PRIVACY POLICY

Data protection is a high priority for Peace Save. The use of our website is possible without sharing any personal data; however, if a data subject wants to use our services then processing of personal data is likely to become necessary. If the processing of personal data is necessary and there is no statutory basis for such processing, we assume implicit consent of data subject by nature of the enquiry made.

The processing of personal data, such as the name, address, e-mail address, or telephone number of a data subject shall always be in line with the General Data Protection Regulation (GDPR). By means of this privacy policy Peace Save would like to inform the general public of the nature, scope, and purpose of the personal data we collect, use and process. Data subjects are informed, by means of this data protection declaration, of the rights to which they are entitled.

As the data controller, Peace Save have implemented numerous technical and organisational measures to ensure the protection of your personal data. However, all Internet-based data transmissions may in principle have security gaps, so absolute protection may not always be guaranteed. For this reason, every data subject is free to transfer personal data to us via alternative means, e.g. by telephone or post.

What data do we collect?

Depending on what you do on our website, we may collect some or all of the following data:

Name, Email Address, Telephone Number, Company name, Company Information, Address, Credit / Debit card details (not held once processed), IP address, Web browser type and version, Operating System, A list of URLs starting with a referring site, your activity on our site, and the site you exit to.

What do we do with your data?

All of your personal data is stored securely in accordance with the EU General Data Protection Regulation (Regulation (EU) 2016/679) (GDPR)

  • We use your data to run and manage your interactions with Our Website. These include:

    • Protecting and managing your experience

    • Protecting and managing your access to our website

    • Making sure our website is tailored how you wish

    • Supplying you with our products and services

    • So we can keep in touch with you

    • So we can send you email updates and alerts. You may unsubscribe or opt-out at any time by contacting us at info@peavesave.co.uk

    • Analysing and researching how you use the site so we can improve your user experience

    • In some cases, the use of your data may be a statutory or contractual requirement and we may be unable to provide you with a product or a service unless we are able to use such data.

    • Once you have submitted your data to us, we will use your data for managing your experience, for marketing purposes which may include contacting you by email, telephone, text message with information, news and special offers.

    • We will never send you any unsolicited marketing or spam and take all reasonable steps to ensure that We fully protect your rights and comply with Our obligations under the GDPR and the Privacy and Electronic Communications (EC Directive) Regulations 2003, as amended in 2004, 2011 and 2015.

    • Under GDPR We will ensure that your personal data is processed lawfully, fairly, and transparently, without adversely affecting your rights. We will only process your personal data if at least one of the following basis applies:

      a) you have given consent to the processing of your personal data for one or more specific purposes

      b) processing is necessary for the performance of a contract to which you are a party or in order to take steps at the request of you prior to entering into a contract;
      c) processing is necessary for compliance with a legal obligation to which we are subject;
      d) processing is necessary to protect the vital interests of you or of another natural person;
      e) processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller; and/or
      f) processing is necessary for the purposes of the legitimate interests pursued by us or by a third party, except where such interests are overridden by the fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child

How and Where Do We Store Your Data?

We use the web hosting service Squarespace to design and manage Our Website. This is how Squarespace manages data on our behalf:

How does Squarespace transfer customer and visitor data outside the EU?

The GDPR requires certain safeguards when transferring personal data from outside the EEA, the UK and Switzerland to "third countries," which are all countries outside these protected areas, including the United States. We're committed to treating personal data received from the EEA, the UK and Switzerland (as well as personal data received from elsewhere around the world) in a secure and privacy-first way, and processing it in a way that meets the European Commission Standard Contractual Clauses.

European Commission Standard Contractual Clauses

We use Standard Contractual Clauses (also known as Model Contractual Clauses) as the legal basis for transferring personal data to third countries, including the United States. We protect your personal data and have put appropriate technical and organisational safeguards in place to meet these standards. To learn more, visit our Security Measures page.

Privacy Shield principles

On July 16, 2020, the Court of Justice of the European Union invalidated the EU-US Privacy Shield. We no longer use the Privacy Shield Frameworks as the legal basis for transferring personal data to the United States. However, we continue to apply these principles for additional protection.

Other transfer requirements

Articles 45 to 50 of the GDPR set the various requirements for the lawful transfers of personal data to third countries or international organisations that provide an adequate level of protection. These include:

Adequacy

Third countries, specified sectors within third countries, or international organisations have adequacy if the EU Commission determined they provide an adequate level of data protection.

In the absence of an adequacy decision, the GDPR allows a transfer if the controller or processor has provided “appropriate safeguards,” which may include:

  • Approved Codes of Conduct or Approved Certification Mechanisms

  • Binding Corporate Rules

  • Standard Contractual Clauses

Exceptions for specific situations

Exceptions allow transfers in specific situations, like if consent is obtained, or:

  • For the performance or conclusion of a contract

  • For the exercise of legal claims

  • To protect the vital interests of the data subject when they can't give consent or for reasons of public interest

For more information, visit this guidance document from the European Data Protection Board.

We may use other transfer mechanisms to ensure adequate data protection and we'll provide more information, as appropriate, if other transfer mechanisms are used for the lawful transfers of personal data to third countries.

We use Paypal to manage taking payments for our services. Please see the full Paypal policy here: https://www.paypal.com/uk/webapps/mpp/ua/privacy-full

We use Stripe to manage taking payments for our services. Please see the full Stripe policy here: https://stripe.com/gb/privacy

We only keep your data for as long as you have an active interaction with us. We need to in order to use it as described in this policy, and/or for as long as We have your permission to keep it. In any event, your data will be deleted if you notify us of your wish to do so by email

We shall ensure that the following measures are taken with respect to personal data:

  • All parties working on Our behalf shall be made aware of both their individual responsibilities and Our responsibilities under the GDPR Regulations and under this Policy, and shall be provided with a copy of this Policy.

  • All parties working on Our behalf handling personal data will be appropriately trained to do so.

  • The performance of any parties working on our behalf, handling personal data shall be regularly evaluated and reviewed.

  • All parties working on Our behalf, handling personal data will be bound to do so in accordance with the principles of the GDPR Regulations and this Policy

  • We remind you that is important to remember that the transmission of data may not be completely secure and that you are advised to take suitable precautions when transmitting to Us data via the internet.

Do we share your data?

We may contract with third parties to supply products and services to you on Our behalf. These may include payment processing, delivery of goods, search engine facilities, advertising and marketing. We currently contract with Paypal, Stripe and Squarespace.

We may compile statistics about the use of our website including data on traffic, usage patterns, user numbers, sales and other information. All such data will be anonymised and will not include any personally identifying information. We may from time to time share such anonymised data with third parties such as prospective investors, affiliates, partners. Data will only be shared and used within the bounds of the law.

In certain circumstances We may be legally required to share certain data held by Us, which may include your personal information, for example, where We are involved in legal proceedings, where We are complying with the requirements of legislation, a court order, or a governmental authority. We do not require any further consent from you in order to share your data in such circumstances and will comply as required with any legally binding request that is made of Us.

What can you do with your data?

We aim to give you control on how we use of your data (including the ability to opt-out of receiving emails

You may access certain areas of our website without providing any data at all. However, to use all features and functions available on our website you may be required to submit or allow for the collection of certain data.

You may restrict your Internet browser’s use of cookies.

You may withdraw your consent for Us to use your personal data by contacting us via email, and we will delete your data from our website. However, you acknowledge this may limit our ability to provide products and services to you

You have the legal right to ask for a copy of any of your personal data held by Us (where such data is held). Please contact Us for more details at info@peacesave.co.uk

What cookies do and what are they for?

Squarespace uses some necessary cookies because they allow visitors to navigate and use key features on your site. These cookies vary from site to site depending on the features it uses. You can see a full list of these cookies by visiting this link: https://support.squarespace.com/hc/en-us/articles/360001264507

By using our site you may also receive certain third party Cookies on your device. These cookies are those placed by websites, services, and/or parties other than Us. We use third party cookies on our website for services such as taking payment and delivering streaming video.

Before cookies are placed on your computer or device, you are shown a pop-up which shows our cookie policy. By viewing the pop-up, you are giving us permission to the placing of cookies. You may, if you wish, deny consent to the placing of cookies; however certain features of our site may not function fully or as intended.

You can choose to enable or disable cookies in your internet browser. Most internet browsers also enable you to choose whether you wish to disable all cookies or only third party cookies.

You can choose to delete cookies at any time however you may lose any information that enables you to access our site more quickly and efficiently including, but not limited to, login and personalisation settings.

It is recommended that you keep your internet browser and operating system up-to-date and that you consult the help and guidance provided by the developer of your internet browser and manufacturer of your computer or device if you are unsure about adjusting your privacy settings.

Summary of Your Rights under GDPR

Under the GDPR, you have:

1 the right to request access to, deletion of or correction of, your personal data held by Us.

2 the right to complain to a supervisory authority.

3 the right to be informed of what data processing is taking place;=.

4 the right to restrict processing.

5 the right to data portability.

6 object to processing of your personal data.

7 rights with respect to automated decision-making and profiling

Name and Contact Details of the controller

Controller for the purposes of the General Data Protection Regulation (GDPR), other data protection laws applicable in Member states of the European Union and other provisions related to data protection is:

Peacesave

Email: info@peacesave.co.uk

Website: http://www.peacesave.co.uk

unsplash-image-hpjSkU2UYSU.jpg
unsplash-image-aQYgUYwnCsM.jpg
unsplash-image-Q9-QEy1_jYI.jpg