GDPR Policy
Last Updated: 1st December 2024
Introduction
At BELBRI (the “Company,” “we,” “our,” or “us”), we value your privacy and are committed to protecting the personal data of all our users. This GDPR Policy outlines how we collect, process, and store personal data in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679. It applies to visitors, members, and users of our website, including customers, freelancers, and bookstore members.
By using our services, you consent to the collection and use of your data as described in this policy.
Data Controller and Contact Information
BELBRI operates as the data controller for the personal data collected on this website. If you have any questions or concerns regarding this policy, you may contact us at:
Email: contact
Address: belbri.co.uk
Types of Data We Collect
We collect personal data for various purposes, depending on your interaction with our website. This includes:
1. Account and Membership Registration:
- Name
- Email address
- Contact details
- Payment details (for membership subscriptions and purchases, no payment details are stored)
- Username and password
2. Bookstore Purchases:
- Billing and shipping information
- Order details
3. Freelancer and Customer Memberships:
- Freelancer profiles: Skills, qualifications, and portfolio links
- Customer details for service requests: Project details and preferences
4. Website Usage:
- IP address
- Browser type and version
- Device information
- Cookies and tracking data
Purposes for Data Collection
We collect and process personal data for the following purposes:
1. Service Delivery: To provide editing, copywriting, ghostwriting, bookstore, and membership services.
2. Account Management: To create and manage user accounts.
3. Payment Processing: To process subscription fees and purchases securely.
4. Communication: To send service updates, newsletters, and promotional materials (opt-out available).
5. Legal Compliance: To comply with applicable laws and regulations.
6. Analytics and Improvements: To analyze user behaviour and improve our services.
Legal Bases for Processing Data
Under GDPR, we rely on the following legal bases for processing personal data:
- Consent: For marketing communications and optional services.
- Contractual Necessity: For processing payments and fulfilling membership services.
- Legal Obligation: For compliance with tax and regulatory requirements.
- Legitimate Interests: To enhance our website’s functionality and user experience.
Sharing and Disclosure of Data
We do not sell or rent your data to third parties. However, we may share your data with the following entities:
1. Service Providers: Payment processors, hosting providers, and analytics tools.
2. Legal Authorities: When required by law or to protect our legal rights.
3. Business Transfers: In the event of a merger, acquisition, or sale of assets.
All third-party providers are GDPR-compliant and contractually obligated to protect your data.
Your Rights Under GDPR
You have the following rights under GDPR:
1. Access: Request access to the personal data we hold about you.
2. Rectification: Request correction of incomplete or inaccurate data.
3. Erasure: Request deletion of your data (subject to legal or contractual obligations).
4. Restriction: Restrict the processing of your data under certain conditions.
5. Portability: Receive your data in a structured, machine-readable format.
6. Objection: Object to the processing of your data for specific purposes.
7. Withdraw Consent: Withdraw consent for processing at any time, where consent is the legal basis.
To exercise your rights, contact us at Contact.
Data Retention
We retain personal data only as long as necessary to fulfil the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce agreements. Retention periods include:
- Membership Accounts: Retained until account closure or cancellation.
- Purchase Records: Retained for seven years for tax and regulatory compliance.
Cookies and Tracking Technologies
We use cookies and similar tracking technologies to enhance your user experience, analyze website traffic, and support advertising.
Types of Cookies Used:
1. Necessary Cookies: Essential for website functionality.
2. Performance Cookies: Analyze how users interact with our website.
3. Functional Cookies: Store user preferences.
4. Advertising Cookies: Deliver targeted ads based on browsing behaviour.
Managing Cookies:
You can manage or disable cookies through your browser settings. Note that some features may be unavailable if cookies are disabled.
Data Security
We employ technical and organizational measures to protect your data, including:
- Encrypted payment processing (SSL/TLS)
- Access controls to personal data
- Regular security audits
Despite these measures, no online system is entirely secure, and we cannot guarantee absolute protection against data breaches.
Data Transfers Outside the EEA
If personal data is transferred outside the European Economic Area (EEA), we ensure an adequate level of protection through:
- Standard contractual clauses approved by the European Commission.
- Data processing agreements with third parties.
Changes to This GDPR Policy
We may update this GDPR Policy periodically. Changes will be communicated via email or an announcement on our website. Continued use of our services constitutes acceptance of the updated policy.
Contact Information
For questions or concerns about this GDPR Policy, please contact:
Email: Contact
Address: belbri.co.uk
This GDPR Policy ensures compliance with applicable data protection regulations and safeguards the personal data of all BELBRI users.