Privacy & Cookies policy
This Policy explains when and why we collect personal information about people who visit our websites, how we use it, the conditions under which we may disclose it to others and how we keep it secure.
Personal data is defined by the General Data Protection Regulation (EU Regulation 2016/679) (the “GDPR”) as ‘any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier’.
Personal data is, in simpler terms, any information about you that enables you to be identified. Personal data covers obvious information such as your name and contact details, but it also covers less obvious information such as identification numbers, electronic location data, and other online identifiers.
We may change this Policy from time to time so please check this page occasionally to ensure that you’re happy with any changes. By using our website, you’re agreeing to be bound by this Policy.
Any questions regarding this Policy and our privacy practices should be sent to glasgow@bandsupplies or by writing to Band Supplies Limited Registered Office (detailed below) Alternatively, you can telephone 01413399400.
Who are we?
Band Supplies and The Saxophone Shop
Band Supplies Limited Registered Company in Scotland SC339374
13-15 Old Dumbarton Road
Tel: 0141 339 9400
How do we collect information from you?
We obtain information about you when you use our website, for example, when you contact us about our products for sale, place an order, leave us your details at an event or at one of our stores or if you register to receive one of our regular newsletters. We do not contact anyone without their consent.
What type of information is collected from you?
The personal information we collect might include your name, address, email address, IP address. If you purchase a product from us, your card information is not held by us, it is collected by our third-party payment processors, who specialise in the secure online capture and processing of credit/debit card transactions, as explained below.
How is your information used?
Under the GDPR, we must always have a lawful basis for using personal data.
We may use your information to:
- process orders that you have submitted;
- to carry out our obligations arising from any contracts entered into by you and us including instrument rental and finance agreements.
- send you information about our events, special offers, updates, and any other information you have requested
- process a job application.
We review our retention periods for personal information on a regular basis. We will hold your personal information on our systems for as long as is necessary for the relevant activity, or as long as is set out in any relevant contract you hold with us.
Who has access to your information?
We never sell or rent your personal information to third parties.
We will not share your information with third parties for marketing purposes.
We may pass your information to our third-party service providers, subcontractors and other organisations for the purposes of completing tasks and providing services to you on our behalf (for example to send you mailings). However, when we use third party service providers, we disclose only the personal information that is necessary to deliver the service and we have a contract in place that requires them to keep your information secure and to ensure that they comply with the other requirements of the Data Protection laws.
When you purchase products from us your payment details are processed by a third-party payment processor, who specialises in the secure online capture and processing of credit/debit card transactions. If you have any questions regarding secure transactions, please contact us.
You have a choice about whether or not you wish to receive information from us. If you do not want to receive direct marketing communications from us, then you can click the UNSUBSCRIBE link on any email or select your choices by ticking the relevant boxes on the online form on which we collect your information.
We will not contact you for marketing purposes by email, phone or text message unless you have given your prior consent. We will not contact you for marketing purposes by post if you have indicated that you do not wish to be contacted.
You can change your marketing preferences at any time by contacting firstname.lastname@example.org
How you can update your information
The accuracy of your information is important to us.
If you change email address, or any of the other information we hold is inaccurate or out of date, please email us at email@example.com or write to us at 13-15 Old Dumbarton Road, Glasgow, G3 8QY or telephone us on 01413399400.
Under certain circumstances, by law you have the right to:
- Request access to your personal information (commonly known as a "data subject access request"). This enables you to receive a copy of the personal information we hold about you and to check that we are lawfully processing it.
- Request correction of the personal information that we hold about you. This enables you to have any incomplete or inaccurate information we hold about you corrected.
- Request erasure of your personal information. This enables you to ask us to delete or remove personal information where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your personal information where you have exercised your right to object to processing (see below).
- Object to processing of your personal information where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground. You also have the right to object where we are processing your personal information for direct marketing purposes.
- Request the restriction of processing of your personal information. This enables you to ask us to suspend the processing of personal information about you, for example if you want us to establish its accuracy or the reason for processing it.
- Request the transfer of your personal information to another party.
If you want to review, verify, correct or request erasure of your personal information, object to the processing of your personal data, or request that we transfer a copy of your personal information to another party, please contact Band Supplies Ltd. Registered office in writing.
If you would like to know what information we hold about you, please write to Band Supplies Ltd. Registered office. We will ask you for proof of identity and provide you with a response within 30 days.
Security precautions in place to protect the loss, misuse or alteration of your information
When you give us personal information, we take steps to ensure that it is treated securely. Any sensitive information (such as credit or debit card details) is encrypted and protected with 128 Bit encryption on SSL. When you are on a secure page, a lock icon will appear on the bottom of web browsers such as Microsoft Internet Explorer.
Non-sensitive details (your email address etc.) are transmitted normally over the Internet, and this can never be guaranteed to be 100% secure. As a result, while we strive to protect your personal information, we cannot guarantee the security of any information you transmit to us, and you do so at your own risk. Once we receive your information, we make our best effort to ensure its security on our systems. Where we have given (or where you have chosen) a password which enables you to access certain parts of our websites, you are responsible for keeping this password confidential. We ask you not to share your password with anyone.
Use of 'cookies'
It is possible to switch off cookies by setting your browser preferences to disable Cookies. Turning cookies off may result in a loss of functionality when using our website. You can also clear cookies saved on your computer at any time.
We use the following cookies:-
PHPSESSID - First party cookie - No information is stored in the user's browser and this cookie can only be used by the current web site. To store a users shopping basket. To store a the logged in user's username and a 128bit encrypted key. This information is required to allow a user to stay logged in to a web site without needing to submit their username and password for each page visited. Without this cookie, a user is unable to proceed to areas of the web site that require authenticated access.
_ga, _gat, _gid - Google analytics, third party cookies used to provides us with information about how users use our sites enabling us to improve and refine customers experience. User data is all anonymous. You can find out more about Google's position on privacy as regards its analytics service at http://www.google.com/analytics/learn/privacy.html
externail_no_cache - Magento Cookie - A flag, which indicates whether caching is disabled or not.
frontend - Magento Cookie - Your sesssion ID on the server.
frontend_cid - Magento Cookie- blocks MITM attacks
Links to other websites
In addition, if you linked to our website from a third-party site, we cannot be responsible for the privacy policies and practices of the owners and operators of that third party site and recommend that you check the policy of that third party site.
Transferring your information outside Europe
Some of the software tools we use have data centres or staff outside of the European Union. Where this is the case, we have chosen to work with companies who have demonstrated that they operate in ways that comply with UK law. For example, the US based companies whose software we use, have all signed up to the US-EU Privacy Shield. If you are not happy for us to share your data with those partners, please do not use our services.
Review of this Policy
We keep this Policy under regular review. This Policy was last updated in May 2018.