Privacy Policy
1. Introduction – Commitment to Privacy and Data Protection
At The John Langan Band, accessible via thejohnlanganband.com, we are committed to safeguarding the privacy and personal data of our users, customers, and website visitors. We value your trust and are dedicated to maintaining transparency and accountability in how we collect, use, store, and protect your personal information. This Privacy Policy outlines your rights and our obligations in accordance with applicable data privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to personal data collected through our website, services, products, and any direct communications with you. The data controller responsible for processing your personal data is The John Langan Band. For any questions or concerns relating to this policy or the handling of your data, please contact us at [email protected].
3. Categories of Data Processed
We collect and process various types of data to operate our services effectively and enhance your experience. These categories include:
– Usage Data: Includes information such as IP addresses, browser types, operating systems, access times, pages visited, URL clickstreams, and session durations collected through server logs and analytics tools.
– Account Data: Includes personally identifiable information submitted when you create an account or place an order, such as your full name, email address, telephone number, and mailing address.
– Profile Data: Encompasses data related to your preferences, interests, purchase history, and user behavior on thejohnlanganband.com.
– Communication Data: Includes interactions between you and The John Langan Band, such as customer support inquiries, service feedback, or participation in surveys.
– Technical Data: Includes device identifiers, screen resolution, system settings, browser plugins, and other diagnostics to ensure functionality and security.
– Transaction Data: This includes records of products or services you purchase, billing and delivery details, payment confirmations (excluding full payment card numbers), and order histories.
– Preference Data: Covers your marketing preferences, opt-in or opt-out communications, and declared product interests.
4. Legal Bases for Processing
We rely on the following lawful bases under GDPR and comparable California privacy legislation:
– Consent: Where you have provided clear permission for us to process your data for specific purposes (e.g., subscribing to newsletters).
– Contractual Necessity: Processing is required to deliver a service or fulfill our contractual obligations (e.g., fulfilling orders).
– Legitimate Interests: Processing necessary for our legal business operations, provided your rights and interests do not override these.
– Legal Obligation: Processing required to comply with a law or regulatory requirement.
5. Your Rights
Under the GDPR and CCPA, you are granted the following rights regarding your personal information:
– Right of Access: You may request information on the personal data we hold about you.
– Right to Rectification: You have the right to request correction of inaccurate or incomplete data.
– Right to Erasure: Also known as the ‘right to be forgotten,’ you may request deletion of your personal data under certain conditions.
– Right to Restriction of Processing: You may request limits on the way we use your data.
– Right to Data Portability: You may request that your data be provided in a structured, commonly used, machine-readable format.
To exercise these rights, please contact us at [email protected]. We may need to verify your identity prior to acting on your request.
6. Security Measures
We implement extensive technical and organizational safeguards to protect your personal data, including:
– Encryption of data in transit and at rest.
– Role-based access controls and secure authentication protocols.
– Regular system security audits and vulnerability assessments.
– Periodic staff training on secure data handling and privacy obligations.
– Secure data backup and disaster recovery procedures.
While no online system can guarantee complete security, we take privacy and security seriously and apply industry best practices accordingly.
7. International Transfers
As The John Langan Band may operate and provide services globally, your data may be transferred to and processed in other countries outside your jurisdiction. Where such transfers occur, we employ Standard Contractual Clauses approved by regulatory authorities or rely on other legal mechanisms to ensure equivalent data protection standards.
8. Data Retention
We retain personal data for no longer than necessary to fulfill the purpose for which it was collected and to meet legal, accounting, or reporting requirements. Retention periods vary by data type:
– Usage and technical data: Retained for 12 months to support system security and analytics.
– Transaction and communication data: Maintained for up to 7 years for legal, compliance, and accounting purposes.
– Preference and profile data: Retained until revoked or modified by the user.
Once data is no longer required, we delete it securely or render it anonymized.
9. Cookie Policy
We use cookies and similar technologies on thejohnlanganband.com to improve user experience and understand website usage. These include:
– Essential Cookies: Necessary for operating the website and providing services you request.
– Functional Cookies: Enable personalization, such as language preferences and saved settings.
– Analytics Cookies: Allow us to collect aggregated data for usage analysis and website optimization.
– Performance Cookies: Help us understand user behavior to improve speed and responsiveness.
Cookies do not give us access to your device or any information beyond what you voluntarily provide.
10. Cookie Management and Compliance
You may manage your cookie preferences at any time by adjusting your browser or device settings to reject or delete cookies. Where legally required, we provide cookie consent banners upon your first visit, allowing you to opt in or out of non-essential cookies in compliance with GDPR and CCPA requirements.
For California residents, further rights under the CCPA include:
– The right to opt out of the sale of Personal Information.
– The right to request disclosure of the categories and specific pieces of personal information collected.
– The right to non-discrimination for exercising CCPA rights.
You may exercise these rights by contacting us at [email protected].
11. Children’s Privacy
TheJohnLanganBand.com is not directed to children under the age of 13. We do not knowingly collect personal data from children under 13. If you believe that a child under 13 has provided us with personal information, please contact us immediately at [email protected] and we will take prompt steps to delete such data.
12. Policy Updates & User Notifications
We may revise this Privacy Policy periodically to reflect changes in legal requirements, technology, or our practices. Any material changes will be communicated clearly and timely, either via website notifications or direct communication where appropriate. We encourage users to review this policy regularly to remain informed.
13. Contact
For questions, requests, or concerns related to this Privacy Policy or how your personal data is processed, please contact us at:
Email: [email protected]
Website: https://thejohnlanganband.com
We are committed to compliance with all applicable data protection laws and to protecting your personal rights and freedoms. Please reach out to us if you have any concerns regarding your privacy or the integrity of your data.