Privacy Policy
Head of Light Entertainment (“we,” “us,” or “our”) is committed to protecting your privacy and maintaining the highest level of transparency regarding the collection, use, and protection of your personal data. This Privacy Policy outlines how we process personal information through our website, headoflightentertainment.com, in accordance with applicable data protection laws, including the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”).
1. Introduction
We recognize the fundamental importance of securing your personal data and respecting your privacy. All personal information we collect and use is handled with integrity, discretion, and in compliance with the laws governing privacy and data protection. We are dedicated to creating a safe and secure digital environment for all users who access headoflightentertainment.com or communicate with us via our services.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and customers who access or interact with headoflightentertainment.com. For the purposes of applicable data protection legislation, Head of Light Entertainment is the data controller responsible for determining the purposes and means by which your personal data is processed. We can be contacted at [email protected].
3. Categories of Data We Process
We may collect, store, and process the following categories of personal data:
a. Usage Data
Includes information about how you use our website, such as your IP address, browser type and version, referral source, length of visit, pages viewed, time stamps, and similar analytical data.
b. Account Data
Includes data you provide when registering for services or making purchases, such as your name, email address, telephone number, billing address, and shipping details.
c. Profile Data
Includes preferences, activities, feedback, interests, or historical purchases tracked through your account or usage.
d. Communication Data
Includes records of your interactions with us via forms, emails, customer support, and other communication channels.
e. Technical Data
Includes device information, operating system details, network type, language settings, browser plug-ins, and diagnostic information.
f. Transaction Data
Includes payment details, delivery data, order histories, and associated financial records, managed securely through third-party payment processors.
g. Preference Data
Includes marketing and communication preferences, including your consents for newsletters and promotional content, and expressed interests in certain content or services.
4. Legal Bases for Processing Personal Data
We rely on a range of lawful bases under GDPR and CCPA to process your personal data, ensuring that it is done transparently and appropriately:
– Consent: Where you have explicitly agreed to our use of your information for a specific purpose (e.g., marketing).
– Performance of a Contract: When personal data is necessary to fulfill our contractual obligations to you (e.g., order fulfillment).
– Legal Obligation: When processing is necessary for compliance with our legal duties.
– Legitimate Interests: Where processing supports our business operations in a way that does not unduly impact your rights (e.g., analytics, fraud prevention, service improvement).
5. Your Data Protection Rights
You have the following rights with respect to your personal data:
– Right of Access: You may request a copy of the personal data we hold about you.
– Right to Rectification: You may correct incomplete, inaccurate, or outdated data.
– Right to Erasure: Under certain circumstances, you may request the deletion of your personal data.
– Right to Restrict Processing: You may request temporary restriction of processing where certain conditions are met.
– Right to Data Portability: You may request your personal data in a structured, commonly used, machine-readable format.
– Right to Object: You may object to the processing of your personal data for marketing or other grounds based on legitimate interest.
– Right to Withdraw Consent: Where processing is based on consent, you can withdraw it at any time.
To exercise any of your rights, please contact us at [email protected].
6. Security Measures
We implement a variety of technical and organizational security measures to protect your data, including but not limited to:
– Encryption of data both in transit and at rest
– Secure server environments
– Role-based access controls and authentication mechanisms
– Firewalls and malware scanning
– Employee confidentiality agreements and privacy training
– Regular system audits, back-ups, and failovers
7. International Data Transfers
Wherever we transfer personal data outside of the European Economic Area (EEA), we ensure appropriate safeguards are in place through:
– Approved Standard Contractual Clauses
– Binding Corporate Rules from our service providers
– Recognized adequacy decisions by regulatory authorities
These measures ensure that international transfers of personal data remain lawful, secure, and enforceable.
8. Data Retention
We retain your personal data only as long as necessary to fulfill the purposes outlined in this Policy, and in accordance with applicable laws. Retention periods vary depending on the data type and processing purpose. For example:
– Contact forms and communication history: Up to 3 years
– Account and profile data: Retained until account deletion or inactivity exceeding 36 months
– Transaction data: Retained for 7 years for regulatory compliance
– Analytics data: Deleted or anonymized after 26 months
9. Cookie Policy
We utilize cookies and similar tracking technologies for the following purposes:
– Essential Cookies: Required for technical functionality and access to secure areas.
– Functional Cookies: Enable personalization, such as saved preferences.
– Analytics Cookies: Help us understand user behavior to improve our website.
– Performance Cookies: Collect data on page load times, responsiveness, and performance diagnostics.
Cookies may be placed by us or by third-party service providers acting on our behalf.
10. Cookie Management & Legal Compliance
Upon your first visit to headoflightentertainment.com, you are presented with a cookie consent banner. You may choose to accept or reject non-essential cookies. You may also adjust your cookie preferences at any time through your browser settings or our Cookie Preference Center.
We comply with GDPR by obtaining clear, affirmative consent for non-essential cookies, and with CCPA by informing California residents of their right to opt-out of certain data practices. Do Not Track (DNT) signals are honored where technically feasible.
11. Children’s Privacy
We do not knowingly collect, process, or solicit personal data from children under the age of 13. If we become aware that personal data of a minor has been collected without verified parental consent, we will take immediate steps to delete such data. If you believe a child under 13 has submitted information to us, please contact us at [email protected].
12. Policy Updates and Notifications
We reserve the right to update this Privacy Policy to reflect changes in legal requirements, operational practices, or our service offerings. We will notify users of any material changes by reasonably appropriate means, which may include a prominent notice on headoflightentertainment.com or an email communication.
13. Contact and Enquiries
For any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us at:
Head of Light Entertainment
Email: [email protected]
Website: https://headoflightentertainment.com
We are committed to upholding your privacy rights and complying with applicable data protection legislation. Please do not hesitate to reach out with any privacy-related inquiries or complaints.
