There are regulations to protect your Personal Data (which include the Data Protection Act 2018; the Privacy and Electronic Communications (EC Directive) Regulations 2003 and the General Data Protection Regulations; collectively referred to as the ‘Regulations’).

This Notice sets out the Company’s commitments to protecting your Personal Data and safeguarding your privacy and informs you

  1. what Personal Data is collected;

  2. the purpose for which the personal data will be processed;

  3. how the personal data will be stored;

  4. who the Personal Data is shared with;

  5. your rights in respect of that Data;

  6. other relevant information in relation to the Personal Data.

The Branded by Women event is brought to you by Seller Sessions (referred to as the ‘Company’). The Company is the Data Controller for your Personal Data and is responsible for the collection, processing, storing, retention and safeguarding your Personal Data.

The Company pride ourselves on keeping up to date with advances in technology and legal developments which can result in the need to change this Privacy Notice, if any changes are made to this Privacy Notice or the way how the Company collects or uses your Personal Data then the Company shall make the new notice available to you.

You will be asked to expressly agree to this Privacy Notice upon your first contact with the Company or when registering to participate in the event, if you do not agree with anything within this Privacy Notice, you must not continue with your communications.

  1. Your Personal Data

    1. ‘Personal Data’ means any information in any format or medium, from which you can be personally identified.

    1. The Regulations provide rules and guidance about how the Company can use and protect your Personal Data.

    1. The Company will not gather, collect, process or store any Personal Data except –

  1. Where there is a lawful purpose;

  2. that is necessary for processing an enquiry; 

  3. to take the necessary steps to enter into a contract with you;

  4. that is necessary for the performance and administration of a contract; 

  5. for the recording of a financial transaction;

  6. for internal records that the Company are legally obliged to keep;

  7. to deal with complaints, disputes and legal actions;

  8. where necessary to protect the vital interest of you or another person;

  1. Enquiries or registration

    1.  If you make an enquiry or register for the event, you are required to provide the Company with your name, a telephone number or an email address. The Company may also request additional information for example a geographical address, photo identification and payment details

    1. This Personal Data is processed

  1. for confirmation and evidence of identity;

  2. for responding to an enquiry;

  3. for registering for an event or the creation of an account for attendance or participation at event;

  4. for the processing of payments and recording of financial transactions;

  5. for the administration and management of communications in relation to the event;

  6. to maintain internal records;

  7. to deal with complaints, disputes and legal actions;

  8. where necessary to protect the vital interest of you or another person;

  9. to send commercial communications (including the information, notices and updates about the event, availability of new events or associated products, special offers and discounts);

  10. for the main sponsor of the event to send commercial communications.

    1. The Company or main sponsor of the event may use your Personal Data to contact you by

  1. Email;

  2. Text Message;

  3. Direct Mail;

  4. Telephone;

    1. You may withdraw your consent to receive such communications at any time by following the instructions provided in each communication.

  1. Processing payments

    1. All payments to the Company are processed by a third party payment processing merchant and in full compliance with all recognised standards and security requirements.

    1. The payment processing merchant will use full encryption to ensure your payment card information remains secure, this means that payments can only be accepted from web browsers that permit communication through Secure Socket Layer (SSL) technology, it is not possible to make a payment via an unsecured connection, most web browsers support SSL.

    1. Where the payment processing merchant needs to retain your payment information, for example to make regular payments then they will only be used for the intended process. The Company do not retain or store any payment card or bank details.

  1. Sharing your Personal Data

    1. The Company may use and share your Personal Data with its employees, officers, agents, consultants, suppliers, subcontractors, sub-processors or sponsors insofar as is reasonably necessary to perform one or more of the actions or purposes stated in paragraph 2.2 and

  1. In connection with any legal proceedings or prospective legal proceedings;

  2. for the identification and prevention of fraud or other criminal activity;

  3. with the purchaser (or prospective purchaser) of any business, asset or account which the Company are (or are contemplating) selling.

  4. Where you otherwise expressly permit or instruct the Company to do so.

    1. The Company will also need to share your Personal Data with service providers used in sending you communications, for example telephone and internet providers or couriers in order that the communication may be delivered to you. 

    1. If any service provider is based outside of the UK or the EU then the Company shall ensure that the service provider and the country from where they operate have adequate protections and safeguards in place that are at least equal to those given by UK or EU regulations.

  1. Your rights

    1. You have the right 

  1. to know the identity and contact details of the Data Controller and Data Protection Officer (where applicable);

  2. to know the purpose and legal basis for processing your Personal Data, and where processing is based on the legitimate interests of the Data Controller, what those legitimate interest are;

  3. to know whether your Personal Data is transferred or processed beyond the EU and that appropriate safeguards are in place;

  4. to access your Personal Data.

  5. to erase Personal Data.

  6. to restrict processing.

  7. to portable data.

  8. to withdraw consent

  9. to complain.

    1.  The right of access.

  1. You may require the Company to provide you with any Personal Data the Company hold about you.  To obtain a copy of any Personal Data held contact the Data Controller at Seller Sessions, xxx.

  2. This Personal Data will be provided free of charge except where a request is manifestly unfounded or excessive (for example it is a repetitive request, or where the Company need to process large amounts of data) in which case the Company shall make a charge for any reasonable administrative costs in dealing with the request or refuse to respond but the Company must provide a justifiable reason for refusing to respond.

  3. The Company shall provide the requested information within one month of receipt of the request, however where there is a substantial amount of information or it is difficult to collate the Company may extend this timeframe by one month by providing you notice.

  4. As the Company take the issue of protecting your Personal Data seriously and follow strict storage and disclosure procedures and may occasionally require proof of identity from you prior to disclosing any information.

    1. The right to erase Personal Data

  1. You have the right in certain circumstances to instruct the Company to erase your Personal Data where 

  1. The Personal Data is no longer necessary in relation to the purpose for which it was originally collected/processed.

  2. You withdraw your consent.

  3. You object to the processing and there is no overriding legitimate interest for continuing the processing.

  4. The Personal Data was unlawfully processed or obtained.

  5. The Personal data has to be erased in order to comply with a legal obligation.

  6. The Personal Data is processed in relation to the offer of information services to a child. 

  1. Where you have the right and you issue an instruction to erase your Personal Data  the Company shall use all reasonable efforts to

  1. Inform all third parties to whom your Personal Data has been shared or disclosed of the requirement to erase your Personal Data which they hold;

  2. In the event that your Persona Data has been published online the Company shall endeavour to ensure that any links or references are also removed;

  1. The Company may refuse to erase your Personal Data only  

  1. to exercise the right of freedom of expression and information;

  2. to comply with a legal obligation or for the performance of a public interest task or exercise of official authority;

  3. for public health purposes in the public interest;

  4. archiving purposes in the public interest, scientific research historical research or statistical purposes; or

  5. the exercise or defence of legal claims.

    1. The right to restrict processing

  1. The Company shall, upon your request, restrict the processing of your Personal Data if the following circumstances arise

  1. Where you contest the accuracy of the Personal Data, the Company shall restrict the processing until the accuracy of the Personal Data has been verified.

  2. Where you have objected to the processing where it was necessary for the performance of a public interest task or purpose of legitimate interests, and the Company are considering whether there are legitimate grounds override your grounds.

  3. When processing is unlawful and you oppose erasure and request restriction instead.

  4. If the Company no longer need the Personal Data but you require the information to establish, exercise or defend a legal claim.

  1. Where processing of your Personal Data is restricted, the information shall be stored but no further processing shall occur.

  2. The Company shall inform any third party to whom your Personal Data was disclosed that processing is restricted.

  3. The Company shall inform you when and restricted period comes to an end. 

    1.  The right to portable data

  1. Any Personal Data which is stored electronically and the lawful purpose for processing is consent or for the performance of a contract; the Company shall hold that Personal Data in a portable format (readable in a format that will be commonly used on other computer systems) and the Company shall provide this data to you or directly to another organisation (where technically feasible) upon your request.

    1.  The right to complain.

  1. If you are not happy with the way the Company collect or store your Personal Data you can make a complaint to the Information Commissioners Office, however the Company would appreciate the opportunity to provide an explanation and put things right before you make a complaint.

    1. The right to withdraw consent

  1. If you provide your consent to process your Personal Data in a particular way, you may withdraw your consent at any time by informing the Company. 

  2. Upon receipt of a notice withdrawing your consent to process your Personal Data the Company shall stop processing the Data except:

    1. Where is it necessary for the performance of a contract.

    2. Where there are compelling legitimate grounds for the processing, which override your interests, rights and freedoms; or

    3. the processing is for the establishment, exercise or defence of legal claims; or

    4. where the processing of the Personal Data is carried out under an obligation in law.

  1. Automated Processing

  1. The Company shall not use automated processing of your Personal Data to form or make decisions except where authorised or required by law or you have given your express consent for automated processing. If the Company use automated processing you are entitled to request details of the automated process.

  1. Data Security

  1. The Company will take reasonable technical and organisational precautions to prevent the loss, misuse or alteration of Personal Data, including storing of data on a secure, password protected and firewall protected servers. 

Danny McMillan, Product Line Limited, Seller Sessions

The Data controller

Seller Sessions