Mini Mozart takes the privacy of all of its customers and supporters very seriously and is committed to respecting and protecting your personal information. We aim to be transparent about what information we hold about you.
The purpose of this policy is to explain how Mini Mozart collects, uses and protects any personal information we have about you.
Collecting personal data helps us to develop a better understanding of everyone who engages with us and allows us to work more effectively and provide you with a better, more tailored service.
Every email we send you will include details on how to change your communications preferences or unsubscribe from future communications.
Please be aware that if you opt out, it may be that we cannot provide you with certain services (for example the weekly email that preps you for that week’s class).
Depending on the reason for interacting with us, we may collect and hold the following information from you:
- Identity Data: includes your first name, last name, title, date of birth, gender and contact details for your parent or guardian if you are under 16.
- Contact Data: includes billing address, delivery address, email address, telephone numbers.
- Financial Data: includes bank account and payment card details if you are making a purchase.
- Transaction Data: includes details about payments to and from you and details of services you have purchased from us.
- Health Data: if you or your child have a disability that means that we modify our classes to fully support your needs, or if we need to investigate an accident or other incident that occurs at Mini Mozart.
- Image Data: includes your image and likeness and that of your child as captured in photographs, video and audio recordings taken at class.
- Technical Data: includes the technical data we collect when you visit our websites.
- Social Media: depending on your settings or the privacy policies for social media and messaging services like Facebook, Twitter and Instagram you may give us permission to access information from those accounts or services.
- Usage Data: includes information about how you use our websites and services.
- Marketing and Communications Data: includes your preferences in receiving marketing from us and our third parties and your communication preferences.
HOW DO WE COLLECT YOUR PERSONAL INFORMATION?
Directly from you: We collect personal information from you at multiple touch points, for example when you book for a class or an event, participate in a workshop or attend another event, speak to or email a member of our team, register for an account on our websites, subscribe to an email newsletter, respond to a survey, request marketing, enter a competition, provide feedback to us, fill out a form or provide any other information in any way.
Automatically: As you interact with our websites, we may automatically collect Technical Data such as pages visited, time spent on site, IP address, browser used to view site and Internet Service Providers.
Cookies are downloaded to the hard drive of your machine. We may gather this data for information on general internet usage. The data collected does not personally identify you, but is simply statistical.
Cookies can easily be declined, through adjustment of your computer settings.
HOW DO WE USE YOUR INFORMATION?
We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
- to perform a contract with you, such as when you book a class with us or when we need to contact you with important information relating to your booking.
- To comply with a legal obligation, such as when you exercise your rights under data protection law or to meet national security or law enforcement requirements or prevent illegal activity
- Based on your consent, for example when you have specifically consented for us to use your information. For example this could be to send you updates via email about priority booking for the new term.
- Based on your explicit consent when you provide us with information about your health or access needs in order for us to provide you with tailored services, such as a wheelchair accessible space or seating requirements.
- As necessary for our legitimate interests in providing our services safely and securely in a suitable way which is tailored to your use and interests for the following purposes:
➢ To provide you with and improve our services
➢ To help us provide you with the best possible customer service and experience at Mini Mozart
➢ To manage and administer our relationship with you, such as by keeping our database up to date, contacting you about administrative matters, renewing your membership or responding to your complaints or feedback
➢ To enable you to participate in research, a survey or a competition
➢ To ensure the security of our websites and other technology systems
➢ To learn about your interests and preferences so that we can tailor your experience with Mini Mozart and provide you with information that is relevant to you
➢ For the purpose of marketing our services including sending marketing communications
➢ To learn about our audience and classify our audience into groups or segments, using booking, survey and publicly available information and ensure we are sending relevant messages to each group
➢ To use data analytics and research to improve the quality of the services we offer and define our marketing strategy
➢ To verify your identity for security purposes
➢ To help us ensure our customers are genuine and to prevent fraud
➢ For the management of our business, including keeping financial records, to allow us to pay suppliers and to charge, invoice or refund customers
➢ To record and investigate health and safety and other incidents which have happened at Mini Mozart
➢ For market research and statistical analysis and to analyse the use of our services so that we can improve your experience at Mini Mozart.
Where the law requires us to share your data (for example with our accountants) we require all other organisations with whom we share your personal information to respect the security of your information and to treat it in accordance with the law. We do not allow our service providers to use your personal data for their own purposes.
We might also have to share your information if we have to by law or where we need to protect you or other people from harm.
HOW WE PROTECT YOUR INFORMATION?
We have put in place appropriate security measures to prevent your personal information from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal information to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal information on our instructions and they are subject to a duty of confidentiality.
Your personal information is contained behind secured networks and is only accessible by a very limited number of persons who have special access rights to such systems, and who are required to keep the information secure and confidential. All financial transactions are processed through a gateway provider and are not stored or processed on our servers.
Any credit card or payment information we hold is stored securely and encrypted.
We have put in place procedures to deal with any suspected data breach and will notify you and any applicable regulator when we are legally required to do so.
We will do our best to protect your personal information. However, we cannot guarantee the security of your data transmitted to our websites before it reaches us, and any transmission is therefore at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
HOW LONG DO WE KEEP YOUR INFORMATION?
We will only keep your personal information in accordance with data protection law for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. Where your information is no longer required, we will ensure it is disposed of, deleted or cached in a secure manner.
To determine the appropriate retention period for personal information, we consider the amount, nature, and sensitivity of the information, the potential risk of harm from unauthorised use or disclosure of the information, the purposes for which we process your personal information and whether we can achieve those purposes through other means, and the applicable legal requirements.
YOUR LEGAL RIGHTS
You are in control of your personal information. Under certain circumstances you have the right to:
- Request a copy of the personal information we hold about you
- Ask us to correct information that’s wrong, to delete it or to request that we only use it for certain purposes.
- Request that we provide your personal information to you or another organisation in a structured, commonly used and machine-readable format.
- Object to us processing your personal information based on our legitimate interests.
- Change your mind and ask us to stop using your information, for example, unsubscribing from any marketing emails. Please be aware that if you ask us to stop using your information we may not be able to provide certain services to you.
If you would like to exercise any of your legal rights in relation to the personal information that we hold about you, please email email@example.com or write to us at Mini Mozart Ltd, 10 Highgate High St, London, N6 5JL.
Your request must include your name, email address and postal address and we may request proof of your identity.
If you have a concern about the way in which we use your personal information, you may also make a compliant to a supervisory authority for data protection matters. In the UK this is the Information Commissioners Office: https://ico.org.uk/concerns/. If you live in another EEA country, you may complain to the supervisory authority in your country.