We collect very little information from the viewers’ visits to our website. Absolutely no personal information is collected from our visitors. The website statistics gathered by our web hosting company records server requests only, e.g. the IP address and date of visit. This is similar to every other server on the web.
Our mailing lists are stored via secure third-party cloud email clients whose privacy policies are available upon request. Data stored in these applications contain the following information only:
We keep the number of communications we send to a minimum, and will only send you information related to the following:
We will not collect data relating to children without the express permission of a parent or legal guardian. In practice, we only process the following information relating to children:
When you join as a class or contact us via email or social media we may ask permission to store your details in our booking software and mailing lists. For existing customers who are attending classes and blocks, we store, retain and use your data to provide the services agreed in your contract with us. For new customers, all our systems require an affirmative opt-in before we can send you communications. We will undertake this process with you for each system during your initial registration. For lapsed customers, we may from time to time, send you communications about our products and services which we believe you have a legitimate interest in receiving. You can opt-out of these communications at any time.
Baby Band does not collect special category data in the course of its routine operations. Following the COVID-19 pandemic, HM Government requires businesses to collect data for their Test & Trace scheme. Our lawful basis for processing this data under Article 9 of GDPR is (i) Public health (with a basis in law). We delete all data collected for Test & Trace after 21 days.
Any internal data we hold is stored either on our hardware or via cloud storage. All our internal systems are password-protected, and user access is restricted.
We do not hold your data any longer than is necessary to provide you with our services or to comply with applicable law. We would expect to retain, store and use your data for the lifespan of your children’s Baby Band journey with us, or for the duration of any classes and blocks you attend. While we do not place a specific timeframe on the retention of our data, we periodically review our records to edit, archive or delete data we deem surplus to requirements. Baby Band is also required, by law, to retain financial information relating to its business practices for up to 7 years.
Under the GDPR you have the following rights:
We will not use any personal information obtained via this website, our booking software or mailing lists for any purpose other than that stated when the data is collected. We adhere to the terms of the GDPR and take the security and value of any information you supply us very seriously. We will not share your information with any third party unless required to do so by legal requirement.