PRIVACY NOTICE

Last updated 29th June 2023

This privacy notice for http://www.drummergallop.com (“Company,” “we,” “us,” or “our“), describes how and why we might collect, store, use, and/or share (“process“) your information when you use our services (“Services“), such as when you:

Questions or concerns? Reading this privacy notice will help you understand your privacy rights and choices. If you do not agree with our policies and practices, please do not use our Services. If you still have any questions or concerns, please contact us at andrew@drummergallop.com.

SUMMARY OF KEY POINTS

What personal information do we process? When you visit, use, or navigate our Services, we may process personal information depending on how you interact with http://www.drummergallop.com and the Services, the choices you make, and the products and features you use. Learn more about ‘personal information you disclose to us’ in the ‘WHAT INFORMATION DO WE COLLECT SECTION’.

Do we process any sensitive personal information?

We do not process sensitive personal information.

Do we receive any information from third parties?

We may receive information from public databases, marketing partners, social media platforms, and other outside sources.

How do we process your information? We process your information to provide, improve, and administer our Services, communicate with you, for security and fraud prevention, and to comply with law. We may also process your information for other purposes with your consent. We process your information only when we have a valid legal reason to do so.

In what situations and with which parties do we share personal information? We may share information in specific situations and with specific third parties.

What are your rights? Depending on where you are located geographically, the applicable privacy law may mean you have certain rights regarding your personal information.

How do you exercise your rights? The easiest way to exercise your rights is by submitting a data subject access request, or by contacting us. We will consider and act upon any request in accordance with applicable data protection laws.

Want to learn more about what http://www.drummergallop.com does with any information we collect? You can review the full privacy notice below.

TABLE OF CONTENTS

1. WHAT INFORMATION DO WE COLLECT?

2. HOW DO WE PROCESS YOUR INFORMATION?

3. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?   

4. DO WE USE COOKIES AND OTHER TRACKING TECHNOLOGIES?

5. HOW DO WE HANDLE YOUR SOCIAL LOGINS?

6. IS YOUR INFORMATION TRANSFERRED INTERNATIONALLY?

7. HOW LONG DO WE KEEP YOUR INFORMATION?

8. DO WE COLLECT INFORMATION FROM MINORS?

9. WHAT ARE YOUR PRIVACY RIGHTS?

10. CONTROLS FOR DO-NOT-TRACK FEATURES

11. DO CALIFORNIA RESIDENTS HAVE SPECIFIC PRIVACY RIGHTS?

12. DO WE MAKE UPDATES TO THIS NOTICE?

13. HOW CAN YOU CONTACT US ABOUT THIS NOTICE?

14. HOW CAN YOU REVIEW, UPDATE, OR DELETE THE DATA WE COLLECT FROM YOU?

1. WHAT INFORMATION DO WE COLLECT?

Personal information you disclose to us

In Short: We collect personal information that you provide to us.

We collect personal information that you voluntarily provide to us when you register on the Services, express an interest in obtaining information about us or our products and Services, when you participate in activities on the Services, or otherwise when you contact us.

Sensitive Information. We do not process sensitive information.

All personal information that you provide to us must be true, complete, and accurate, and you must notify us of any changes to such personal information.

Information automatically collected

In Short: Some information — such as your Internet Protocol (IP) address and/or browser and device characteristics — is collected automatically when you visit our Services.

We automatically collect certain information when you visit, use, or navigate the Services. This information does not reveal your specific identity (like your name or contact information) but may include device and usage information, such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country, location, information about how and when you use our Services, and other technical information. This information is primarily needed to maintain the security and operation of our Services, and for our internal analytics and reporting purposes.

Like many businesses, we also collect information through cookies and similar technologies.

2. HOW DO WE PROCESS YOUR INFORMATION?

In Short: We process your information to provide, improve, and administer our Services, communicate with you, for security and fraud prevention, and to comply with law. We may also process your information for other purposes with your consent.

We process your personal information for a variety of reasons, depending on how you interact with our Services, including:

3. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?

In Short: We may share information in specific situations described in this section and/or with the following third parties.

We may need to share your personal information in the following situations:

  • Business Transfers. We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.
  • Affiliates. We may share your information with our affiliates, in which case we will require those affiliates to honour this privacy notice. Affiliates include our parent company and any subsidiaries, joint venture partners, or other companies that we control or that are under common control with us.
  • Business Partners. We may share your information with our business partners to offer you certain products, services, or promotions.

4. DO WE USE COOKIES AND OTHER TRACKING TECHNOLOGIES?

In Short: We may use cookies and other tracking technologies to collect and store your information.

We may use cookies and similar tracking technologies (like web beacons and pixels) to access or store information. Specific information about how we use such technologies and how you can refuse certain cookies is set out in our Cookie Notice.

5. HOW DO WE HANDLE YOUR SOCIAL LOGINS?

In Short: If you choose to register or log in to our Services using a social media account, we may have access to certain information about you.

Our Services offer you the ability to register and log in using your third-party social media account details (like your Facebook or Twitter logins). Where you choose to do this, we will receive certain profile information about you from your social media provider. The profile information we receive may vary depending on the social media provider concerned, but will often include your name, email address, friends list, and profile picture, as well as other information you choose to make public on such a social media platform.

We will use the information we receive only for the purposes that are described in this privacy notice or that are otherwise made clear to you on the relevant Services. Please note that we do not control, and are not responsible for, other uses of your personal information by your third-party social media provider. We recommend that you review their privacy notice to understand how they collect, use, and share your personal information, and how you can set your privacy preferences on their sites and apps.

6. IS YOUR INFORMATION TRANSFERRED INTERNATIONALLY?

In Short: We may transfer, store, and process your information in countries other than your own.

Our servers are located in. If you are accessing our Services from outside, please be aware that your information may be transferred to, stored, and processed by us in our facilities and by those third parties with whom we may share your personal information (see “WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?” above), in and other countries.

If you are a resident in the European Economic Area (EEA) or United Kingdom (UK), then these countries may not necessarily have data protection laws or other similar laws as comprehensive as those in your country. However, we will take all necessary measures to protect your personal information in accordance with this privacy notice and applicable law.

7. HOW LONG DO WE KEEP YOUR INFORMATION?

In Short: We keep your information for as long as necessary to fulfil the purposes outlined in this privacy notice unless otherwise required by law.

We will only keep your personal information for as long as it is necessary for the purposes set out in this privacy notice, unless a longer retention period is required or permitted by law (such as tax, accounting, or other legal requirements).

When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymise such information, or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.

8. DO WE COLLECT INFORMATION FROM MINORS?

In Short: We do not knowingly collect data from or market to children under 18 years of age.

We do not knowingly solicit data from or market to children under 18 years of age. By using the Services, you represent that you are at least 18 or that you are the parent or guardian of such a minor and consent to such minor dependent’s use of the Services. If we learn that personal information from users less than 18 years of age has been collected, we will deactivate the account and take reasonable measures to promptly delete such data from our records. If you become aware of any data we may have collected from children under age 18, please contact us at __________.

9. WHAT ARE YOUR PRIVACY RIGHTS?

In Short:  You may review, change, or terminate your account at any time.

If you are located in the EEA or UK and you believe we are unlawfully processing your personal information, you also have the right to complain to your Member State data protection authority or UK data protection authority.

If you are located in Switzerland, you may contact the Federal Data Protection and Information Commissioner.

Withdrawing your consent: If we are relying on your consent to process your personal information, which may be express and/or implied consent depending on the applicable law, you have the right to withdraw your consent at any time. You can withdraw your consent at any time by contacting us by using the contact details provided in the section “HOW CAN YOU CONTACT US ABOUT THIS NOTICE?” below.

However, please note that this will not affect the lawfulness of the processing before its withdrawal nor, when applicable law allows, will it affect the processing of your personal information conducted in reliance on lawful processing grounds other than consent.

Account Information

If you would at any time like to review or change the information in your account or terminate your account, you can:

Upon your request to terminate your account, we will deactivate or delete your account and information from our active databases. However, we may retain some information in our files to prevent fraud, troubleshoot problems, assist with any investigations, enforce our legal terms and/or comply with applicable legal requirements.

10. CONTROLS FOR DO-NOT-TRACK FEATURES

Most web browsers and some mobile operating systems and mobile applications include a Do-Not-Track (“DNT”) feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected. At this stage no uniform technology standard for recognising and implementing DNT signals has been finalised. As such, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online. If a standard for online tracking is adopted that we must follow in the future, we will inform you about that practice in a revised version of this privacy notice.

11. DO CALIFORNIA RESIDENTS HAVE SPECIFIC PRIVACY RIGHTS?

In Short: Yes, if you are a resident of California, you are granted specific rights regarding access to your personal information.

California Civil Code Section 1798.83, also known as the “Shine The Light” law, permits our users who are California residents to request and obtain from us, once a year and free of charge, information about categories of personal information (if any) we disclosed to third parties for direct marketing purposes and the names and addresses of all third parties with which we shared personal information in the immediately preceding calendar year. If you are a California resident and would like to make such a request, please submit your request in writing to us using the contact information provided below.

If you are under 18 years of age, reside in California, and have a registered account with Services, you have the right to request removal of unwanted data that you publicly post on the Services. To request removal of such data, please contact us using the contact information provided below and include the email address associated with your account and a statement that you reside in California. We will make sure the data is not publicly displayed on the Services, but please be aware that the data may not be completely or comprehensively removed from all our systems (e.g., backups, etc.).

12. DO WE MAKE UPDATES TO THIS NOTICE?

In Short: Yes, we will update this notice as necessary to stay compliant with relevant laws.

We may update this privacy notice from time to time. The updated version will be indicated by an updated “Revised” date and the updated version will be effective as soon as it is accessible. If we make material changes to this privacy notice, we may notify you either by prominently posting a notice of such changes or by directly sending you a notification. We encourage you to review this privacy notice frequently to be informed of how we are protecting your information.

13. HOW CAN YOU CONTACT US ABOUT THIS NOTICE?

If you have questions or comments about this notice, you may email us at andrew@drummergallop.com or contact us by post at:

DrummerGallop.com

24 Cotleigh Road,

Ground Floor Flat,

Camden,

London, 

England,

United Kingdom 

NW6 2NP

14. HOW CAN YOU REVIEW, UPDATE, OR DELETE THE DATA WE COLLECT FROM YOU?

Based on the applicable laws of your country, you may have the right to request access to the personal information we collect from you, change that information, or delete it. To request to review, update, or delete your personal information, please fill out and submit our contact form. 

2. WHAT THIS POLICY COVERS

The data controller is DrummerGallop.com (referred to in this privacy policy as ”we” or “us).

We’ve written this privacy policy because we care about doing the right thing when we collect, use and look after your personal data. This policy:

  • Sets out the type of personal data that we collect;
  • Explains how and why we collect and use your personal data;
  • Explains how we share personal data with our service providers;
  • Explains the rights and choices you have when it comes to personal data we hold.

We want to be very clear about what this policy covers. If you shop with us over the phone or online or otherwise using our website where this policy is posted, this policy applies. It also applies if you contact us or we contact you about our services.

Our website may contain links to other websites operated by other organisations that have their own privacy policies. Please make sure you read their terms and conditions and privacy policy carefully before providing any personal data on the website as we do not accept any responsibility or liability for other organisations’ websites.

3. DATA WE COLLECT

This section tells you what personal data we may collect from you when you buy something from us or contact us.

WHEN YOU REGISTER AS A USER ON OUR WEBSITE, YOU MAY PROVIDE US WITH:
  • Your personal details, including your postal and billing addresses, email addresses and phone numbers;
  • Your account login details, including your username and password.
WHEN YOU SHOP WITH US ONLINE OR BROWSE OUR WEBSITE WE MAY COLLECT:
  • Information about your online purchases (for example, what you bought and how you paid for it)
  • Information about your online browsing behaviour on our website
  • Information about any devices you have used to access our websites such as the make, model, operating system, IP address, browser type and mobile device identifiers.
DATA STORAGE LOCATION

We are a United Kingdom-based company and operate web servers hosted in the United States of America in Ashburn, Virginia and Hillsboro, Oregon. Our hosting provider DreamHost adheres to the EU/US “Privacy Shield”, ensuring that your data is securely stored and GDPR compliant. For more information on DreamHost’s privacy policy, please visit their website here: Dream Host’s Privacy Policy.

PERSONAL DATA WE COLLECT

This section tells you what personal data we may collect from you when you buy something from us or contact us.

REGISTRATION DATA 

When you register as a user on our website, you may provide us with:

  • Your personal details, including your postal and billing addresses, email addresses and phone numbers;
  • Your account login details, including your username and password.
PURCHASE DATA

When you shop with us online or browse our website we may collect:

  • Information about your online purchases (for example, what you bought and how you paid for it)
  • Information about your online browsing behaviour on our website
  • Information about any devices you have used to access our websites such as the make, model, operating system, IP address, browser type and mobile device identifiers.
SUPPORT DATA

When you contact us and we contact you or you give a review about our website or our lessons, we may collect:

  • Personal data you provide about yourself any time you contact us about our website, goods, recording, lessons, vouchers, Bootcamps and giveaways, online packages, courses and lessons (in-person and online). For example, this may include; your name, username and contact details, including by telephone, email or post all when you speak to us on social media.
  • Details of the emails and other digital communications that we send to you and that you open, including any links in them that you click.

If you register on our website, we store your chosen username and your email address and any additional personal information added to your user profile. You can see, edit, or delete your personal information at any time (except by changing your username). Website administrators can also see and edit this information.

COMMENTS

When you leave comments on the website we collect the data shown in the comments form, and also the IP address and browser user agent string to help spam detection.

CONTACT FORM

Information submitted through the contact form on our site is sent to our company email. We adhere to the EU/US “Privacy Shield” policy and you can find more information about this by clicking here: Privacy Shield.

These submissions are only kept for customer service purposes they are never used for marketing purposes or shared with third parties.

GOOGLE ANALYTICS

We use Google Analytics on our site for anonymous reporting of site usage. So, no personalised data is stored. If you would like to opt-out of Google Analytics monitoring your behaviour on our website please use this link: Google Analytics Opt-out.

META CONVERSION TRACKING PIXEL

With your permission, our website utilises the Conversion Tracking Pixel service of META Inc. This tool allows us to follow the actions of users after they are redirected to a provider’s website by clicking on a META advertisement. We are thus able to record the efficacy of META’s advertisements for statistical and market research purposes. The collected data remain anonymous. This means that we cannot see the personal data of any individual user. However, the collected data are saved and processed by META. We are informing you of this matter according to our information at this time. META is able to connect the data with your META account and use the data for their own advertising purposes, in accordance with META’s Data Use Policy found under: https://www.facebook.com/about/privacy/. META conversion tracking also allows META and its partners to show you advertisements on and outside META in addition, a cookie will be saved onto your computer for these purposes.

Only users over 13 years of age may give permission. If you are younger than this age, please consult your legal guardians.

Please click here if you would like to revoke your permission: https://www.facebook.com/adpreferences

HOW AND WHY WE USE YOUR PERSONAL DATA

This section explains how and why we use your personal data.  We use personal data to:

  • Make the ability to buy recordings, lessons, vouchers, Bootcamps and giveaways, online packages, courses and lessons (in-person and online) available to you;
  • Manage your account on our website;
  • Process your orders and refunds.

Why do we process your personal data in this way?

We need to process your personal data so we can provide you with recordings, lessons, vouchers, Bootcamps and giveaways, online packages, courses and lessons (in-person and online) that you want to buy and help you with any orders and refunds.

  • Manage and improve our website

 Why do we process your personal data in this way?

We use cookies and similar technologies on our website to improve the website. Some cookies are necessary so you shouldn’t disable these if you want to be able to use all the features on our website.  You can still disable cookies, but this might affect your experience using the website. For more information about cookies please read the cookie policy posted on our website.

  • Detect and prevent fraud or other crime

Why do we process your personal data in this way?

It is important for us to monitor how our website is used so that we can detect and prevent fraud, other crimes and misuse of the website.  This helps us to make sure that you can safely use our website and place orders with us.

  • Contact and interact with you (to contact you about orders by phone, email or post or by responding when you contact us through social media)

Why do we process your personal data in this way?

We want to make your experience of buying products or lessons as smooth as possible. We use personal data to help us give the most appropriate response and clarification when we reply to your queries.

  • Invite you to take part in and manage surveys, reviews and other market research activities.

 Why do we process your personal data in this way?

We carry out some market research to improve the way we operate our website and deliver lessons. If you tell us you don’t want us to contact you for market research, we won’t contact you for market research.

  • Claims – in order to resolve legal claims or disputes involving you or us.

 Why do we process your personal data in this way?

For example, if there is any incident or accident on our premises or during lessons. This can include medical reports.

3. EMBEDDED CONTENT

Pages on this site may include embedded content, like YouTube videos, for example. Embedded content from other websites behaves in the exact same way as if you visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website. Below you can find a list of the services we use:

FACEBOOK

The Facebook page plugin is used to display our Facebook timeline on our site. Facebook has its own cookie and privacy policies over which we have no control. There is no installation of cookies from Facebook and your IP is not sent to a Facebook server until you consent to it. See their privacy policy here: Facebook Privacy Policy.

TWITTER

We use the Twitter API to display our tweets timeline on our site. Twitter has its own cookie and privacy policies over which we have no control. Your IP is not sent to a Twitter server until you consent to it. See their privacy policy here: Twitter Privacy Policy.

YOUTUBE

We use YouTube videos embedded on our site. YouTube has its own cookie and privacy policies over which we have no control. There is no installation of cookies from YouTube and your IP is not sent to a YouTube server until you consent to it. See their privacy policy here: YouTube Privacy Policy.

4. COOKIES

This site uses cookies – small text files that are placed on your machine to help the site provide a better user experience. In general, cookies are used to retain user preferences, store information for things like shopping carts, and provide anonymised tracking data to third party applications like Google Analytics. Cookies generally exist to make your browsing experience better. However, you may prefer to disable cookies on this site and on others. The most effective way to do this is to disable cookies in your browser. We suggest consulting the Help section of your browser.

NECESSARY COOKIES (ALL SITE VISITORS)

We use the following types of cookies:

  • PHPSESSID: To identify your unique session on the website.
  • PERSISTENT COOKIES: We use persistent Cookies to improve your experience of using the site. This includes recording your “Accept Cookies” consent which first appears when you use the site.
  • SESSION COOKIES: Session Cookies are temporary and deleted from your machine when your web browser closes. We use session cookies to help us track internet usage as described above.
  • THIRD-PARTY COOKIES: Third-party cookies from YouTube, Google, and other similar services may be in use on the site, depending on whether videos are currently embedded in content, etc.
NECESSARY COOKIES (ADDITIONAL FOR LOGGED IN CUSTOMERS)
  • wp-auth: Used by WordPress to authenticate logged-in visitors, password authentication and user verification.
  • wordpress_logged_in_{hash}: Used by WordPress to authenticate logged-in visitors, password authentication and user verification.
  • wordpress_test_cookie Used by WordPress to ensure cookies are working correctly.
  • wp-settings-[UID]: WordPress sets a few wp-settings-[UID] cookies. The number on the end is your individual user ID from the users’ database table. This is used to customize your view of the admin interface, and possibly also the main site interface.
  • wp-settings-[UID]:WordPress also sets a few wp-settings-{time}-[UID] cookies. The number on the end is your individual user ID from the users’ database table. This is used to customize your view of the admin interface, and possibly also the main site interface.
5. WHO HAS ACCESS TO YOUR DATA

If you are not a registered client for our site, there is no personal information we can retain or view regarding you.

If you are a client with a registered account, your personal information can be accessed by:

  • Our system administrators.
  • Our supporters when they (in order to provide support) need to get the information about the client accounts and access.
CASES FOR USING THE PERSONAL DATA

Where we have mentioned above our use of your personal data is based on our legitimate interests, these are to:

  • Verification/identification of the user during website usage;
  • Providing Technical Assistance;
  • Sending updates to our users with important information to inform them about news/changes;
  • Checking the accounts’ activity in order to prevent fraudulent transactions and ensure the security
  • Over our customers’ personal information;
  • Customise the website to make your experience more personal and engaging;
  • Guarantee overall performance and administrative functions run smoothly.
  • Service customer needs, for example, delivery of goods or arranging appointments for lessons;
  • Promote and market our recordings, lessons, vouchers, Bootcamps and giveaways, online packages, courses and lessons (in-person and online);
  • Manage complaints and resolve any disputes;
  • Understand our customers including their patterns of behaviour as well as their likes and dislikes;
  • Prevent and detect antisocial behaviour, fraud and other crime;
  • Protect and support our tutors and teachers, other customers and you;
  • Test and develop new parts of our website, new products or to improve and develop our existing offering.
SHARING PERSONAL DATA WITH SERVICE PROVIDERS

This section explains how and why we share personal data with service providers.

When we share personal data with these companies we require them to keep it safe, and they must not use your personal data for their own promotional and marketing purposes.

Our service providers do things for us that we can not do ourselves. For example, we work with companies that help us to process payments, give us legal or other professional services and deliver orders.  We only share personal data that enables that service provider to provide the services.

Examples of our service providers include Facebook, PayPal, SquareUp and Royal Mail.

SHARING PERSONAL DATA WITH OTHER ORGANISATIONS

This section explains how and why we share personal data with other organisations.

We may share personal data with other organisations in the following circumstances:

  • if the law or a public authority says we must share that personal data;
  • if it is necessary for the administration of justice;
  • if we need to share personal data so that we can establish, exercise or defend our legal rights.

This could include, for example, providing personal data to others to help us prevent fraud.

6. THIRD-PARTY ACCESS TO YOUR DATA
SHARING PERSONAL DATA WITH SERVICE PROVIDERS

This section explains how and why we share personal data with service providers.

When we share personal data with these companies we require them to keep it safe, and they must not use your personal data for their own promotional and marketing purposes.

Our service providers do things for us that we can not do ourselves.  For example, we work with companies that help us to process payments, give us legal or other professional services and deliver orders.  We only share personal data that enables that service provider to provide the services.

Examples of our service providers include Facebook, PayPal, SquareUp and Royal Mail.

7. HOW LONG DO WE RETAIN YOUR DATA

When you submit a support ticket or a comment, its metadata is retained until (if) you tell us to remove it. We use this data so that we can recognize you and approve your comments automatically instead of holding them for moderation.

If you register on our website, we also store the personal information you provide in your user profile. You can see, edit, or delete your personal information at any time (except by changing your username). Website administrators can also see and edit that information.

HOW LONG DO WE USE PERSONAL DATA FOR

We will keep your personal data no longer than we need to.  The length of time depends on several different factors, such as:

  • Why do we collect it in the first place?
  • How old it is.
  • If there is a legal or regulatory reason for us to keep it.
  • If we need it to protect us or to protect you.
SUBJECT ACCESS RIGHTS

You have a right to see your personal data held by us. This is called a “Subject Access Request”.

If you would like a copy of the personal data we hold about you, please write to us at the contact address on our contact page. Please mark the letter “Subject Access Request: Data Protection”.

You can also email us at the email address set out on our contact page.  If you email us for a Subject Access Request please use “Subject Access Request: Data Protection” as the subject of your email.

8. SECURITY MEASURES

We use the SSL/HTTPS protocol throughout our site. This encrypts our user communications with the servers so that personal identifiable information is not captured/hijacked by third parties without authorization.

In case of a data breach, system administrators will immediately take all needed steps to ensure system integrity, will contact affected users and will attempt to reset passwords if needed.

HOW WE PROTECT PERSONAL DATA

We place a great deal of importance on protecting your personal data. This section sets out some of the things we do to achieve that.

  • We apply physical, electronic and procedural safeguards when we collect, store or disclose personal data.
  • We protect the security of your information when it is being transmitted electronically by using encryption.
  • We use firewalls to keep your data safe
  • We only authorise access to partners and contractors who need it to carry out their responsibilities or deliver our services to you.
  • Our hosting provider, DreamHost, monitors its servers and systems for possible vulnerabilities and attacks.
  • If we need to confirm an order by using your payment card number we will only ask you about the last four digits of your card number.

We ask you to help us look after your personal data by keeping your login details confidential and keeping your devices protected so that people can’t use them without your authorisation.

The personal data that we collect from you may be transferred to and stored at a destination outside the European Economic Area (EEA). It may also be processed by companies operating outside the EEA who work for us or for one of our service providers. If we do this we ensure that your privacy rights are respected in line with this policy. This would mean we put in place a contract like the international transfers contract (HTTP://ec.europa.eu/justice/data-protection/international-transfers/transfer/index_en.htm) or use privacy shield (https://www.privacyshield.gov/welcome).

9. YOUR DATA RIGHTS
GENERAL RIGHTS

If you have a registered account on this website or have left comments, you can request an exported file of the personal data we retain, including any additional data you have provided to us.

You can also request that we erase any of the personal data we have stored. This does not include any data we are obliged to keep for administrative, legal, or security purposes. In short, we cannot erase data that is vital to you being an active customer (i.e. basic account information like an email address).

If you wish that all of your data be erased, we will no longer be able to offer any support or other product-related services to you.

GDPR RIGHTS

Your privacy is critically important to us. Going forward with the GDPR we aim to support the GDPR standard. ThemeREX permits residents of the European Union to use its Service. Therefore, it is the intent of ThemeREX to comply with the European General Data Protection Regulation. For more details please see here: EU GDPR Information Portal.

OTHER DATA PROTECTION RIGHTS

In relation to your personal data, you also have the right to:

  • Have inaccurate information corrected.

If you believe we hold inaccurate or incomplete information, please let us know and we will correct it.

  • Object to our use of it.

You have the right to make a general objection or an objection in relation to direct marketing. If you make a general objection we will consider your objection to our use of your personal data. If on balance, your rights outweigh our interest in using your personal data, then we will at your request either restrict the use of it as below or delete it also, as below.

  • Restrict its use.

There are situations when you can restrict the use of your personal data, including where you have made a successful general objection, where you are challenging the accuracy of the personal data we hold, or where we have used your personal data unlawfully, but you don’t want us to delete it.

  • Have us delete it.

There are situations when you can require us to delete your personal data, such as where we no longer need to keep your personal data, where you have successfully made a general objection, you’ve withdrawn your consent to us using your personal data (and we don’t have any other grounds to use it), or where we’ve unlawfully processed your personal data.

  • Have us transfer or “port” a copy of it.

You have a right to data portability and we will work with you to find the best way to do this if it is applicable.

  • Complain to the data protection regulator.

Whether you try to resolve any complaints you have with us first or not – and we would like you to try to resolve complaints with us first –you do also have the right to complain to the UK data protection regulator (the ICO) about how we used your personal data. Their website is ico.org.uk and you can make a complaint by following the links to “your data matters” and then “raising concerns”. The ICO website contains lots of useful information about your privacy rights in the “resources and support” section, under “your data matters”.

MORE INFORMATION ON YOUR DATA PROTECTION RIGHTS

The ICO website also contains more detail on the data protection rights mentioned above.   If you would like to speak to us about your data protection rights and how they affect the goods, vouchers, Bootcamp and getaway packages, courses and lessons we offer, contact us using any of the methods listed on our contact page.

OUR DATA PROTECTION OFFICER

Our Data Protection Officer can be contacted by email or via the Contact Form on our website. Please mark the email “For the attention of the Data Protection Officer” in the subject field.

10. THIRD PARTY WEBSITES

DrummerGallop.com may post links to third-party websites on this website. These third-party websites are not screened for privacy or security compliance by DrummerGallop.com, and you release us from any liability for the conduct of these third-party websites.

All social media sharing links, either displayed as text links or social media icons do not connect you to any of the associated third parties unless you explicitly click on them.

Please be aware that this Privacy Policy, and any other policies in place, in addition to any amendments, do not create rights enforceable by third parties or require disclosure of any personal information relating to members of the Service or Site. DrummerGallop.com bears no responsibility for the information collected or used by any advertiser or third party website. Please review the privacy policy and terms of service for each site you visit through third party links.

11. RELEASE OF YOUR DATA FOR LEGAL PURPOSES

At times it may become necessary or desirable to DummerGallop.com, for legal purposes, to release your information in response to a request from a government agency or a private litigant.

You agree that we may disclose your information to a third party where we believe, in good faith, that it is desirable to do so for the purposes of a civil action, criminal investigation, or other legal matter.

In the event that we receive a subpoena or other court order affecting your privacy, we may elect to notify you to give you an opportunity to file a motion to quash the subpoena, or we may attempt to quash it ourselves, but we are not obligated to do either.

We may also proactively report you, and release your information to, third parties where we believe that it is prudent to do so for legal reasons, such as our belief that you have engaged in fraudulent activities. You release us from any damages that may arise from or relate to the release of your information to a request from law enforcement agencies or private litigants.

Any passing on of personal data for legal purposes will only be done in compliance with the laws of the country you reside in.

12. AMENDMENTS

We may amend this Privacy Policy from time to time. When we amend this Privacy Policy, we will update this page accordingly and require you to accept the amendments in order to be permitted to continue using our services.