Privacy Policy
1. Introduction
At Robin Hood Pantomime (“we,” “us,” “our”), accessible via robinhoodpanto.com, we are committed to respecting and protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our website and interact with our services. We prioritize data privacy and adhere to the highest standards of data protection under relevant privacy laws, including the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA).
By using robinhoodpanto.com, you acknowledge that you have read and understood this Privacy Policy.
2. Scope of This Policy and Data Controller Role
This Privacy Policy applies to all users who interact with robinhoodpanto.com, including site visitors, customers, and event participants. Robin Hood Pantomime is the data controller for personal data collected through this website. As data controller, we determine the purposes and means of processing your personal information. If you have any questions about how we handle your data, please contact us at [email protected].
3. Categories of Data Processed
We collect and process various types of personal data depending on how you engage with our website and services:
a) Usage Data
Information collected automatically when you use the site, including IP address, browser type, referring/exit pages, time zone settings, operating system, date/time stamps, and site navigation paths.
b) Account Data
Details you provide when creating an account or making a booking, such as your full name, email address, postal address, and phone number.
c) Profile Data
Preferences, interests, feedback, past ticket purchases, and behavior on the site, including past communications and user activity relevant to your interactions with robinhoodpanto.com.
d) Communication Data
Records of correspondence with us, such as customer support inquiries, feedback submissions, and any other contact made through our site or email.
e) Technical Data
Device identifiers, hardware model, mobile network information, operating system version, browser plugins, and system configuration data used to optimize the site experience.
f) Transaction Data
Information relating to purchases, including ticket details, payment methods, billing and delivery addresses, and transaction confirmation records.
g) Preference Data
Marketing and communication preferences, consent status for promotional materials, and expressed interests in shows or events.
4. Legal Bases for Processing
We process your personal data where it is lawful to do so under applicable regulations. Our legal bases include:
– Performance of Contract: To fulfill bookings or purchases you request.
– Consent: When you explicitly opt-in to receive marketing or when necessary for storing cookies.
– Legitimate Interests: To operate, improve, and secure our services, provided those interests are not overridden by your data protection rights.
– Legal Obligations: Compliance with applicable laws and regulatory requirements.
5. Your Rights
Under GDPR and applicable data protection laws, you are entitled to exercise the following rights in relation to your personal data:
– Right of Access: Request confirmation of whether we process your data and obtain a copy.
– Right to Rectification: Request that we correct or complete your information if inaccurate or incomplete.
– Right to Erasure (“Right to be Forgotten”): Request deletion of your data when it is no longer necessary for the purposes collected.
– Right to Restrict Processing: Request restriction of your data’s use when accuracy is contested or processing is unlawful.
– Right to Data Portability: Request your personal data in a commonly used, machine-readable format to transmit to another service provider.
To exercise any of these rights, please contact us at [email protected]. We may request verification of your identity before responding.
6. Security Measures
We implement and maintain appropriate technical and organizational measures to safeguard your personal information. These include but are not limited to:
– Encryption of data in transit and at rest
– Role-based access control and authentication protocols
– Regular data backups and secure storage
– Internal staff training on data protection
While we strive to use commercially acceptable means to protect your data, we cannot guarantee absolute security against sophisticated threats.
7. International Transfers
Where your data is transferred outside the United Kingdom (UK) or European Economic Area (EEA), we ensure adequate protection through:
– Standard Contractual Clauses approved by the European Commission or UK authorities
– Implementation of supplementary security measures
– Transfers only to jurisdictions recognized for providing adequate data protection
We comply with applicable legal requirements in handling cross-border transfers of personal data.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, including:
– Account and transaction data: Stored for a minimum of six years for legal and tax compliance.
– Marketing preferences: Retained while you remain subscribed and not withdrawn your consent.
– Technical and Usage Data: Retained for up to 26 months for analytics and service optimization.
– Communication Records: Retained for two years after resolution of related queries or complaints.
Data that is no longer required is anonymized or securely deleted.
9. Cookie Policy
We use cookies and similar tracking technologies to improve user experience and analyze site performance. Cookies are categorized as follows:
– Essential Cookies: Necessary for the operation of robinhoodpanto.com (e.g., login sessions, shopping cart).
– Functional Cookies: Enable enhanced features and personalization (e.g., saved preferences).
– Analytical Cookies: Collect usage information to help us understand website performance.
– Performance Cookies: Measure how different segments of users engage with the site, improving functionality over time.
10. Cookie Management & Compliance with GDPR and CCPA
Users in the UK, EEA, and California are given the option to manage their cookie consent through a cookie banner on first visit. You may withdraw or modify consent at any time via your browser settings or cookie management tools provided on the site.
Under CCPA, California residents have the right to opt out of the “sale” of personal data. While we do not sell personal information in the traditional sense, we honor opt-out requests via cookie preference tools and do not deploy third-party tracking without proper notice and consent.
11. Special Protections for Children
We do not knowingly collect or solicit personal information from children under the age of 13. If we become aware that we have inadvertently collected such information, we will take immediate steps to delete it. Parents or guardians who suspect their child has provided data through robinhoodpanto.com should contact us at [email protected].
12. Policy Updates & User Notification
We may modify this Privacy Policy from time to time based on evolving legal, technical, or business requirements. Any significant changes will be communicated on our website. Continued use of robinhoodpanto.com after any changes indicates your agreement to the revised policy.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our handling of your personal data, you may contact us at:
Email: [email protected]
We remain committed to complying with global data protection regulations and protecting your personal data with integrity and transparency. Should you have any privacy-related concerns, we welcome you to contact our team directly using the contact information above.