Privacy Policy

Last updated November 2018

Point.51 takes your privacy and the protection of your personal data seriously. We will treat your data as confidential, and are fully committed to handling the information you provide us securely and responsibly in according with General Data Protection Regulation (GDPR) legislation and this privacy statement.


Data Controller

As per GDPR regulations, the data controller for information provided through this website is: Point 51 Limited, London SE8 4RL. Email: info [at] point51magazine [dot] com.

What personal data do we collect when you browse our website or subscribe to our newsletter or other services?

When you visit our website (www.point51magazine.com), we collect browsing data such as IP address, date and time of access, browser and operating system details, for site security, accessibility, stability, and administrative purposes. To understand further what we collect, and why, please see our cookies policy.

When you request and sign up for the following services, we collect only the information necessary to provide you with those services. These include:

  • Subscribing to our mailing list which is managed by Squarespace

  • Registering to attend an event

  • Purchasing an item(s) from Point.51

In all cases, you may request that we remove this data at any time, subject to the requirements outlined by the GDPR, including certain exceptions for law enforcement purposes as defined by English law.

How do we use your data?

When you sign up for a particular service we use your data to only to provide that particular service to you, or to contact you should there be any error or interruption in the provision of that service. Please see below for specific examples:

  • Our mailing list: when you subscribe to our mailing list, we use the data you provide us (your full name and email address) to send you email announcements about Point.51, including information about launch events, new issues, or purchase or subscription offers. The partner we work with to send out email campaigns is Squarespace, and you can read their privacy policy here.

  • Event registration: when you RSVP to attend one of our events, we use the data you provide us (your full name, email address, and number of people in your party), to pre-register you for that specific event, and to email you further updates about that event, where necessary. We will not use your data to email you offers or other announcements without your consent, except for a brief follow up email after the event, in which we will thank you for attending and invite you to subscribe for our newsletter if you wish.

 

Security of Data

Point.51 and Point 51 Limited will use all reasonable efforts to safeguard your personal data, however internet usage is never entirely secure. For this reason, we cannot guarantee the security or integrity of any personal data which are transferred from you or to you via the internet. We are committed to notifying the Information Commissioner’s Office (ICO) promptly should we become aware of any data breach.

Do you sell or pass on any of my personal data to third parties?

Point.51 and Point 51 Limited will never sell your personal data. We will only pass on specific, applicable data to our trusted third-party partners in order to fulfil a request you have made for a specific service (see above section).

How and where do we store your data?

In the case of email subscriptions, your information is stored securely by our email partner, Squarespace. Squarespace’s servers are located in the United States and are certified by the EU-US Privacy Shield agreement which allows them to receive and process EU data in compliance with European privacy laws.

Where you have requested to RSVP for one of our events, your data is stored by Google. We will retain this data for one year from the date of the event you responded to. You may request that we delete this data at any time. If you have given your consent for us to do so, your email address will be added to our mailing list, which is managed by Squarespace.

Email correspondence relating to other matters (where applicable), between you and Point.51 magazine or its representatives, is handled by Google G-Suite which is based on a server located in the United States. This data is protected and secured under the EU-US Privacy Shield agreement (see above section, “How do we use your data?”).
 

Do you store data from social media accounts?

Point.51 operates a number of social media channels (including Facebook, Twitter, and Instagram). This policy covers how Point.51 will use any data collected from those pages, but it does not cover how those social media platforms will use your personal information. Please ensure you read the privacy policy of the social media platform in question and make use of the privacy settings and reporting mechanisms to control how your data is used.

How long do we retain your personal data?

We retain your personal data for as long as is necessary to provide you with the service(s) you have requested, and to fulfil our obligations in regard to GDPR and other legal requirements. Unless you request otherwise, we retain data related to the following services for the time period specified below:

  • Our newsletter (managed by our email partner Squarespace): for the duration of your subscription (you may unsubscribe at any time using the link provided at the bottom of each newsletter email)

  • RSVP lists and event guest lists: for the duration of the specific event, and subsequently for one year after the date of the event, for the purposes of informing you of future events and activities (you may request to have your data removed at any time)

  • Browsing data and other online usage information: we keep this information (as defined in the section above) for a maximum of five years after your last visit to the Point.51 website, for administrative and data retention purposes

What information do we collect when you use our online shop?

When you use our online shop to purchase one or more copies of Point.51 magazine, we collect only the data necessary to fulfil your order in a secure and efficient manner. We collect the following:

  • Contact information: full name, postal address, billing address, email, telephone number

  • VAT identification number (if applicable)

  • Credit card information for payment: name on card, address of cardholder, credit card data including card number and security code

We will erase your data once the applicable retention periods have expired.
 

What information do you collect when I purchase an item using a credit card?

We securely collect and use your credit card data to allow our payment service provider to verify and bill your purchase. Your data is collected and processed exclusively to perform the respective payment, via our payment processing partner, Stripe. You can read Stripe’s privacy policy here.

 

What are your rights in relation to the data we hold on you?

By law, you have and retain the rights to:

  • Be informed: you have the right to be provided with clear, relevant, and easily understandable information about how we use your data and your rights to data protection. This includes providing you with this privacy policy.

  • Access your data: you have the right to obtain access to your information (if we collect and/or process it), in according with the relevant data protection laws including GDPR (subject to journalistic exemptions as outlined by the ICO)

  • Rectify or update incorrect information: you have the right to have your information corrected within a reasonable timeframe, if it is inaccurate or incomplete

  • Withdraw consent: you have the right, at any time, to inform us in writing that you wish to withdraw your consent for us to hold and/or process your data. As a consequence of receiving a written request withdrawing your consent, we will cease to further process your data; the withdrawal of consent does not affect the lawfulness of processing your data prior to withdrawal of consent

  • Be informed of exceptions: we hereby inform you that certain exceptions, under English and EU law, require us to retain your data for specific and limited purposes. These include: compliance with legal obligation (e.g. to a lawful requirement to disclose such information from a law enforcement authority subject to English and EU law), for reasons of compelling public interest, or for the establishment, exercise, or defence of legal claims

  • Obtain from us restrictions of processing: as per GDPR regulations, if you contest the accuracy, validity, or lawful obtaining and processing of your personal data, but do not wish it to be deleted, in order for it to be retained for the restricted and sole use of establishing, exercising, or defending a legal claim, you have exercised your rights to obtain “restriction of processing” under the GDPR

  • Right to receive personal data: you have the right to request and receive personal data which you have provided to us, and for such data to be provided to you in a structured, commonly-used, and machine-readable format within a reasonable timeframe, as per GDPR regulations

How do I request the deletion, restriction, rectification, or receipt of my personal data?

If you would like us to delete, cease processing, rectify, or provide you with the data we hold on you, please send us an email with the subject heading: “GDPR Data Request”, and an outline of what you wish to happen with your data. We will act on your request in a timely manner, and inform you of the outcome, subject to exceptions (outlined above) where we are required to retain your data for legal purposes. In most cases, fulfilling requests to provide you with a copy of your data will be free of charge, provided that your request is not baseless,  excessive, or repeated. In cases where the request is baseless, excessive, or repeated – or you request further copies of the same information – we may charge a reasonable fee to cover our administrative costs.


Version: This Privacy Policy statement was updated in November 2018, and is current unless otherwise stated.