SISU Sound Serenity – PRIVACY POLICY Date of last update: 9th August 2024 This privacy policy explains how we look after personal data we collect from you or that you provide to us (directly or indirectly), and tells you about your privacy rights and how the law protects you. “Personal data” is any information capable of identifying a living individual; it does not include anonymised data. Website data collection This website does not intentionally collect any personal information. There are no website analytics enabled, only a strictly necessary security cookie that prevents cross-site request forgery. (This is when an attacker tricks your browser and you end up logging into a malicious site or revealing your data.) What data we collect about you When you contact us, we will have your name, phone number, e-mail address and/or any other information you share with us. As part of the services we provide, we may process the following types of personal data about you: •Contact information, such as your email address, postal address, and phone number; •Financial data, such as your bank account and payment card details; •Identity data, such as your name and date of birth; •Marketing and communications data, which includes your preferences in receiving marketing communications from us and your communications preferences; •Transaction data, such as details about payments between us; •Usage data, such as information about how you use our website and services; •Special category/sensitive personal data: oAll clients will be asked to complete and sign a health form in advance of any treatments or events, which includes details such as medical conditions, medications, and surgery details. More details are in the health form; oFollowing sound therapy or related treatments, notes will be kept on what is discussed between us before and after the session, as well as any information you choose to share with us between sessions. We only keep information for as long as it is necessary to provide the services, for our own accounts and records, or to meet legal or insurance obligations. We only use your personal information to: •reply to your e-mails or telephone calls; •provide the services; •communicate with you about our services and events; •issue and communicate with you about payment and invoices; •maintain accounts and records; and •to comply with a legal or regulatory obligation. If you are happy with our work, we may ask you to provide a testimonial. This will only include your name if you want it to. If you make a purchase as a gift on the site, or book a service or event on behalf of someone else, and enter that person’s name and contact details, it is your responsibility to seek that person’s permission for SISU Sound Serenity Limited to process and / or store that data. Marketing Communications You will receive marketing communications from us if you have: •Requested information from us or purchased goods or services from us; or •If you provided us with your details when you entered a competition or registered for a promotion or free resources; and •In each case, where you have opted in to continue receiving that marketing. You can ask us or third parties to stop sending you marketing messages at any time by emailing us at sisusoundserenity@outlook.com at any time. Where you opt out of receiving our marketing communications, this will not apply to personal data provided to us as a result of a product/service purchase, product/service experience or other transactions. Your rights At any time you can ask us for a copy of all the information we hold about you. You can also update any of your information that is inaccurate. Under certain circumstances, you have rights to deletion, objection and restriction. The portability right is accommodated by the access right. You can learn more about your privacy rights and complain to the ICO here: https://ico.org.uk/your-data-matters/ Legal information Data controller: Sisu Sound Serenity Limited Lawful bases: performance of a contract; legitimate interests; legal obligation; consent. Accounts and records retention: 6 years from the end of the last company financial year they relate to. Service providers: WIX, Microsoft, Meta. Disclosures: only to service providers as part of using their services, to our professional advisers, or insurers, or if we are legally required to do so. Transfers: some service providers store data in other countries; transfer safeguards (standard contract clauses) are in place. Third-party links Our site may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our site, we encourage you to read the privacy notice of every website you visit. Occasionally links will be affiliate links but we do not share any of your data with other companies whether we are affiliated or not. Cookies You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this site may become inaccessible or not function properly. For more information about the cookies we use, please see our [cookie policy]. Contact Please email: sisusoundserenity@outlook.com for any questions or to make a rights request. Changes to our privacy policy Any changes we make to our privacy policy in the future will be posted on this page and, where appropriate, notified to you by email. Please check back frequently to see any updates or changes to our privacy policy