Privacy Policy for Robin Hood Panto
1. Introduction
Robin Hood Panto (“we,” “us,” or “our”) is committed to protecting and respecting your privacy. This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal information when you visit our website (robinhoodpanto.com), and explains your rights in relation to your personal data. Our practices are designed to uphold the highest standards of data privacy, in compliance with applicable regulations such as the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
We value your trust and aim to process your personal information in a fair, transparent, and secure manner. Your privacy is a priority, and we are devoted to ensuring the confidentiality and protection of all personal data under our control.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and others who access or interact with robinhoodpanto.com. Robin Hood Panto is the data controller responsible for the processing of personal data as described in this document. Our role includes determining the purposes and means of processing personal data within the contexts outlined herein.
3. Categories of Data Processed
We may collect, use, store, and transfer various kinds of personal data, which we categorize as follows:
a) Usage Data: Includes information about your interactions with robinhoodpanto.com, such as IP addresses, browser type and version, geographic location, referral sources, length of visits, and pages viewed.
b) Account Data: Involves data you provide when you create an account or purchase tickets, including your full name, billing and shipping address, email address, and telephone number.
c) Profile Data: Consists of your stated or inferred preferences, previous attendance or purchase history, and any user behavior on the site that helps us personalize your experience.
d) Communication Data: Includes all documentation of support or inquiry messages sent via email or contact forms, and subsequent correspondence maintained as part of our service records.
e) Technical Data: Involves device-specific information such as IP address, browser type, operating system, and hardware details.
f) Transaction Data: Applies to details of ticket purchases or merchandise orders, payment card transactions (processed via third-party vendors), and delivery information.
g) Preference Data: Comprises marketing preferences, opt-in or opt-out status for email campaigns, and expressed interests in particular events or offers.
We do not intentionally collect or process sensitive personal data unless required for legal compliance and with the appropriate safeguards in place.
4. Legal Bases for Processing
We process your personal data only as permitted under applicable data protection laws, including but not limited to:
– Consent: Where you have clearly and affirmatively provided permission, such as subscribing to a newsletter or accepting cookies.
– Contractual Necessity: To fulfill our obligations arising from contracts entered into with you, such as ticket delivery and customer support.
– Legal Obligation: Where processing is required by statutory or regulatory compliance.
– Legitimate Interests: For operational interests, such as improving our website and services, preventing fraud, and performing data analytics, so long as such interests are not overridden by your rights and interests.
5. Your Data Protection Rights
If you are a resident of the European Economic Area (EEA), California, or other applicable jurisdictions, you are entitled to the following rights with respect to your personal data:
– Access: You can request a copy of your personal data and information about how we process it.
– Rectification: You may ask us to correct inaccurate or incomplete data.
– Erasure: You may request the deletion of your personal data under certain circumstances (“right to be forgotten”).
– Restriction: You can ask us to limit the processing of your personal data.
– Portability: You may obtain your data in a structured, machine-readable format and request transfer to another data controller.
– Objection: You may object to processing based on legitimate interests or direct marketing.
To exercise these rights, please contact us at [email protected]. We may verify your identity prior to complying with your request.
6. Security Measures
We implement robust security measures to safeguard your personal data from unauthorized access, alteration, disclosure, or destruction. These include:
– Encryption of data transmitted online
– Access controls on systems housing personal data
– Regular security audits and risk assessments
– Frequent data backups and disaster recovery planning
– Staff training on data privacy and security best practices
While no system can guarantee absolute security, we take all reasonable steps to protect your data.
7. International Transfers
Some of your personal data may be transferred to and processed in countries outside of your country of residence, including those with data protection laws that differ from yours. Where such transfers occur, they are only carried out with adequate safeguards in place, including Standard Contractual Clauses approved by the European Commission or equivalent frameworks ensuring lawful protection of data in compliance with GDPR requirements.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes described in this Privacy Policy, including legal, accounting, or reporting obligations. Specific timeframes include:
– Usage Data: 12 months from collection
– Account and Transaction Data: Retained for up to 7 years for tax and financial reporting
– Profile and Preference Data: Retained as long as your account remains active or until you withdraw consent
– Communication Data: Kept for 2 years to ensure service continuity
Once the relevant retention period expires, your data is securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar tracking technologies to enhance your experience on robinhoodpanto.com. Types of cookies we employ include:
– Essential Cookies: Necessary for core website functionality, such as logging in or processing payments.
– Functional Cookies: Enable enhanced features like remembering preferences or personalizing content.
– Performance Cookies: Collect anonymized data to assess the site’s performance and usage, helping us improve usability.
– Analytics Cookies: Provided by trusted third parties like Google Analytics to monitor and measure traffic patterns.
10. Cookie Management and Compliance
In compliance with GDPR and CCPA, you have the option to accept, reject, or customize your cookie preferences upon visiting robinhoodpanto.com. A cookie banner will prompt your initial consent, and you can modify your selections at any time via your browser settings or through our cookie management tool. We do not sell or share your data for targeted advertising without your explicit opt-in consent, in line with CCPA rights.
11. Protection for Children Under 13
Our website is not intended for children under the age of 13, and we do not knowingly collect personal information from individuals in this age group. If we become aware that such data has been collected without verified parental consent, it will be promptly deleted. Parents or guardians who believe their child has submitted data can contact us at [email protected] to request removal.
12. Policy Updates & User Notifications
We may revise this Privacy Policy from time to time to reflect legal, regulatory, or operational changes. Substantive updates will be communicated to users through email notifications or prominent notices on our website. Continued use of robinhoodpanto.com after such changes constitutes acknowledgment and consent to the revised policy.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data handling practices, please contact us at:
Email: [email protected]
We are committed to responding promptly and transparently to all privacy-related inquiries and to ensuring that your personal data is handled in accordance with applicable law.
We put privacy first and fully comply with the GDPR, CCPA, and other relevant data protection regulations. For any concerns relating to the collection or processing of your data, please do not hesitate to reach out.