This website complies with the DPA (Data Protection Act 1998) and with the GDPR (General Data Protection Regulation) which came into effect on May 25, 2018.
Links To Other Websites
Any other websites linked to from this website may have their own Privacy Policies and are not under our administration. These sites may send you cookies and collect data and personal information. We are not responsible for the actions, content or the privacy policies of those websites to which this website may link.
When you actively sign up to receive newsletters from Sarah McQuaid, either at her concerts or through this website, you supply some or all of the following information about yourself: First name, surname, email address, physical address and postcode.
Information is also collected when you make a purchase from this website directly or via Bandcamp, such as the product(s) you purchased, the time of order, delivery address details and your payment method. Bandcamp and Bandzoogle collect this information in a secure encrypted script and pass this on to our payment providers; we do not store any payment card numbers or details on our site or its servers, nor is this information visible to us in any way; i.e. when buying albums or books through this website, payment is made via Paypal and we do not see any financial details relevant to the transaction.
You may of course change your mind at any time and request that your data be deleted from our database. You may in addition request an export of the data that is held about you by emailing us.
Please note that our emails to you always have an unsubscribe link at the bottom. If you unsubscribe either via this link or by emailing us, we will delete the information we have about you.
Our Use Of Your Information
We use your information for our accounting and customer management systems, and in particular for the following reasons:
1) Internal record-keeping
We may use the information to improve our products and services. All information is kept on password-protected devices and is accessible only by Sarah McQuaid and authorised staff. Any information held on servers we use to host our websites is held on fully GDPR compliant systems with encrypted password protection in place.
2) External auditing
We may include information about our customers held on record for auditing by our appointed accountants and for submission for any HMRC auditing. No information is shared with other agencies, except as may be required by law.
3) Direct marketing
We may choose to contact you with offers of goods and services, or information about forthcoming events and concerts, when you have opted in to Sarah McQuaid’s mailing list. You can opt in to this mailing list by completing a form at one of her concerts or workshops, by emailing Sarah or her manager directly, or through the newsletter signup link on this website. When you opt in, or when you make a purchase from Sarah via Bandcamp, you agree that we can retain this information for use in conducting our business.
If you wish to unsubscribe from Sarah’s mailing list, you may do so at any time by clicking the unsubscribe link in the footer of any marketing email you receive from us, or by contacting us here.
We will not pass on any information we collect unless in the course of an external audit as detailed above.
4) Sharing with our secure payment service providers
If you make a purchase from Sarah’s Bandcamp music shop, we will share your information with our secure payment service provider (currently Paypal), so you can benefit from encrypted payment processing services. Only such information as is necessary for this purpose will be disclosed to Paypal. Paypal is fully GDPR-compliant.
Your Rights To Your Data
You may request an export of your information held by us, or request that all your data be removed from our database.
We have taken all reasonable steps to have in place appropriate security measures to protect your information, and our systems have been built on industry-standard software.
The policy is effective from 25th May 2018.