Datenschutzrichtline

Privacy Policy

  1. WHO ARE WE? This website (“Site”) is operated by Cellar Door Promotions Limited a company registered in England and Wales under registration number 06081618 and our registered address is 71 High Street, Croydon, CR0 1QE (VAT number 143231942).You can contact us as indicated under the “Contact” section below. The data controller responsible for your personal data is the Cellar Door company with whom you contract as a customer, member or membership applicant (“Cellar Door”, “Cellar Door Nexus”, “Nexus”, “we”, “us” and “our” being interpreted accordingly).
  2. WHAT IS THIS PRIVACY POLICY IS FOR? This privacy policy (“Privacy Policy”) applies to personal data that we collect from you as a user of this Site or as a membership applicant, member or customer (“you” or “your” being interpreted accordingly). It provides information on what personal data we collect, why we collect the personal data, how it is used and the lawful basis on which your personal data is processed, and what your rights are under the applicable data protection and privacy laws, including the General Data Protection Regulation (“GDPR”) which will become applicable to us and you as of 25 May 2018. ‘Personal data’ as used in this Privacy Policy means any information that relates to you from which you can be identified. By using our Site or submitting your personal data you are taken to accept the terms of this Privacy Policy, so please read it carefully.
  3. PERSONAL DATA WE COLLECT We collect the following personal data about you:
  1. AUTOMATICALLY COLLECTED PERSONAL DATA
  1. HOW WE USE YOUR PERSONAL DATA We use your personal data in the following ways:
  1. DISCLOSURE OF YOUR INFORMATION We share your personal data with third parties in the following situations:
  1. PAYMENT INFORMATION Any credit/debit card payments and other payments you make through our Site will be processed by our third party payment providers and the payment data you submit will be securely stored and encrypted by our payment service providers using up to date industry standards. Please note that we do not ourselves directly process or store the debit/credit card data that you submit. We may arrange that card or payment data you submit in support of a membership application or subscription fee is stored for the purpose of processing your application, initiating your membership and collecting your subscription fees if your initial application is successful (or if you are put on to a membership waiting list, please note that this data may be stored for later use to initiate your membership and subscription). We store and use this card or payment information for the purpose of processing any future payments that you make as a member for additional goods and services. We will store this data in accordance with our legal obligations under applicable law and only for so long as legally permitted. You may choose to opt out of us holding your card or payment data although this means that you will need to re-supply us with card/payment details to initiate your membership subscription fee or for the purpose of making any future purchases.
  2. PERSONAL DATA TRANSFERS Your personal data will be transferred to and stored in countries other than the country in which the information was originally collected, including the United States and other destinations outside the European Economic Area (“EEA”), to our service providers and affiliated businesses for the purposes described above. Please note that the countries concerned may not provide the same legal standards for protection of your personal data that you have in the United Kingdom or EEA. Where we transfer your personal data to countries outside of the EEA we will take all steps to ensure that your personal data will continue to be protected. We will implement appropriate safeguards for the transfer of personal data to our service providers in accordance with the applicable law, such as relying on our service providers’ Privacy Shield certification or implementing standard contractual clauses for data transfers. We have implemented data transfer agreements pursuant to applicable data protection law in order to implement appropriate safeguards for the transfer of personal data to Soho House group companies in countries outside the EEA. If you would like to receive more information on the safeguards that we implement, including copies of relevant data transfer contracts, please contact us as indicated below.
  3. SECURITY Where we have given you (or where you have chosen) a password or log-in which enables you to access certain restricted parts of our Site, you are responsible for doing everything you reasonably can to keep these details secret. You must not share your password or log-in details with anyone else. Unfortunately, the transmission of information over the internet or public communications networks can never be completely secure. We will take appropriate technical and organisational security measures to protect the personal data that you submit to us against unauthorised/unlawful access or loss, destruction or damage, although we cannot 100% guarantee the security of personal data that you provide to us online.
  4. PERSONAL DATA RETENTION We will keep your personal data only for as long as is reasonably necessary for the purposes outlined in this Privacy Policy, or for the duration required by any legal, regulatory, accounting or reporting requirements, whichever is the longer. In particular, we retain membership records for six years after expiration or termination of your membership. We retain information submitted through the Site and the other websites we operate for two years following account closure or contact with you, as applicable. When you consent to receive marketing communications, we will keep your data until you unsubscribe. To determine the appropriate retention period for your personal data, we consider the amount, nature, and sensitivity of the personal data, the purposes for which we process your personal data, applicable legal requirements or operational retention needs, and whether we can achieve those purposes through other means. Upon expiry of the applicable retention period we will securely destroy your personal data in accordance with applicable laws and regulations. In some circumstances we may anonymise your personal data so that it can no longer be associated with you, in which case it is no longer personal data.
  5. YOUR PERSONAL DATA PROTECTION RIGHTS Certain applicable data protection laws give you specific rights in relation to your personal data. In particular, if the processing of your personal data is subject to the GDPR, you have the following rights in relation to your personal data:
  1. CHANGES TO OUR PRIVACY POLICY Any changes we may make to our Privacy Policy in the future will be posted on this page. Please check back frequently to see any updates or modifications. If required by the applicable law, we will notify you of any material or substantive changes to this Privacy Policy.
  2. CONTACT Questions, comments or requests regarding this Privacy Policy should be addressed to [email protected] .