Andrew Phillips is committed to respecting your privacy. This notice explains how we use any personal information we collect about you and your rights in relation to it. Please read it carefully.
Who we are
I am (or ‘we are’) Andrew Phillips.
My website address: andrewphillipsmusic.com
What personal data we collect and why we collect it
Contact form
We keep contact form submissions for a certain period for customer service purposes, but we do not use the information submitted through them for marketing purposes.
Forms are sent via email and their content is encrypted in transit.
No data is stored in the website database.
Cookies
Our website, like most, uses cookies. You can prevent their use through your browser settings, but you will then not be able to use all the functionality of our website.
We provide more information about the cookies we use in our Cookies page.
Embedded content from other websites
The website uses web fonts provided by Google but these are hosted locally so no personal data is collected by Google’s content delivery network.
We use a Twitter Feed plugin to display social media content on our website. As a result, our website makes requests to Twitter’s servers in order to display images and videos. These requests make your IP address visible to Twitter, who may use it in accordance with their data privacy policy: twitter.com/en/privacy#update
The Tweets displayed in the Twitter feed include the ability to Reply, Share, or Like the Tweet directly on our website. If you choose to interact with these functions then you will make a connection to Twitter.com, who may collect your IP address, your web browser User Agent, store and retrieve cookies on your browser, embed additional tracking, and monitor your interaction with the widget, including correlating your Twitter account with whatever action you take within the widget (such as “liking” a Tweet), if you are logged in to Twitter. For more information about how this data may be used, please see Twitter’s data privacy policy: twitter.com/en/privacy#update
We embed audio/visual content from Vimeo and SoundCloud. Embedded content from these websites behaves in the exact same way as if the visitor has visited these websites. Vimeo and SoundCloud may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with the embedded content if you have an account and are logged in to that website.
Vimeo privacy policy: vimeo.com/privacy
SoundCloud privacy policy: soundcloud.com/pages/privacy
See also ‘Third-party Cookies’ on Cookies page.
Security measures
No personal details are stored in the website database by our security plugins.
Some data (including IP address, hostname, location) is temporarily stored in security logs on the server and/or sent via email to alert the website administrator of critical problems or suspicious activities on the site.
Analytics
Our website does not collect any tracking data for visitor analysis.
Who we share your data with
Except as set out here, we do not share, or sell, or disclose to a third party, any information collected through our website.
How long we retain your data
We keep information on clients and client records for 7 years.
What rights you have over your data
You can request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
The website is hosted at SiteGround in datacentres located in London (UK). It is protected by 256-bit encryption. SSL certificate provided by Let’s Encrypt from the Internet Security Research Group (ISRG).
Siteground security details: siteground.com/datacenters/
Let’s Encrypt privacy policy: letsencrypt.org/privacy/
Emails sent to Andrew Phillips via the Contact form reside in the data centres of Google Cloud. Google’s commitment to GDPR: privacy.google.com/businesses/compliance/
Website administrator emails reside in the data centres of Zoho.com, which adhere to GDPR: zoho.com/gdpr.html
Website database backups are encrypted and stored at Amazon S3 – server located in EU (London) – and at Microsoft OneDrive – data centres located in GB – for up to 1 year.
AWS data privacy statements: aws.amazon.com/compliance/data-privacy/
Microsoft’s privacy commitment: microsoft.com/en-gb/trust-center/privacy
Additional information
How we protect your data
We have various measures in place to protect the website from malicious attack, including firewall protection, malware scanning, bot/spam blocking and encryption.
What data breach procedures we have in place
The website has internal reporting systems and contact mechanisms to alert us to any malicious activity on the site.
Contact information
If you have any privacy-specific concerns, please contact Andrew Phillips.
Last updated: 28 October 2020