1. Introduction
cyber-flick ("we," "our," or "us") is committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services.
By using our services, you consent to the data practices described in this policy.
2. Information We Collect
2.1 Personal Information
We collect information that you provide directly to us, including:
- Name and contact information (email address, postal address)
- Child or teenager information (name, age) when enrolling in programmes
- Payment and billing information
- Communications with us, including enrollment forms and email correspondence
- Programme preferences and educational needs
2.2 Information Collected Automatically
When you access our website, we may automatically collect:
- Device information (IP address, browser type, operating system)
- Usage data (pages visited, time spent, referring URLs)
- Cookie data as described in our Cookies Policy
3. How We Use Your Information
We use collected information for the following purposes:
- To provide and deliver our educational programmes and services
- To process enrollments and manage programme administration
- To communicate with you about programmes, updates, and educational resources
- To improve our website, services, and educational content
- To respond to your enquiries and provide customer support
- To comply with legal obligations and protect our rights
- To analyze website usage and optimize user experience
4. Legal Basis for Processing (UK GDPR)
We process your personal data under the following legal bases:
- Contract Performance: To fulfill our contractual obligations when you enroll in programmes
- Legitimate Interests: To improve services, communicate relevant information, and maintain security
- Consent: Where you have provided explicit consent for specific processing activities
- Legal Obligations: To comply with applicable laws and regulations
5. Children's Privacy
Our services are designed for children and teenagers, but enrollment and consent are obtained from parents or guardians. We do not knowingly collect personal information directly from children under 13 without parental consent.
When providing services to minors:
- We collect only information necessary for programme delivery
- We obtain parental consent for data collection and processing
- We implement appropriate safeguards for children's data
- Parents can access, review, or delete their child's information at any time
6. Data Sharing and Disclosure
We do not sell your personal information. We may share information in the following circumstances:
- Service Providers: With trusted third parties who assist in service delivery (payment processors, email services, hosting providers) under strict confidentiality agreements
- Legal Requirements: When required by law or to protect rights, safety, or security
- Business Transfers: In connection with a merger, acquisition, or sale of assets
- With Your Consent: When you have explicitly authorized sharing
7. Data Security
We implement appropriate technical and organizational measures to protect your personal information, including:
- Encryption of data in transit and at rest
- Secure server infrastructure and access controls
- Regular security assessments and updates
- Staff training on data protection practices
However, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.
8. Data Retention
We retain personal information for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law. Specifically:
- Programme participant data is retained during active enrollment and for 3 years after completion for record-keeping and improvement purposes
- Financial records are retained for 7 years in compliance with UK tax regulations
- Marketing communications data is retained until you opt out
9. Your Rights Under UK GDPR
You have the following rights regarding your personal data:
- Right to Access: Request copies of your personal information
- Right to Rectification: Request correction of inaccurate or incomplete data
- Right to Erasure: Request deletion of your personal data under certain conditions
- Right to Restrict Processing: Request limitation on how we use your data
- Right to Data Portability: Receive your data in a structured, commonly used format
- Right to Object: Object to processing based on legitimate interests
- Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent
To exercise these rights, contact us at [email protected].
10. Cookies and Tracking Technologies
We use cookies and similar technologies to enhance user experience and analyze website usage. For detailed information, see our Cookies Policy.
11. Third-Party Links
Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.
12. International Data Transfers
Your information is primarily stored and processed within the United Kingdom. If we transfer data outside the UK, we ensure appropriate safeguards are in place in accordance with UK GDPR requirements.
13. Changes to This Privacy Policy
We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. The "Last updated" date at the top indicates when the policy was last revised. Continued use of our services after changes constitutes acceptance of the updated policy.
14. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
cyber-flick
17 Harbourside Walk
Bristol, BS1 6TL
United Kingdom
Email: [email protected]
15. Supervisory Authority
You have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) if you believe we have not handled your personal data appropriately:
Information Commissioner's Office
Wycliffe House, Water Lane
Wilmslow, Cheshire, SK9 5AF
Website: cyber-flick.com