GDPR Strategy

Introduction:

Moray Operatic & dramatic Society takes the privacy and security of our members, customers, and website users seriously. We comply with the General Data Protection Regulation (GDPR) and all other applicable data protection laws. This policy explains how we collect, use, and protect personal data and your rights regarding that data.

Data We Collect:

We collect and process personal data when you purchase tickets, sign up for our newsletter, register for auditions, or interact with us in any other way. This data may include:

  • Name and contact information, such as your email address and phone number
  • Billing and payment information, such as your credit card details
  • Details of your purchases and attendance at our events
  • Information you provide when you sign up for auditions, such as your resume and head shot
  • Information you provide when you contact us, such as your questions and comments

We also collect data automatically when you visit our website, such as your IP address, browser type, and operating system. We use cookies and similar technologies to collect this data.

Data Use:

We use the personal data we collect for the following purposes:

  • To provide you with our products and services, such as tickets to our shows
  • To communicate with you about our products and services, such as sending you our newsletter
  • To improve our products and services, such as analysing website traffic to improve our website
  • To comply with legal and regulatory requirements, such as processing tax payments and maintaining accurate financial records

Data Protection:

We take appropriate measures to protect personal data from unauthorized access, loss, or theft. We restrict access to personal data to authorized personnel who require access to perform their duties. We use secure methods to transmit personal data, such as SSL encryption for online transactions.

 

 

Data Retention:

We retain personal data for as long as necessary to provide our products and services and to comply with legal and regulatory requirements. We may also retain personal data for longer periods for archiving purposes or to defend against legal claims.

Your Rights:

You have the right to access, rectify, and erase your personal data. You also have the right to object to the processing of your personal data and to request that we restrict the processing of your personal data. You may also have the right to data portability, which means that we will provide you with a copy of your personal data in a structured, machine-readable format.

If you wish to exercise any of these rights, please contact us at [contact email]. We will respond to your request within one month.

Changes to This Policy:

We may update this policy from time to time to reflect changes in our practices and legal requirements. We will notify you of any material changes by email or by posting a notice on our website.

Contact Us:

If you have any questions or concerns about this policy or our data protection practices, please contact us at Admin@themods.org.uk.