Privacy notice

Last updated: 22 May 2018

https://digitalmediastream.co.uk/ ('Website') is provided by Digital Media Stream ('we'/'us'/'our'). In doing so, we may be in a position to receive and process personal information relating to you. As the controller of this information, we're providing this Privacy Notice ('Notice') to explain our approach to personal information.

We intend only to process personal information fairly and transparently as required by data protection law including the General Data Protection Regulation (GDPR). In particular, before obtaining information from you (including through use of cookies) we intend to alert you to this Notice, let you know how we intend to process the information (including through use of cookies) and (unless processing is necessary for at least one of the 5 reasons outlined in clause 2 below) we'll only process the information if you consent to that processing. The GDPR also defines certain 'special categories' of personal information that's considered more sensitive. These categories require a higher level of protection, as explained below.

Of course, you may browse parts of this Website without providing any information about yourself and without accepting cookies. In that case, it's unlikely we'll possess and process any information relating to you.

We'll start this Notice by setting out the conditions we must satisfy before processing your data. However, you may wish to start with this table at clause 4, which summarises what we intend to collect, or this table at clause 8.5, which summarises our use of cookies. The Notice also explains some of the security measures we take to protect your personal information, and tells you certain things we will or won't do.

Sometimes, when you take a new service or product from us, or discuss taking a new service or product but decide against, we might wish to provide you with further information about similar services or products by email or other written electronic communication. In that situation, we will always give you the opportunity to refuse to receive that further information and if you change your mind please let us know. We'll endeavour to remind you of your right to opt-out on each occasion that we provide such information.

  1. Identity and contact details
    1. Registered number: 07829004
    2. Registered office: WeWork, 1 St. Peter's Square, Manchester, M2 3AE
    3. contact@digitalmediastream.co.uk
  2. When we're allowed to collect information from you

We will only collect personal information relating to you if one of the following conditions have been satisfied:

    1. You have clearly told us that you are content for us to collect that information for the certain purpose or purposes that we will have specified.
    2. The processing is necessary for the performance a contract that we have with you.
    3. The processing is necessary so that we can comply with the law.
    4. The processing is necessary to protect someone's life.
    5. The processing is necessary for performance of a task that's in the public interest.
    6. The processing is necessary for our or another's legitimate interest - but in this case, we'll balance those interests against your interests.
  1. How to consent
    1. At the point of collecting the information, we'll endeavour to explain how we intend to use the information and which of these purposes apply. If we rely on consent, we'll provide you with the opportunity to tell us that you're happy to provide the information.
    2. If at any point in time you change your mind and decide that you don't consent, please let us know and we'll endeavour to stop processing your information in the specified manner, or we'll delete your data if there is no continuing reason for possessing it.
    3. If you don't consent to a particular bit of processing, we'll endeavour to ensure that the Website and our service continue to operate without the need for that information.
  2. Information we expect to collect from you
    1. We envisage asking for the following types of information from you:

Information type

Purpose and related details

Justification

Contact Information

  • We ask for this to fulfil your request
  • We'll ask for your consent
    1. We may collect personal information about you from a number of sources, including the following:
      1. From you when you agree to take a service or product from us, in which case this may include your contact details, date of birth, how you will pay for the product or service and your bank details.
      2. From you when you contact us with an enquiry or in response to a communication from us, in which case, this may tell us something about how you use our services.
      3. From documents that are available to the public, such as the electoral register.
      4. From third parties to whom you have provided information with your consent to pass it on to other organisations or persons - when we receive such information we will let you know as soon as is reasonably practicable.
    2. If you refuse to provide information requested, then if that information is necessary for a service we provide to you we may need to stop providing that service.
    3. At the time of collecting information, by whichever method is used, we'll endeavour to alert you and inform you about our purposes and legal basis for processing that information, as well as whether we intend to share the information with anyone else or send it outside of the European Economic Area. If at any point you think we've invited you to provide information without explaining why, feel free to object and ask for our reasons.

 

  1. Using your personal information
    1. Data protection, privacy and security are important to us, and we shall only use your personal information for specified purposes and shall not keep such personal information longer than is necessary to fulfil these purposes. The following are examples of such purposes. We have also indicated below which GDPR justification applies, however it will depend on the circumstances of each case. At the time of collecting we will provide further information, and you may always ask for further information from us.
      1. To help us to identify you when you contact us. This will normally be necessary for the performance our contract.
      2. To help us to identify accounts, services and/or products which you could have from us or selected partners from time to time. We may do this by automatic means using a scoring system, which uses the personal information you've provided and/or any information we hold about you and personal information from third party agencies (including credit reference agencies). We will only use your information for this purpose if you agree to it.
      3. To help us to administer and to contact you about improved administration of any accounts, services and products we have provided before, do provide now or will or may provide in the future. This will often be necessary, but sometimes the improvements will not be necessary in which case we will ask whether you agree.
      4. To allow us to carry out marketing analysis and customer profiling (including with transactional information), conduct research, including creating statistical and testing information. This will sometimes require that you consent, but will sometimes be exempt as market research.
      5. To help to prevent and detect fraud or loss. This will only be done in certain circumstances when we consider it necessary or the law requires it.
      6. To allow us to contact you by written electronic means (such as email, text or multimedia messages) about products and services offered by us where:
        1. these products are similar to those you have already purchased from us,
        2. you were given the opportunity to opt out of being contacted by us at the time your personal information was originally collected by us and at the time of our subsequent communications with you, and
        3. you have not opted out of us contacting you.
      7. To allow us to contact you in any way (including mail, email, telephone, visit, text or multimedia messages) about products and services offered by us and selected partners where you have expressly consented to us doing so.
      8. We may monitor and record communications with you (including phone conversations and emails) for quality assurance and compliance.
        1. Before doing that, we will always tell you of our intentions and of the specific purpose in making the recording. Sometimes such recordings will be necessary to comply with the law. Alternatively, sometimes the recording will be necessary for our legitimate interest, but in that case we'll only record the call if our interest outweighs yours. This will depend on all the circumstances, in particular the importance of the information and whether we can obtain the information another way that's less intrusive.
        2. If we think the recording would be useful for us but that it's not necessary we'll ask whether you consent to the recording, and will provide an option for you to tell us that you consent. In those situations, if you don't consent, the call will either automatically end or will not be recorded.
      9. When it's required by law, we'll check your details with fraud prevention agencies. If you provide false or inaccurate information and we suspect fraud, we intend to record this.
    2. We will not disclose your personal information to any third party except in accordance with this Notice, and in particular in these circumstances:
      1. They will be processing the data on our behalf as a data processor (where we'll be the data controller). In that situation, we'll always have a contract with the data processor as set out in the GDPR. This contract provides significant restrictions as to how the data processor operates so that you can be confident your data is protected to the same degree as provided in this Notice.
      2. Sometimes it might be necessary to share data with another data controller. Before doing that we'll always tell you. Note that if we receive information about you from a third party, then as soon as reasonably practicable afterwards we'll let you know; that's required by the GDPR.
      3. Alternatively, sometimes we might consider it to be in your interest to send your information to a third party. If that's the case, we'll always ask whether you agree before sending.
    3. Where you give us personal information on behalf of someone else, you confirm that you have provided them with the information set out in this Notice and that they have not objected to such use of their personal information.
    4. In connection with any transaction which we enter into with you:
      1. If you provide false or inaccurate information to us and we suspect fraud, we will record this and may share it with other people and organisations. We, and other credit and insurance organisations, may also use technology to detect and prevent fraud.
      2. We may need to transmit the payment and delivery information provided by you during the order process for the purpose of obtaining authorisation from your bank.
    5. We may allow other people and organisations to use personal information we hold about you in the following circumstances:
      1. If we, or substantially all of our assets, are acquired or are in the process of being acquired by a third party, in which case personal information held by us, about our customers, will be one of the transferred assets.
      2. If we have been legitimately asked to provide information for legal or regulatory purposes or as part of legal proceedings or prospective legal proceedings.
      3. We may employ companies and individuals to perform functions on our behalf and we may disclose your personal information to these parties for the purposes set out above, for example, for fulfilling orders, delivering packages, sending postal mail and email, removing repetitive information from customer lists, analysing data, providing marketing assistance, providing search results and links (including paid listings and links) and providing customer service. Those parties will be bound by strict contractual provisions with us and will only have access to personal information needed to perform their functions, and they may not use it for any other purpose. Further, they must process the personal information in accordance with this Notice and as permitted by the GDPR. From time to time, these other people and organisations to whom we may pass your personal information may be outside the European Economic Area. We will take all steps reasonably necessary to ensure that your personal information is treated securely and in accordance with this Notice and the GDPR.
  2. Protecting information
    1. We have strict security measures to protect personal information.
    2. We work to protect the security of your information during transmission by using Secure Sockets Layer (SSL) software to encrypt information you input.
    3. We reveal only the last five digits of your credit card numbers when confirming an order. Of course, we transmit the entire credit card number to the appropriate credit card company during order processing.
    4. We maintain physical, electronic and procedural safeguards in connection with the collection, storage and disclosure of personally identifiable customer information. Our security procedures mean that we may occasionally request proof of identity before we disclose personal information to you.
    5. It is important for you to protect against unauthorised access to your password and to your computer. Be sure to sign off when you finish using a shared computer.
  3. The internet
    1. If you communicate with us using the internet, we may occasionally email you about our services and products. When you first give us personal information through the Website, we will normally give you the opportunity to say whether you would prefer that  we don't contact you by email. You can also always send us an email (at the address set out below) at any time if you change your mind.
    2. Please remember that communications over the internet, such as emails and webmails (messages sent through a website), are not secure unless they have been encrypted. Your communications may go through a number of countries before they are delivered - this is the nature of the internet. We cannot accept responsibility for any unauthorised access or loss of personal information that is beyond our control.
  4. Cookies and other internet tracking technology
    1. When we provide services, we want to make them easy, useful and reliable. This sometimes involves placing small amounts of information on your computer, which is sent back to us at a later time. These are called 'cookies'. These cookies are listed in the table at clause 8.5. Some websites don't use cookies but use related technology for gaining information about website users such as JavaScript, web beacons (also known as action tags or single-pixel gifs), and other technologies to measure the effectiveness of their ads and to personalise advertising content. Multiple cookies may be found in a single file depending on which browser you use.
    2. Where applicable, this section of the Notice also relates to that technology but the term 'cookie' is used throughout.
    3. Some of these cookies are essential to services you've requested from us, whereas others are used to improve services for you, for example through:
      1. Letting you navigate between pages efficiently
      2. Enabling a service to recognise your computer so you don't have to give the same information during one task
      3. Recognising that you have already given a username and password so you don't need to enter it for every web page requested
      4. Measuring how many people are using services, so they can be made easier to use and that there is enough capacity to ensure they are fast
    4. To learn more about cookies, you may wish to visit: www.allaboutcookies.org, www.youronlinechoices.eu or www.google.com/policies/technologies/cookies/
    5. This Website uses, or allows use of, the following cookies:

Essential / Consent Banner Cookies

Cookie name

Cookie qualities

Consent needed

__hs_opt_out

  • This cookie is used by the opt-in privacy policy to remember not to ask the user to accept cookies again. This cookie is set when you give users the choice to opt out of cookies.
  • Category 1 - essential
  • Third party: another website is placing the cookie
  • Persistent, expiry date: 22 May 2020
  • The information will be sent to HubSpot so that Customer data will be stored in the Digital Media Stream instance of their Hubspot contacts CRM

No

__hs_do_not_track

  • This cookie can be set to prevent the tracking code from sending any information to HubSpot. Setting this cookie is different from opting out of cookies, which still allows anonymized information to be sent to HubSpot
  • Category 1 - essential
  • First party: we're placing the cookie
  • Persistent, expiry date: 22 May 2020
  • The information will be sent to HubSpot so that Customer data will be stored in the Digital Media Stream instance of their Hubspot CRM

No

__hs_testcookie

  • This cookie is used to test whether the visitor has support for cookies enabled.
  • Category 1 - essential
  • First party: we're placing the cookie
  • Session
  • The information will be sent to HubSpot so that Customer data will be stored in the Digital Media Stream instance of their Hubspot CRM

No

hs_ab_test

  • This cookie is used to consistently serve visitors the same version of an A/B test page that they’ve seen before.
  • Category 1 - essential
  • First party: we're placing the cookie
  • Session
  • The information will be sent to HubSpot so that Customer data will be stored in the Digital Media Stream instance of their Hubspot CRM

No

hs-messages-is-open

  • This cookie is used on the visitor UI side so HubSpot can determine/save whether the chat widget is open for future visits. It resets after 30 minutes to re-close the widget after 30 minutes of inactivity
  • Category 1 - essential
  • First party: we're placing the cookie
  • Session
  • The information will be sent to HubSpot so that Customer data will be stored in the Digital Media Stream instance of their Hubspot CRM

No

hs-messages-hide-welcome-message

  • When you dismiss the welcome message in your messages tool, a cookie is set to prevent it from appearing again for one day.
  • Category 1 - essential
  • First party: we're placing the cookie
  • Session
  • The information will be sent to HubSpot so that Customer data will be stored in the Digital Media Stream instance of their Hubspot CRM

No

__hstc

  • The main cookie for tracking visitors. It contains the domain, utk (see below), initial timestamp (first visit), last timestamp (last visit), current timestamp (this visit), and session number (increments for each subsequent session).
  • Category 3 - functionality
  • First party: we're placing the cookie
  • Persistent, expiry date: 22 May 2020
  • The information will be sent to HubSpot so that Customer data will be stored in the Digital Media Stream instance of their Hubspot CRM

Yes

hubspotutk

  • This cookie is used for to keep track of a visitor's identity. This cookie is passed to HubSpot on form submission and used when de-duplicating contacts.
  • Category 3 - functionality
  • First party: we're placing the cookie
  • Persistent, expiry date: 22 May 2028
  • The information will be sent to HubSpot so that Customer data will be stored in the Digital Media Stream instance of their Hubspot CRM

Yes

__hssc

  • This cookie keeps track of sessions. This is used to determine if we should increment the session number and timestamps in the __hstc cookie. It contains the domain, viewCount (increments each pageView in a session), and session start timestamp.
  • Category 3 - functionality
  • First party: we're placing the cookie
  • Session
  • The information will be sent to HubSpot so that Customer data will be stored in the Digital Media Stream instance of their Hubspot CRM

Yes

__hssrc

  • Whenever HubSpot changes the session cookie, this cookie is also set. We set it to 1 and use it to determine if the visitor has restarted their browser. If this cookie does not exist when we manage cookies, we assume it is a new session.
  • Category 3 - functionality
  • First party: we're placing the cookie
  • Session
  • The information will be sent to HubSpot so that Customer data will be stored in the Digital Media Stream instance of their Hubspot CRM

Yes

messagesUtk

  • This cookie is used to recognize visitors who chat with you via the messages tool. If the visitor leaves your site before they're added as a contact, they will have this cookie associated with their browser. If you have a history of chatting with a visitor and they return to your site later in the same cookied browser, the messages tool will load your conversation history with that visitor.
  • Category 3 - functionality
  • First party: we're placing the cookie
  • Session
  • The information will be sent to HubSpot so that Customer data will be stored in the Digital Media Stream instance of their Hubspot CRM

Yes

    1. The distinctions referred to in the above table are as follows:
      1. First party versus third party cookies - we set first party cookies ourselves; third party cookies are set by other entities via our Website.
      2. Session versus persistent cookies - session cookies only persist for the duration of that visit; persistent cookies last for longer
      3. Identifying information removed - just because we've done this, they will still be personal information if the relevant information can be reassembled
      4. Categories 1-4 found in the ICC UK Cookie guide, as explained below. Category 1 cookies don't require the user's consent, though you must still tell them about the cookies. Categories 2-4 do require their specific and informed consent.

Category 1

Strictly necessary

These cookies are essential in order to enable you to move around the website and use its features, such as accessing secure areas of the website. Without these cookies services you have asked for, like shopping baskets or e-billing, cannot be provided.

We include in this category cookies that are used only for electronic communication. (The ICC doesn't refer to these cookies, but the law is the same.)

Note that cookies for which another person is the controller will never be necessary for a service requested of you. On the other hand, if you've asked another person to send a cookie on your behalf for an essential feature of your website, that would be category 1.

Category 2

Performance

These cookies collect information about how visitors use a website, for instance which pages visitors go to most often, and if they get error messages from web pages. This information is only used to improve how a website works.

Category 3

Functionality

These cookies allow the website to remember choices you make (such as your user name, language or the region you are in) and provide enhanced, more personal features. For instance, a website may be able to provide you with local weather reports or traffic news by storing in a cookie the region in which you are currently located. These cookies can also be used to remember changes you have made to text size, fonts and other parts of web pages that you can customise. They may also be used to provide services you have asked for such as a live chat session.

Category 4

Targeting and advertising

These cookies are used to deliver adverts more relevant to you and your interests. They are also used to limit the number of times you see an advertisement as well as help measure the effectiveness of the advertising campaign. They are usually placed by advertising networks with the website operator’s permission. They remember that you have visited a website and this information is shared with other organisations such as advertisers. Quite often targeting or advertising cookies will be linked to site functionality provided by the other organisation.

 

GOOGLE ANALYTICS

We use the Google Analytics service from Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”) to analyze our website visitors. Google uses cookies. The information generated by the cookie about the use of the online product or service by users is generally transferred to a Google server in the USA and stored there. Google will use this information on our behalf to evaluate the use of our online products and services by users, to compile reports on the activities within these online products and services and to provide us with further services associated with the use of these online products and services and the use of the internet. Pseudonymous user profiles can be created from the processed data.

We use Google Analytics only with IP anonymization enabled. This means that Google will truncate the IP address of users within Member States of the European Union or in other states that are party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there.

The IP address transmitted by the user’s browser is not merged with other Google data. Users can prevent cookies from being stored by adjusting the settings to their browser software accordingly.

The legal basis for the use of this service is Art. 6 paragraph 1 sentence 1 letter f GDPR. Users can prevent the collection of data generated by cookies by downloading and installing the browser plug-in that is available at the following link:  http://tools.google.com/dlpage/gaoptout?hl=en.
    1. As with any other information we may collect from you, we'll work to protect the security of your information during transmission by using by using Secure Sockets Layer (SSL) software to encrypt information you input.
    2. The Website may include links to third-party websites. We do not provide any personally identifiable customer personal information to these third-party websites unless you've consented in accordance with this privacy notice, however as to cookies please see above clause Cookies and other internet tracking technology.
    3. We exclude all liability for loss that you may incur when using these third-party websites.
  1. Further information
    1. If you would like any more information or you have any comments about this Notice, please either write to us at Data Protection Manager, Digital Media Stream, WeWork, 1 St. Peter's Square, Manchester, M2 3AE, or email us at contact@digitalmediastream.co.uk.
    2. Please note that we may have to amend this Notice on occasion, for example if we change the cookies that we use. If we do that, we will publish the amended version on the Website. In that situation we will endeavour to alert you to the change, but it's also your responsibility to check regularly to determine whether this Notice has changed.
    3. You can ask us for a copy of this Notice by writing to the above address or by emailing us at contact@digitalmediastream.co.uk. This Notice applies to personal information we hold about individuals. It does not apply to information we hold about companies and other organisations.
    4. If you would like access to the personal information that we hold about you, you can do this by emailing us at contact@digitalmediastream.co.uk or writing to us at the address noted above. There is not normally a fee for such a request, however if the request is unfounded, repetitive or excessive we may request a fee or refuse to comply with your request. You can also ask us to send the personal information we hold about you to another controller.
    5. We aim to keep the personal information we hold about you accurate and up to date. If you tell us that we're holding any inaccurate or incomplete personal information about you, we will promptly amend, complete or delete it accordingly. Please email us at contact@digitalmediastream.co.uk or write to us at the address above to update your personal information. You have the right to complain to the Information Commissioner's Office if we don't do this.
    6. You can ask us to delete the personal information that we hold about you if we relied on your consent in holding that information or if it's no longer necessary. You can also restrict or object to our processing of your personal information in certain circumstances. You can do this by emailing us at contact@digitalmediastream.co.uk or writing to us at the address noted above.
    7. We will tell you if there is a breach, or a likely breach, of your data protection rights.

'Just-in-time' notices

Privacy notice about non-essential information

We have asked for personal information from you. It's not essential that we receive this information, so please only provide it if you're happy for us to have it and use in this way.

For more information, please read our full privacy notice at https://content.digitalmediastream.co.uk/privacy-policy

If you have any concerns, please contact us using the details provided in our privacy notice.

----------------------------------------------

Cookie notice

This Website makes use of cookies.

The following cookies are necessary for a service that you've asked us to provide:

- __hs_opt_out: This cookie is used by the opt-in privacy policy to remember not to ask the user to accept cookies again. This cookie is set when you give users the choice to opt out of cookies.
- __hs_do_not_track: This cookie can be set to prevent the tracking code from sending any information to HubSpot. Setting this cookie is different from opting out of cookies, which still allows anonymized information to be sent to HubSpot
- __hs_testcookie: This cookie is used to test whether the visitor has support for cookies enabled.
- hs_ab_test: This cookie is used to consistently serve visitors the same version of an A/B test page that they’ve seen before.
- hs-messages-is-open: This cookie is used on the visitor UI side so HubSpot can determine/save whether the chat widget is open for future visits. It resets after 30 minutes to re-close the widget after 30 minutes of inactivity
- hs-messages-hide-welcome-message: When you dismiss the welcome message in your messages tool, a cookie is set to prevent it from appearing again for one day.

The cookies listed below, however, are not strictly required for such a service, though we think they have the potential to enhance your experience:

- __hstc: The main cookie for tracking visitors. It contains the domain, utk (see below), initial timestamp (first visit), last timestamp (last visit), current timestamp (this visit), and session number (increments for each subsequent session).
- hubspotutk: This cookie is used for to keep track of a visitor's identity. This cookie is passed to HubSpot on form submission and used when de-duplicating contacts.
- __hssc: This cookie keeps track of sessions. This is used to determine if we should increment the session number and timestamps in the __hstc cookie. It contains the domain, viewCount (increments each pageView in a session), and session start timestamp.
- __hssrc: Whenever HubSpot changes the session cookie, this cookie is also set. We set it to 1 and use it to determine if the visitor has restarted their browser. If this cookie does not exist when we manage cookies, we assume it is a new session.
- messagesUtk: This cookie is used to recognize visitors who chat with you via the messages tool. If the visitor leaves your site before they're added as a contact, they will have this cookie associated with their browser. If you have a history of chatting with a visitor and they return to your site later in the same cookied browser, the messages tool will load your conversation history with that visitor.

Please indicate which of these cookies you are happy to receive from this Website. You may withdraw your consent at any time, through either the Website or your web browser (which can also be used to delete currently stored cookies).

This privacy notice and consent applies also to cookies placed by third parties without any input from us.

For more information about the cookies we use and our approach to the processing of personal information, please read our privacy notice at: https://content.digitalmediastream.co.uk/privacy-policy

----------------------------------------------

What to with your document

This section tells you what to do with your privacy notice and your 'just-in-time' notices.

Privacy notice

Copy this to your website on the page at https://content.digitalmediastream.co.uk/privacy-policy, and add a link to it on every page of your website.

'Just-in-time' notices

These are short notices that you put on your website at the point that you ask for information. They'll refer website users to your full privacy notice. You don't have to use these, but the Information Commissioner's Office recommend this technique.

Because the user's consent required for at least some of the information you'll request, you'll need to add some kind of mechanism for the user to give consent when the user sees the relevant notices. You should also make it very clear how the user can withdraw consent and ask for all personal information about them to be deleted.

Copy the text below the 'Privacy notice about non-essential information' into an appropriate space (e.g. pop-up box) that should appear as soon as the website is opened and before the user is asked to provide information that's not essential.


Do the same for the text below the 'Cookie Notice', before any cookies are sent.