Riverside Leisure Promotions Ltd (Forum Theatre) GDPR Data Security Policy
Respect and Protect
Riverside Leisure Promotions Ltd is committed to respect and protect the data it uses on behalf of clients and customers. We take Data security seriously. As such we already had many responsibilities when handling and processing clients data.
All staff involved in data processing are aware of the new and existing obligations and have discussed the impact that GDPR is likely to have on our systems.
2. Information We Hold
We have certain data we hold for clients. In general, Data we hold is only ever name and address data and a ticketing history to help us tailor the information we send or email to you promoting forthcoming shows that we believe will be of interest to you. No personal financial information is ever held or stored on our system. Riverside Leisure Promotions Ltd will never share any of our customers personal data with any 3rd party.
3. Communicating Privacy
We will continue to review privacy notices and make any necessary changes as the impact of GDPR becomes more apparent.
4. Individuals Rights
If an individual indicates to us that they would like their data deleting, then we will delete their file immediately and without question. This will result in no information brochures or emails being sent out to the customer in the future.
5. Lawful basis For Processing
We process data on the basis of Legitimate Interest. The legitimate interest is for mailing information to customers and the only data used is name and address. This is to increase or maintain the theatres product / show awareness. We assume that, as you have contacted us for information, you are happy to receive our future publicity material from time to time by both post and email.
Data for mailing is usually for a householder, so will not include data on children, and would certainly never contain details of that persons age or gender.
7. Data Breaches
Our data is stored on a secure server, password protected and virus protected. It is transmitted using secure methods and passwords, or third party transfer protocols. Any breach would be immediately reported to us.
8. Data Protection Impact Assessment
We have familiarised ourselves with the ICOs code of practice on Privacy Assessments and the latest guidance from the Article 29 Working Party.
9. Data Protection Officer
The Data Protection Officer and person responsible for compliance and protection for Riverside Leisure Promotions Ltd is Derek Cooper (Director) or his appointed deputy.
We never mail overseas.
Riverside Leisure Promotions Ltd
Last Updated 19th September 2019.