Privacy Policy

Riverside Leisure Promotions Ltd (Forum Theatre) GDPR Data Security Policy

Respect and Protect

Riverside Leisure Promotions Ltd is committed to respect and protect the data it uses on behalf of clients for Direct Mail purposes. We take Data security seriously. As such we already had many responsibilities when handling and processing clients’ data.

1. Awareness

All staff involved in data processing are aware of the new and existing obligations and have discussed the impact that GDPR is likely to have on our systems.

2. Information We Hold

We have certain data we hold for clients. In general, Data we hold is only ever name and address data and a ticketing history to help us taylor the information we send or email to you promoting forthcoming shows that we believe will be of interest to you. No personal financial information is ever held or stored. We will never share customers data with any 3rd party.

3. Communicating Privacy

We will continue to review privacy notices and make any necessary changes as the impact of GDPR becomes more apparent.

4. Individuals Rights

If an individual indicates to us that they would like their data deleting, then we will delete their file immediately and without question. This will result in no brochure or emails being sent out to the customer in the future.

5. Lawful basis For Processing

We process data on the basis of “Legitimate Interest”. The legitimate interest is for mailing information to customers and the only data used is name and address. This is to increase or maintain the theatres product / show awareness.

6. Children

Data for mailing is usually for a householder, so will not include data on children, and would certainly never contain details of that persons age or gender.

7. Data Breaches

Our data is stored on a secure server, password protected and virus protected. It is transmitted using secure methods and passwords, or third party transfer protocols. Any breach would be immediately reported to us.

8. Data Protection Impact Assessment

We have familiarised ourselves with the ICOs code of practice on Privacy Assessments and the latest guidance from the Article 29 Working Party.

9. Data Protection Officer

The Data Protection Officer and person responsible for compliance and protection for Riverside Leisure Promotions Ltd is Derek Cooper (Director) or his appointed deputy.

10. International.

We never mail overseas.

Derek Cooper

Riverside Leisure Promotions Ltd

24th May 2018.