in order to establish, exercise or defend our legal rights;
  • third parties to collect and process data, such as Google Analytics;
  • any other third parties as required or permitted by law.

Google Analytics: We have enabled Google Analytics Advertising Features. You can opt-out using a Google Analytics Opt-out Browser add-on or via Google’s Ads Preferences Manager.

Overseas transfers

Where we disclose personal data to third parties, they may store, transfer or access personal data outside of the United Kingdom. Where we transfer your personal data outside of the United Kingdom, we will perform those transfers using appropriate safeguards in accordance with applicable data protection laws, including:

  • only transferring to countries deemed to provide an adequate level of protection; or
  • including standard contractual clauses in our agreements with overseas third parties.

Data retention

We will only keep your personal information for as long as we reasonably need it, including to fulfill the purposes we originally collected it for, as well as to comply with any legal, regulatory, tax or accounting requirements.

What are your rights with respect to your personal data?

Under the UK GDPR, you have several privacy rights:

  • Your Choice: You don’t have to provide us with your personal details, but if you don’t, it may limit our ability to provide you with our Services.
  • Access, correction, processing, and portability: You may request details of the personal data we hold about you, have it rectified or deleted, restrict our processing, or have it transferred.
  • Opting Out: To unsubscribe from our emails, use the unsubscribe link provided or contact us.
  • Withdrawing Consent: You can withdraw consent at any time without affecting prior processing.
  • Complaints: You have the right to complain to the Information Commissioner’s Office (ICO) at www.ico.org.uk.

Storage and security

We use appropriate physical, electronic, and administrative safeguards including encryption, regular security assessments, strict access controls, and employee privacy training. We cannot guarantee the security of information transmitted over the Internet.

Cookies

For information about cookies, please refer to our Cookie Policy.

Our website may contain links to other websites. We are not responsible for the privacy practices of those websites.

Amendments

We may change this Privacy Policy from time to time and will notify you of significant changes.

Contact us at:

Sappho Art Ltd (company number 15531591)

Email: info@sapphoart.com

Last update: 21 June 2024