SUPERCHARGED LTD
PRIVACY POLICY

We respect all personal data and also understand that individuals, sole traders, partnerships and limited liability companies may use our products and services. The provisions, measures and rights in this privacy notice are applied to all forms of data collected through our company or external companies such as ticketing outlets.

Who We Are

SUPERCHARGED Ltd is a U.K. company, Registration Number 10761740, with its registered office at 211, Kings Road Arches, Brighton, BN1 1NB, England

Information That We Collect

SuperCharged Events Limited processes your personal information to meet our legal, statutory and contractual obligations and to provide you with our products and services. We will never collect any unnecessary personal data from you and do not process your information in any other way than already specified in this notice. The personal data that we collect from you is:

  • title
  • Name
  • Age
  • Email Address
  • Phone Number

We will collect information from you if you:

  • Sign up to our mailing list, via our website or one of our social media outlets
  • Place an order for products or services through our website we use to sell our products and services
  • Complete an online contact form
How We Use Your Personal Data (Legal Basis for Processing)

SUPERCHARGED Ltd takes your privacy very seriously and will never disclose, share or sell your data without your consent, unless required to do so by law.

The minimal amount of data required to facilitate the sale of a ticket is processed: the individuals name and email address or Facebook profile. We may request additional information such as telephone number or age but only when such information is necessary to the event e.g. age specific event or venue announcement by telephone.

We will only contact you after placing an order as part of our contractual service. Processing for any purpose other than those specified in this policy is only done with your consent, which you are free to withdraw at any time.

The purposes and reasons for processing your personal data are detailed below:

  • We collect your personal data in the performance of a contract and to provide you with our products and services.
  • We use your personal information to answer your queries and provide industry specific advice
  • We collect and store your personal data as part of our legal obligation for business accounting and tax purposes
  • We may also contact you for feedback on your use of our products, services or our website and may need to use your information to send important notices, such as the GDPR where there have been regulation/law revisions or changes to our terms, conditions and policies.
  • We collect your personal data for important event announcements and informations, cancellations or rescheduling communications.
  • We collect your personal data for marketing purposes including electronic marketing.
Your Rights

You have the right to access any personal information that Know Your Compliance hold or process about you and to request information about:

  • What personal data we hold
  • The purposes of the processing
  • The categories of personal data concerned
  • The recipients to whom the personal data has/will be disclosed
  • How long we intend to store your personal data for
  • If we did not collect the data directly from you, information about the source
  • If you believe that we hold any incomplete or inaccurate data about you, you have the right to ask us to ncorrect and/or complete the information and we will strive to update /correct it as quickly as possible, unless there is a valid reason for not doing so, at which point you will be notified.

You also have the right to request erasure of your personal data or to restrict processing in accordance with the data protection law, as well as to object to any direct marketing from us and to be informed about any automated decision-making that we use.

If we receive a request for any of the above rights, we may ask you to verify your identity before acting on the relevant request; this is to ensure that your data is protected and kept secure.

Sharing and Disclosing Your Personal Information

We do not share or disclosure any of your personal information without your consent, other than for the purposes specified in this notice, where there is a legal requirement or to enforce our terms and conditions.

Safeguarding Measures

SUPERCHARGED Ltd takes your privacy seriously and we take every reasonable measure and precaution to protect and secure your personal data. We work hard to protect you and your information from unauthorised access, alteration, disclosure or destruction and have several layers of security measures and procedures in place to maintain the safety of your data.

Consequences of Not Providing Your Data

You are not obligated to provide your personal information to SUPERCHARGED Ltd, however, your personal information is necessary to ensure that we are able to deliver services and effective communication and in some instances we will not be able to provide services, products or reminder notifications without this information.

How Long We Keep Your Data

SUPERCHARGED Ltd only ever retains personal information for as long as is necessary and we have strict review and retention policies in place to meet these obligations. We are required under UK tax law to keep your basic personal data (name, address, contact details) for a minimum of 6 years after which time it will be destroyed subject to a period of inactivity.

Erasure of your personal data

You have the right to request a correction of the personal data that we hold about you. This ensures that personal data we hold is accurate and true. During this process, we may need to verify the accuracy of the new data you provide to us. It is important that the personal information we hold about you is accurate and current. Please keep us informed of any changes relating to your personal data.

Use of Cookies on Our Website

A ‘cookie’ is a small piece of data sent from a website and stored on the user’s device by the user’s web browser while the user is browsing. When you visit a site that uses cookies for the first time, a cookie is downloaded onto your device so that the next time you visit that site, your device will remember useful information such as items added in the shopping cart, visited pages or logging in options.

Our site relies on cookies for contact form use, customer checkout and/or log in and for security applications. These are all trusted cookies delivered directly from our website.

Lodging a Complaint

SUPERCHARGED Ltd only processes your personal information in compliance with this privacy notice and in accordance with the relevant data protection laws. If, however you wish to raise a complaint regarding the processing of your personal data or are unsatisfied with how we have handled your information, you have the right to lodge a complaint with the supervisory authority.

Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
SK9 5AF
0303 123 1113

Legal Notices

The Legal Notices should be read as a whole. Certain words as used in the Legal Notices and elsewhere on this website, in emails and in other materials are to have the meanings assigned here.

We draw your attention to the following points of policy in relation to communications by, or to, the firm by email. Anyone who communicates with the firm by email is taken to accept these points and any risks thereby inherent.

Confidentiality

Any email and attachments sent from the firm are intended for the named addressee only, and may contain information which is confidential and/or privileged or otherwise protected from disclosure. Unless you are the named or intended addressee (or authorised to receive for such addressee) you may not disclose, distribute, copy or use it, or disclose it to anyone else. Otherwise please notify the sender immediately; then delete the message and any attachment from your system and destroy any copies.

Viruses, etc.

It is your responsibility to protect your system from viruses and other harmful codes or devices ("malicious software"). While we make efforts to keep our network and emails free from malicious software, we accept no responsibility for any damage that may be caused by malicious software which might be transferred by way of email or any attachment and, as a result, to your systems, should they be infected by malicious software introduced by an email sent from us.

Mobile Devices

The use of mobile devices by our employees may make the reading of the entirety of an incoming e-mail, especially a chain of e-mail correspondence, and its attachments, difficult, impractical or impossible. Accordingly, recipients of e-mails from the company should allow for the fact that where the e-mail has been sent from a mobile device the sender may not have read and considered the entirety of an incoming e-mail and its attachments, and may not be fully aware of their contents. Such recipients should consider seeking confirmation of any advice so given before it is relied upon.

Delivery and Follow up

We cannot accept any responsibility for the accuracy, completeness or timely delivery of email as it is transmitted over a public network either to us or from us. If you suspect that the message from us may have been intercepted or amended by a third party, please contact the sender.

Incoming emails are subject to screening for suspected spam, viruses and other undesirable content and attachments. This may result in communications to us failing to reach the intended recipient. If you are intending to send us material which may be susceptible to interception, or you are uncertain if it has reached the intended addressee, you should separately alert the person to whom you are sending it by phone, fax or post.

Alternatively, if you do not have a specific name you may telephone the office number given on this website.

Monitoring

We may monitor email content for the purposes of ensuring compliance with law and our policies, as well as details of correspondents to supplement our relationships database. All communications between you and us by post, courier, fax, email or telephone may at our discretion be intercepted by someone in the firm not otherwise involved in the matter for quality control, technical or compliance purposes.

Security

Whilst we take care as to the security of the internet and our system, we do not ordinarily use encryption or passwords and as the internet is not secure we make no representations. Emails are sent for and on behalf of SUPERCHARGED Ltd, as the case may be, one of its affiliated and associated businesses and entities so accordingly SUPERCHARGED Ltd or, as relevant, one of its affiliated and associated businesses and entities alone, and not any partner of, consultant to, employee of, SUPERCHARGED Ltd or other individual as author or named in it, will incur any liabilities arising from the content of emails sent from SUPERCHARGED Ltd. This is subject to any relevant mandatory provisions of law or regulation and subject to such email not being a non-business email as specified below.

Advice

When addressed to a client any advice, including any opinion, contained in an e-mail sent by the company, or its attachments, is sent subject to, and on the basis of, any terms of engagement (engagement letter and/or terms of business) applicable between SUPERCHARGED Ltd and/or, as the case may be, any of its affiliated and associated businesses and entities and the recipient as client.

Liability

Emails are sent for and on behalf of SUPERCHARGED Ltd or, as the case may be, one of its affiliated and associated businesses and entities so accordingly SUPERCHARGED Ltd or, as relevant, one of its affiliated and associated businesses and entities alone, and not any partner of, consultant to, employee of, SUPERCHARGED Ltd or other individual as author or named in it, will incur any liabilities arising from the content of any email, or its attachments, sent from SUPERCHARGED Ltd. When addressed to clients of the company, any opinions or advice contained in any email, or its attachments are subject to the terms and conditions set out in any engagement terms applicable between the company and such client. This is subject to any relevant mandatory provisions of law or regulation and subject to such email not being a non-business email as specified below.

Non-business email

We do not endorse, and are not liable for, any information, views, opinions or conclusions contained in an e-mail message sent from SUPERCHARGED Ltd where this is a non-business email, that is one that does not relate to our official business concerning our own affairs or in respect of the professional services for our clients, in which case the relevant partner of, consultant to or employee of ours, or other individual as author of the email, alone is responsible. Likewise, we are not liable on any contract concluded on the basis of any such non-business email. This is subject to any relevant mandatory provisions of law or regulation.

Service of process

The firm does not accept receipt or service by email of court proceedings, other proceedings or formal notices of any kind on behalf of clients, or on the firm’s own account, without specific prior written agreement.

Legal Notices

The Legal Notices should be read as a whole. Certain words as used in the Legal Notices and elsewhere on this website, in emails and in other materials are to have the meanings assigned here.

GDPR Compliance Statement

GDPR Compliance statement

The EU General Data Protection Regulation (“GDPR”) comes into force on 25th May 2018 and represents the most significant changes to data protection law in two decades. GDPR places more obligations on companies to ensure that the data they process on EU Citizens is done securely and for lawful reasons.

GDPR makes data protection legislation more relevant to modern technology, the days of printed paper that can be locked in a filing cabinet are long gone and companies must think about how they hold and process data digitally.

From a consumer perspective, GDPR is intended to update and standardise data protection legislation across the EU to provide more protection to EU citizens about how their personal or sensitive data is collected and used.

Our Commitment

SUPERCHARGED Ltd (‘we’ or ‘us’ or ‘our’) are committed to ensuring the security and protection of the personal information that we process, and to provide a compliant and consistent approach to data protection. We have always had a robust and effective data protection program in place which complies with existing law and abides by the data protection principles. However, we recognise our obligations in updating and expanding this program to meet the demands of the GDPR and the UK’s Data Protection Bill. We are committed to complying with our obligations as Data Controller and Data Processor.

We are dedicated to safeguarding the personal information under our remit and in developing a data protection regime that is effective, fit for purpose and demonstrates an understanding of, and appreciation for the new Regulation. Our preparation and objectives for GDPR compliance have been summarised in this statement and include the development and implementation of new data protection roles, policies, procedures, controls and measures to ensure maximum and ongoing compliance.

How We Are Preparing For The GDPR

SUPERCHARGED Ltd already have a consistent level of data protection and security, however it is our aim to be fully compliant with the GDPR by 25th May 2018. Our preparation includes:

  • Information Audit – we have carried out a company-wide information audit to identify and assess what personal information we hold, where it comes from, how and why it is processed and if and to whom it is disclosed.
  • Policies & Procedures – We have updated our Privacy Policy, cookies statement and Terms & Conditions to meet the requirements and standards of the GDPR, including: – Data Protection – Our Terms & Conditions have been reviewed and revised to meet the standards and requirements of the GDPR. Accountability and governance measures are in place to ensure that we understand and adequately disseminate and evidence our obligations and responsibilities; with a dedicated focus on privacy by design and the rights of individuals.
  • Data Retention & Erasure – we are in the process of updating our retention policy and schedule to ensure that we meet the ‘data minimisation’ and ‘storage limitation’ principles and that personal information is stored, archived and destroyed compliantly and ethically. We have dedicated erasure procedures in place to meet the new ‘Right to Erasure’ obligation and are aware of when this and other data subject’s rights apply; along with any exemptions, response timeframes and notification responsibilities.
    • Data Breaches – our breach procedures ensure that we have safeguards and measures in place to identify, assess, investigate and report any personal data breach at the earliest possible time. Our procedures are robust and have been disseminated to all employees, making them aware of the reporting lines and steps to follow.
    • International Data Transfers & Third-Party Disclosures – our production data is held within the EU, we have robust procedures and safeguarding measures in place to secure, encrypt and maintain the integrity of the data. Our procedures include a continual review of the countries with sufficient adequacy decisions, as well as provisions for binding corporate rules; standard data protection clauses or approved codes of conduct for those countries without. We carry out strict due diligence checks with all recipients of personal data to assess and verify that they have appropriate safeguards in place to protect the information, ensure enforceable data subject rights and have effective legal remedies for data subjects where applicable.
    • Subject Access Request (SAR) – we have revised our SAR procedures to accommodate the revised 30-day timeframe for providing the requested information and for making this provision free of charge. Our new procedures detail how to verify the data subject, what steps to take for processing an access request, what exemptions apply and a suite of response templates to ensure that communications with data subjects are compliant, consistent and adequate.
    • Legal Basis for Processing – we have reviewed all processing activities to identify the legal basis for processing and ensuring that each basis is appropriate for the activity it relates to. Where applicable, we also maintain records of our processing activities in a Data Processing Registry which outlines our activities as both Data Processor and Data Controller.
    • Privacy Policy – we have revised our Privacy Policy to comply with the GDPR. This policy will ensure that all individuals whose personal information we process have been informed of why we need it, how it is used, what their rights are, who the information is disclosed to and what safeguarding measures are in place to protect their information.
      • Obtaining Consent – we are revising our consent mechanisms for obtaining personal data, ensuring that individuals understand what they are providing, why and how we use it and giving clear, defined ways to consent to us processing their information.  Direct Marketing – we are revising the wording and processes for direct marketing, including clear opt-in mechanisms for marketing subscriptions; a clear notice and method for opting out and providing unsubscribe features on all subsequent marketing materials.
    • Data Protection Impact Assessments (DPIA) – we do not process personal information that is considered high risk, involves large scale processing or includes special category/criminal conviction data. We have implemented documentation processes that record each assessment, allow us to rate the risk posed by the processing activity and implement mitigating measures to reduce the risk posed to the data subject(s). Special Categories Data – SUPERCHARGED Ltd does not process any Special Categories Data.
  Data Subject Rights

In addition to the policies and procedures mentioned above that ensure individuals can enforce their data protection rights, we provide easy to access information via our website of an individual’s right to access any personal information that SUPERCHARGED Ltd processes about them and to request information about:

  • What personal data we hold about them
  • The purposes of the processing
  • The categories of personal data concerned
  • The recipients to whom the personal data has/will be disclosed
  • How long we intend to store your personal data for
  • If we did not collect the data directly from them, information about the source
  • The right to have incomplete or inaccurate data about them corrected or completed and the process for requesting this
  • The right to lodge a complaint or seek judicial remedy and who to contact in such instances
  Information Security & Technical And Organisational Measures

SUPERCHARGED Ltd takes the privacy and security of individuals and their personal information very seriously and take every reasonable measure and precaution to protect and secure the personal data that we process. We have robust information security policies and procedures in place to protect personal information from unauthorised access, alteration, disclosure or destruction and have several layers of security measures.