Privacy Policy for Head of Light Entertainment
1. Introduction
At Head of Light Entertainment, accessible at headoflightentertainment.com, we prioritize and respect your privacy and are committed to protecting your personal data. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information when you interact with our website and services. Our commitment is grounded in best practices in data protection, including compliance with the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We aim to ensure transparency, accountability, and control for all users over their personal information.
2. Scope of This Policy and Role as Data Controller
This Privacy Policy applies to all users who access or use our website, services, and offerings available via headoflightentertainment.com. Head of Light Entertainment acts as the data controller for purposes of applicable data protection law regarding the personal data we collect and process through our digital platforms and communication channels. As the data controller, Head of Light Entertainment determines the purposes and means of processing your personal data.
3. Categories of Data We Process
We process several categories of personal information to operate effectively and provide you with the best user experience. These include:
a) Usage Data: This includes information about how you use our website, such as your IP address, browser type and version, time zone setting, pages visited, date/time of visit, session duration, referring/exit pages, and other diagnostic data.
b) Account Data: If you create an account or sign up using any form, we collect your full name, billing/shipping address, email address, phone number, and any credentials necessary to log in.
c) Profile Data: Includes your preferences, product interests, feedback, survey responses, purchase history, and behavioral data collected during your interactions on headoflightentertainment.com.
d) Communication Data: We retain information shared when you contact us for support, feedback, or other inquiries, including your correspondence history and communication preferences.
e) Technical Data: Information such as device type, operating system, system configuration, mobile network information, and unique device identifiers.
f) Transaction Data: Includes details of your purchases, orders placed, payment processing data (excluding full payment card information, which is handled securely by our third-party vendors), and delivery/logistics data.
g) Preference Data: This involves your preferences in receiving marketing communications from us and your communication preferences, together with data you voluntarily provide regarding your product interests or areas of engagement.
4. Legal Bases for Processing
We process your personal data only where it is lawful to do so. The legal bases for data processing under GDPR include:
– Consent: Where explicit consent has been provided for specific processing purposes, such as subscribing to newsletters.
– Contractual Necessity: To fulfill contractual obligations or take steps at your request prior to entering into a contract with you.
– Legal Obligation: Where processing is required to comply with a legal obligation.
– Legitimate Interests: Where it is necessary for our legitimate business interests, provided that such interests are not overridden by your fundamental rights and freedoms.
As required by CCPA, we disclose categories of personal information collected, the sources, uses, and whether data may be “sold” or “shared” (as defined under CCPA), and provide rights accordingly.
5. Your Rights
Under GDPR (for EU/EEA users) and CCPA (for California residents), you are afforded specific rights regarding your personal data. These include the right to:
– Access: You may request confirmation of whether we are processing your personal data and obtain a copy of such data.
– Rectification: You have the right to request corrections to inaccuracies in your personal data.
– Erasure (“Right to Be Forgotten”): You may request that we delete your personal data, subject to legal and contractual obligations.
– Restriction: You have the right to request a suspension of processing in certain circumstances.
– Portability: You may request a copy of your personal data in structured, commonly used, and machine-readable format.
– Objection: You may object to data processing based on legitimate interests or direct marketing.
– Opt-out of “Sale of Information” (for CCPA): You have the right to instruct us not to sell or share your personal data.
To exercise your rights, please contact us at [email protected]. We will honor all rights in accordance with applicable data protection laws.
6. Security Measures
We use robust technical and organizational measures to ensure the integrity, confidentiality, and availability of your personal data. These include:
– Data encryption (in transit and at rest)
– Multi-layered access controls and role-based permissions
– Secure server infrastructure and firewalls
– Routine backups and data redundancy procedures
– Employee training and strict internal policies governing access to data
While no security system is entirely foolproof, we continuously review and update our security practices to mitigate risk and protect against unauthorized access, disclosure, alteration, or destruction.
7. International Transfers
If you are located outside the jurisdiction in which our hosting and processing operations are conducted, please note that your data may be transferred to, stored, and processed in jurisdictions outside of your home country. Where data is transferred internationally, we ensure appropriate safeguards are in place, including:
– Standard Contractual Clauses approved by the European Commission
– Certifications and agreements ensuring adherence to privacy frameworks
– Regional compliance with UK GDPR, Swiss DPA, or any equivalent data protection requirements, where applicable
8. Data Retention
We retain personal information for only as long as necessary to fulfill the purposes for which it was collected or as required by law. Retention periods are defined as follows:
– Usage and Technical Data: Retained for up to 12 months for system improvements and analytics
– Account and Profile Data: Retained during the duration of your account and for a period of 6 years thereafter
– Transaction Data: Retained for up to 7 years for financial and tax audit compliance
– Communication and Support Data: Retained for 3 years post-resolution
– Preference and Marketing Data: Retained until you withdraw consent or unsubscribe
9. Cookie Policy
Our website uses cookies and similar technologies to enhance functionality, improve performance, and provide analytical insights. The types of cookies we use include:
– Essential Cookies: Required for core site functions (e.g., logging in, account management)
– Functional Cookies: Allow the site to remember your preferences and provide personalized experiences
– Performance Cookies: Collect anonymized data about how visitors use our website
– Analytics Cookies: Help monitor traffic patterns, engagement levels, and improve our services
10. Cookie Management and GDPR/CCPA Compliance
You have full control over your cookie preferences. Upon visiting our website, you will be presented with a cookie consent banner where you can accept, decline, or customize cookie settings. Functional and performance cookies are only activated after consent (as required by GDPR). Under CCPA, you may also opt-out of the “sale” of personal data through cookie-based advertising technologies. Cookie settings can be managed at any time by returning to the “Cookie Settings” link available on our site or modifying your browser preferences.
11. Special Protections for Children Under 13
Head of Light Entertainment does not knowingly collect personal data from individuals under the age of 13. If we discover that we have inadvertently collected data from a child under 13 without appropriate consent, we will take immediate steps to delete such information. If you suspect that a child has provided personal data to us, please contact us promptly at [email protected].
12. Policy Updates and Notifications
We reserve the right to modify or update this Privacy Policy at any time to align with legal requirements, industry standards, or operational changes. Where material changes are made, we will notify users through appropriate means, which may include a prominent notice on our website or direct communication, encouraging regular review of this policy to remain informed.
13. Contact Us
If you have questions, requests regarding your data, or privacy concerns related to your use of headoflightentertainment.com, please contact our Data Protection Officer by email at:
We are committed to continued compliance with all applicable data protection regulations and to ensuring the privacy and security of your personal data. Please feel free to reach out with any inquiries or to exercise your data rights.