Last updated: 25 September 2018
Data privacy is of high importance to Untainted Magazine ("UNTAINTED") and we want to be open and transparent with our processing of your personal data. This website is not intended for children and we do not knowingly collect data relating to children.
We, therefore, have a policy setting out how your personal data will be processed and protected.
What data do you collect about me?
Personal data, or personal information, means any information about an individual from which that person can be identified. You can find out more about personal data from the Information Commissioner's Office.
We may collect, use, store and transfer different kinds of personal data about you which we have grouped together as follows:
Identity Data includes first name / last name
Contact Data includes email address.
Technical Data includes ID address/login data/browser type and version/location/operating system and platform/other technology on the device you use to access our website.
Usage Data includes information about how you use our website and services.
Marketing and Communications Data includes your preferences in receiving marketing from us/your communication preferences.
We also collect and use Aggregated Data such as statistical or demographic data for any purpose. Aggregated Data may be derived from your personal data but is not considered personal data in law as this data does not directly or indirectly reveal your identity. For example, we may aggregate your Usage Data to calculate the percentage of users accessing a specific website feature. However, if we combine or connect Aggregated Data with your personal data so that it can directly or indirectly identify you, we treat the combined data as personal data which will be used in accordance with this privacy notice.
We do not collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data). Nor do we collect any information about criminal convictions and offenses.
Who is the controller of your personal data?
Khandiz Joni Towill, is the controller of the personal data you submit to us and responsible for your personal data under applicable data protection law.
Our contact details are: 14c St Mary’s Road, London. NW10 4AP. United Kingdom.
For all data matters, contact our firstname.lastname@example.org
Where do we store your data?
The data that we collect from you is stored within the European Economic Area (“EEA”) but may also be transferred to and processed in a country outside of the EEA with our third-party Data Processors, SquareSpace.com (https://www.squarespace.com/dpa) and Google.com (https://policies.google.com/privacy?hl=en-GB&gl=uk).
Any such transfer of your personal data will be carried out in compliance with applicable laws.
For transfers outside the EEA, Wix.com and Google Ltd will use Standard Contractual Clauses and Shields as safeguards for countries without adequacy decisions from the European Commission. Both providers participate in, and have certified its compliance with, the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework.
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, requirements.
In some circumstances you can ask us to delete your data: see Your legal rights below for further information.
In some circumstances, we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.
Who can access your data?
We never pass on, sell or swap your data for marketing purposes.
Data that is forwarded to third parties, is only used to provide you with our services. You will find categories of third parties under every specific process below.
What is the legal ground for processing?
For every specific process of personal data we collect from you, we will inform you whether the provision of personal data is statutory or required to enter a contract and whether it is an obligation to provide the personal data. Where we need to collect your personal data by law, or under the terms of a contract we have with you and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you (for example, to provide you with services). In this case, we may have to cancel a service you have with us but we will notify you if this is the case at the time.
To give you more transparent and clear information on how we process your personal data, we have divided the Privacy Notice into different chapters, which can be found at the bottom of this notice. Depending on if you are a subscriber, or contributor, different parts of the notice will apply to you. In each chapter, we describe in even more detail what personal data we have about you and how we use it. We have also added more information about your rights, for example how to get access to your data and how to request that we stop using your data.
ii. Legitimate Interest this means the interest of our business in conducting and managing our business to enable us to give you the best service/product and the most secure experience. We make sure we consider and balance any potential impact on you (both positive and negative) and your rights before we process your personal data for our legitimate interests. We do not use your personal data for activities where our interests are overridden by the impact on you (unless we have your consent or are otherwise required or permitted to by law). You can obtain further information about how we assess our legitimate interests against any potential impact on you in respect of specific activities by writing to us at email@example.com.
What security measures do you have in place to protect my data?
We use malware and anti-virus software, secure cloud storage and encrypted files to ensure we are keeping your personal data secure.
Any third-party services we use to manage our business offer "state-of-the-art" security measures to keep yours and our data safe.
What are cookies?
For more general information on cookies see the Wikipedia article on HTTP Cookies...
The cookies we set
This site offers email subscription services and cookies may be used to remember if you are already registered and whether to show certain notifications which might only be valid to subscribed/unsubscribed users.
When you submit data to through a form such as those found on contact pages or comment forms cookies may be set to remember your user details for future correspondence.
Third Party Cookies
Third party analytics are used to track and measure usage of this site so that we can continue to produce engaging content. These cookies may track things such as how long you spend on the site or pages you visit which helps us to understand how we can improve the site for you.
Several partners advertise on our behalf and affiliate tracking cookies simply allow us to see if our customers have come to the site through one of our partner sites so that we can credit them appropriately and where applicable allow our affiliate partners to provide any bonus that they may provide you for making a purchase.
What are your rights?
Right to access:
You have the right to request information about the personal data we hold on you at any time. You can contact us and we will provide you with your personal data via email.
Right to portability:
Whenever UNTAINTED processes your personal data, by automated means, based on an agreement, you have the right to get a copy of your data transferred to you or to another party. This only includes the personal data you have submitted to us.
Right to rectification:
You have the right to request rectification of your personal data if the information is incorrect, including the right to have incomplete personal data completed.
Right to erasure:
You have the right to erase any personal data processed by ANA at any time except for the following situations:
*you have an ongoing matter with us
*if you are suspected or have misused our site within the last four years
Your right to object to processing based on legitimate interest:
You have the right to object to the processing of your personal data that is based on UNTAINTED's legitimate interest. UNTAINTED will not continue to process the personal data unless we can demonstrate legitimate grounds for the process which overrides your interest and rights or due to legal claims.
Your right to object to direct marketing:
You have the right to object to direct marketing, including profiling analysis made for direct marketing purposes.
You can opt-out from direct marketing by the following means:
* following the instruction in each marketing emails
* by email firstname.lastname@example.org with the subject line "Opt Out"
Right to restriction:
You have the right to request that UNTAINTED restricts the process of your personal data under the following circumstances:
* if you object to a processing based UNTAINTED's legitimate interest, UNTAINTED shall restrict all processing of such data pending the verification of the legitimate interest.
* if you have a claim that your personal data is incorrect, UNTAINTED must restrict all processing of such data pending the verification of the accuracy of the personal data.
* if the processing is unlawful you can oppose the erasure of personal data and instead request the restriction of the use of your personal data instead
* if UNTAINTED no longer needs the personal data but it is required by you to defend legal claims.
Access to your personal data (or to exercise any of the other rights) is free of charge. However, we may charge a reasonable admin fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances. We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
How can you exercise your rights?
Send us an email to email@example.com. We take your privacy very seriously and are happy to help resolve any issue to the best of our ability. We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
Updates to our Privacy Notice:
We may need to update our Privacy Notice. The latest version of the Privacy Notice is always available on our website. We will communicate any material changes to the Privacy Notice, for example, the purpose of why we use your personal data, the identity of the Controller or your rights. You will always be able to see when the Notice was last updated at the top of this page.
Your duty to keep us informed:
Please keep us informed if your personal data changes during your relationship with us. It is important that the personal data we hold about you is accurate and current.