This is the privacy notice of Arts & Esoterics. In this document, “we”, “our”, or “us” refer to Arts & Esoterics.
Our website address is: http://www.artsandesoterics.co.uk
We are a non-profit website. Our (DPO) Data Protection Officer is Kazzie Lennox-Williams.
Arts & Esoterics consist of a group of volunteer bloggers that work from home and have no registered office.
Arts & Esoterics has no control over and no liability for the content or the administration of any partner site or the partner offers.
We regret that if there are one or more points below with which you are not happy, your only recourse is to leave our website immediately.
We take seriously the protection of your privacy and confidentiality. We understand that all visitors to our website are entitled to know that their PII will not be used for any purpose unintended by them, and will not accidentally fall into the hands of a third party.
We undertake to preserve the confidentiality of all information you provide to us and hope that you reciprocate.
The following policy is written in compliance with the new GDPR European Law and the California Online Privacy Protection Act
The law requires us to tell you about your rights and our obligations to you in regards to the processing and control of your PII. We do this now, by requesting that you read the information provided at www.knowyourprivacyrights.org
Except as set out below, we do not share, or sell, or disclose to a third party, any information collected through our website.
The bases on which we process information about you
- The law requires us to determine under which of six defined bases we process different categories of your PII, and to notify you of the basis for each category.
- If a basis on which we process your PII is no longer relevant then we shall immediately stop processing your data.
- If the basis changes then if required by law we shall notify you of the change and of any new basis under which we have determined that we can continue to process your information.
Information we process with your consent
- Through certain actions when otherwise there is no contractual relationship between us, such as when you browse our website or ask us to provide you more information about our business, including our products and services, you provide your consent to us to process information that may be PII.
- Sometimes you might give your consent implicitly, such as when you send us a message by e-mail to which you would reasonably expect us to reply.
- Except where you have consented to our use of your information for a specific purpose, we do not use your information in any way that would identify you personally. We may aggregate it in a general way and use it to provide class information, for example, to monitor the performance of a particular page on our website.
- We continue to process your information on this basis until you withdraw your consent or it can be reasonably assumed that your consent no longer exists.
- You may withdraw your consent at any time by instructing us at email@example.com. However, if you do so, you may not be able to use our website or our services further.
Information we process for the purposes of legitimate interests
We may process the information on the basis there is a legitimate interest, either to you or to us, of doing so.
Where we process your information on this basis, we do after having given careful consideration to:
whether the same objective could be achieved through other means
whether processing (or not processing) might cause you harm
whether you would expect us to process your data, and whether you would, in the round, consider it reasonable to do so
For example, we may process your data on this basis for the purposes of:
record-keeping for the proper and necessary administration of Arts & Esoterics
responding to unsolicited communication from you to which we believe you would expect a response
protecting and asserting the legal rights of any party
insuring against or obtaining professional advice that is required to manage Arts & Esoterics’s risk
protecting your interests where we believe we have a duty to do so
Like many other Web sites, Arts & Esoterics makes use of log files. The information inside the log files includes internet protocol ( IP ) addresses, type of browser, Internet Service Provider ( ISP ), date/time stamp, referring/exit pages, and the number of clicks to analyse trends, administer the site, track user’s movement around the site, and gather demographic information. IP addresses and other such information are not linked to any information that is personally identifiable and is removed from our servers within 24 hours.
Managing Your Email Preferences
You have full control over email communications sent to you by Arts & Esoterics. You will also find an Unsubscribe link in the footer of all emails sent to you.
Information we process because we have a legal obligation
We are subject to the law like everyone else. Sometimes, we must process your information in order to comply with a statutory obligation.
For example, we may be required to give information to legal authorities if they so request or if they have the proper authorisation such as a search warrant or court order.
This may include your PII.
How we protect your information?
- We do not use vulnerability scanning and/or scanning to PCI standards.
- An external PCI compliant payment gateway handles all CC transactions. All transactions are processed through a gateway provider and are not stored or processed on our servers.
- We use regular Malware Scanning.
- All identifiable information is deleted within 24 hours and no PII is stored on this website or the server.
- Your PII is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. In addition, all sensitive information you supply is encrypted via Secure Socket Layer (SSL) technology.
- We implement a variety of security measures when a user enters, submits, or accesses their information to maintain the safety of your PII.
Specific uses of information you provide to us
Our website allows you to post information with a view to that information being read, copied, downloaded, or used by other people.
- Comments on blog posts
- When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
Once your information enters the public domain, we have no control over what any individual third party may do with it. We accept no responsibility for their actions at any time.
Complaints regarding content on our website
- If you complain about any of the content on our website, we shall investigate your complaint.
- If we feel it is justified or if we believe the law requires us to do so, we shall remove the content while we investigate.
- Free speech is a fundamental right, so we have to make a judgment as to whose right will be obstructed: yours, or that of the person who posted the content that offends you.
- If we think your complaint is vexatious or without any basis, we shall not correspond with you about it.
Sending a message to our support team
- When you contact us, through our website or by e-mail, we collect the data you have given to us in order to reply with the information you need.
- We record your request and our reply in order to increase the efficiency of Arts & Esoterics
- We do not keep any PII associated with your messages, such as your name or email address.
- When we receive a complaint, we record all the information you have given to us.
- We use that information to resolve your complaint.
- If your complaint reasonably requires us to contact some other person, we may decide to give to that other person some of the information contained in your complaint. We do this as infrequently as possible, but it is a matter for our sole discretion as to whether we do give information, and if we do, what that information is.
- We may also compile statistics showing information obtained from this source to assess the level of service we provide, but not in a way that could identify you or any other person.
- Direct all complaints here: firstname.lastname@example.org
Who on our team has access to information
Karen Lennox-Williams (administrator)
- Cookies are small text files that are placed on your computer’s hard drive by your web browser when you visit any website. They allow information gathered on one web page to be stored until it is needed for use on another, allowing a website to provide you with a personalised experience and the website owner with statistics about how you use the website so that it can be improved.
- Some cookies may last for a defined period of time, such as one day or until you close your browser.
- Your web browser should allow you to delete any cookies you choose. It also should allow you to prevent or limit their use.
- To track how you use our website
- If you have an account and you log into this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
- When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
- If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Personal identifiers from your browsing activity
- Requests by your web browser to our servers for web pages and other content on our website are recorded.
- We record information such as your geographical location, your Internet service provider and your IP address. We also record information about the software you are using to browse our websites, such as the type of computer or device and the screen resolution.
- We use this information in aggregate to assess the popularity of the web pages on our website and how we perform in providing content to you.
Information we obtain from third parties
Although we do not disclose your personal information to any third party (except as set out in this notice), we sometimes receive data that is indirectly made up from your PII from third parties whose services we use. No such information is personally identifiable to you.
Third party advertising on the site
Third parties may advertise on our website. In doing so, those parties, their agents or other companies working for them may use technology that automatically collects information about you when their advertisement is displayed on our website.
We do not have control over these technologies or the data that these parties obtain. Accordingly, this privacy notice does not cover the information practices of these third parties.
Third Party Advertising:
- Google’s use of the DoubleClick cookie enables it and its partners to serve ads to your users based on their visit to your sites and/or other sites on the internet
- Users may opt out of the use of the DoubleClick cookie for interest-based advertising by visiting your Ad Settings. aboutads.info
Google’s advertising requirements can be summed up by Google’s Advertising Principles. They are put in place to provide a positive experience for users. Support at Google
We use Google AdSense Advertising on our website.
- When someone clicks through an affiliate link, it generally creates a cookie on that person’s computer.
- Cookies can last for many months, or be set to expire immediately after someone clicks away from a link. So the next time that person makes a purchase, the affiliate tracking system can generate a commission for the affiliate.
- Keep in mind that we may receive commissions when you click our links and make purchases. However, this does not impact our reviews and comparisons. We try our best to keep things fair and balanced, in order to help you make the best choice for you.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Data may be processed outside the European Union
- Our website is hosted in Europe.
- We may use services in countries outside the European Union from time to time in other aspects of our business.
- Accordingly, data obtained within the UK or any other country could be processed outside the European Union.
- For example, some of the software used on our website may have been developed in the United States of America or in Australia.
- We use the following safeguards with respect to data transferred outside the European Union:
- the processor is within the same corporate group as our business or organisation and abides by the same binding corporate rules regarding data processing.
- the data protection clauses in our contracts with data processors include transfer clauses written by or approved by a supervisory authority in the European Union.
- we comply with a code of conduct approved by a supervisory authority in the European Union.
California Online Privacy Protection Act
According to CalOPPA, we agree to the following:
Users can visit our site anonymously.
Access to your own information
Find out what information we hold about you
To find out if we hold any information about you, contact us at email@example.com
Removal of your information
If you wish us to remove PII from our website, you may contact us at firstname.lastname@example.org
This may limit the service we can provide to you.
Verification of your information
When we receive any request to access, edit or delete PII we shall first take reasonable steps to verify your identity before granting you access or otherwise taking any action. This is important to safeguard your information.
COPPA (Children Online Privacy Protection Act)
- When it comes to the collection of PII from children under the age of 13 years old, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, United States’ consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.
- This website is directed to adults; it is not directed to children under the age of 13. We operate our site in compliance with the Children’s Online Privacy Protection Act, and will not knowingly collect or use PII from anyone under 13 years of age.
- We do not let third-parties, including ad networks or plug-ins, collect PII from children under 13.
How you can complain
- If a dispute is not settled then we hope you will agree to attempt to resolve it by engaging in good faith with us in a process of mediation or arbitration.
- If you are in any way dissatisfied about how we process your PII, you have a right to lodge a complaint with the Information Commissioner’s Office. This can be done at https://ico.org.uk/concerns/
Compliance with the law
However, ultimately it is your choice as to whether you wish to use our website.
Can change your personal information:
- By emailing us at email@example.com
How does our site handle Do Not Track signals?
We honour Do Not Track signals and Do Not Track, plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.
In order to be in line with GDPR Practices we will take the following responsive action, should a data breach occur:
If you are registered on this website:
We will notify you via email:
- Within 48 hours
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.
We collect your email address in order to:
- Send information, respond to inquiries, and/or other requests or questions
To be in accordance with CAN-SPAM, we agree to the following:
- Not use false or misleading subjects or email addresses.
- Identify the message as an advertisement in some reasonable way.
- Include the physical address of our business or site headquarters.
- Monitor third-party email marketing services for compliance, if one is used.
- Honour opt-out/unsubscribe requests quickly.
- Allow users to unsubscribe by using the link at the bottom of each email.