Our Privacy Policy
Policy Explanation:
This privacy policy is served by Accessibility Nottingham, an organisation controlled and maintained by HeX Productions. All of the data processed from this site will be processed through HeX Productions Ltd.
This privacy policy notice is served by HeX Productions under the website, Accessibility Nottingham.
The purpose of this policy is to explain to you how we control, process, handle and protect your personal information through the business and while you browse or use this website. If you do not agree to the following policy you may wish to cease viewing / using this website, and or refrain from submitting your personal data to us.
Key definitions:
- “I”, “our”, “us”, or “we” refer to the business, HeX Productions (operating as Accessibility Nottingham).
- “You”, and “the user” refer to the person (s) using this website.
- GDPR means General Data Protection Act.
- PECR means Privacy & Electronic Communications Regulation.
- ICO means the Information Commissioner’s Office.
- Cookies mean small text files stored on a user’s computer or device. More information about cookies can be found on the cookies page.
Key principles of our privacy policy:
Our privacy policy embodies the following key principles:
- Lawfulness, fairness and transparency
- Purpose limitation
- Data minimisation
- Accuracy
- Storage limitation
- Integrity and confidence
- Accountability.
This is in-line with the key principles of GDPR.
Processing of your personal data:
The GDPR (General Data Protection Regulation) is implemented in the United Kingdom through the Data Protection Act 2018. Under the GDPR, we control and / or process any personal information about you electronically using the following lawful bases.
- We are registered with the ICO under the Data Protection Register, you can request our ICO Registration number by email.
We reserve the right to process and store your personally identifiable data under the basis of consent, contract, legal obligation, vital interests, public task, legitimate interest, special category data or criminal offence data.
If, as determined by us, the lawful basis upon which we process your personal information changes, we will notify you about the change and any new lawful basis to be used if required. We shall stop processing your personal information if the lawful basis used is no longer relevant.
Your individual rights:
Under the GDPR, your rights are as follows.
- The right to be informed
- The right of access
- The right to rectification
- The right to erasure
- The right to restrict processing
- The right to data portability
- The right to object
- The right not to be subject to automated decision-making, including profiling
You can read more about your rights on the ICO (Information Commissioner Office) website.
You also have the right to complain to the ICO if you feel there is a problem with the way we are handling your data. We handle subject access requests in accordance with the GDPR.
Data security and protection
We ensure the security of any personal information we hold by using secure data storage technologies and precise procedures in how we store, access and manage that information. Our methods meet the GDPR compliance requirement.
Fair & Transparent Privacy Explained
We have provided some further explanations about user privacy and the way we use this website to help promote a transparent and honest user privacy methodology.
Email marketing messages & subscription
Under the GDPR, we use the consent lawful basis for anyone subscribing to our newsletter or marketing mailing list. We only collect certain data about you, as detailed in the “Processing of your personal data” above. Any email marketing messages we send are done so through MailChimp, email marketing service provider. MailChimp is a third-party service that allows marketers to send out email marketing campaigns to a list of users.
Email marketing messages that we send may contain tracking beacons / tracked clickable links or similar server technologies in order to track subscriber activity within email marketing messages. Where used, such marketing messages may record a range of data such as; times, dates, I.P addresses, opens, clicks, forwards, geographic and demographic data. Such data, within its limitations, will show the activity each subscriber made for that email campaign.
Any email marketing messages we send are in accordance with the GDPR and the PECR. We provide you with an easy method to withdraw your consent (unsubscribe) or manage your preferences / the information we hold about you at any time.
We hold the following information about you within our EMS system:
- Email address
- Name
- Telephone Number
- Subscription time & date
- Company (if applicable)
Event Usage
Accessibility Nottingham and HeX Productions reserve the right to process your personal data when a ticket for the Accessibility Nottingham event is acquired on the Eventbrite page. This allows us to ensure that the correct attendees will be at the event.
We are responsible for processing the personal data of attendees, and this will be done digitally through the Data Controller, Eventbrite. Eventbrite’s privacy policy can be found here. If requested, we are able to delete all personally identifiable data after the event has taken place, however, if this is requested prior to the event taking place, your ticket for the event will be null and void.
We make every effort to ensure personally identifiable data is processed in relevance with the required legal legislation, however, the storing and control of the data is handled by Eventbrite and passed on electronically through automated means when required. Any breach that is the responsibility of Eventbrite is not our responsibility, and more details can be found in their own data privacy policy.
Issues and Complaints
Any issues or complaints with the way that we have handled data, or if you have any queries about our data process, you can contact the Data Controller at HeX Productions by emailing info@horlix.com. If your request is urgent, please call 0115 888 2828.