Neon Creative Technology Limited is a limited liability company incorporated in England and Wales. Neon is the controller of and responsible for the Site and the Platform.
If you have any questions about this policy including exercising your legal rights, please contact us at firstname.lastname@example.org.
The personal data gathered by us through the Site and Platform relates to our customers and the individuals featured in the videos our customers upload. We collect this personal data where it is necessary in order for us to provide the Site and the Platform to you or where it is necessary for the purposes of legitimate interests pursued by you or us. Some of this data will be collected by third parties on our behalf. We collect the following categories of personal data for the following reasons:
We may need to share your personal data with selected third parties in the following limited circumstances:
We will not transfer your personal data outside of the European Union, except to selected third parties that we have instructed to help us provide the Site and Platform to you, for example some of our marketing and CRM software providers are based in the United States.
Where such transfers are to a county outside the European Union, we rely on one of the European Commission’s adequacy decisions (for example, relying on a Privacy Shield certification where the transfer contains a US entity) or we will use reasonable efforts to put in place appropriate safeguards to cover transfers of your personal data including, for example, signing standard contractual clauses/data protection clauses adopted by the European Commission. Please click here for a link to the standard contractual/data protection clauses and click here for more information about the Privacy Shield for US companies.
If there are any other circumstances (for example where we are not processing your personal data for the provision of the Site or the Platform) which would require us to transfer your personal data outside of the UK, we will seek your consent to transfer your personal data outside of the UK. In the event of such a transfer, where applicable, we will put appropriate safeguards in place to cover transfers of your personal data including, for example, signing standard contractual clauses/data protection clauses adopted by the European Commission, or where applicable, relying on a Privacy Shield certification where the transfer contains a US entity.
If you would like further information, please contact us at email@example.com.
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements. Details of retention periods for different aspects of your personal data are available in our retention policy which you can request from us by contacting firstname.lastname@example.org.
In some circumstances you can ask us to delete your data: see Your Rights below for further information.
In some circumstances we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.
As a result of us processing your personal data, you have a right to:
a) access personal data held about you;
b) request us to make any changes to your personal data if it is inaccurate or incomplete;
c) request your personal data is erased where we do not have a compelling reason to continue to process such data in certain circumstances;
d) receive your personal data provided to us as a data controller in a structured, commonly used and machine-readable format where our processing of the data is carried out by automated means and is based on: (i) your consent; (ii) our necessity for performance of a contract to which you are a party; or (iii) steps taken at your request prior to entering into a contract with us;
e) object to, or restrict, our processing of your personal data in certain circumstances;
f) if we use your personal data for direct marketing, ask us to stop and we will comply with your request;
g) if we use your personal data on the basis of having a legitimate interest, object to our use of it for those purposes, giving an explanation of your particular situation, and we will consider your objection;
h) to object to, and not be subject to a decision which is based solely on, automated processing (including profiling), which produces legal effects or could significantly affect you; and
i) to lodge a complaint with a data protection supervisory body, which at present, is the Information Commissioner’s Office.
To exercise any of your rights set out above, including to withdraw your consent where we have stated we are processing your personal data based on your consent, please contact us at email@example.com.
We try to respond to all legitimate requests within one month. Occasionally it may take us longer where your request is particularly complex, in such cases, we will keep you updated of timescales. Such requests will be responded to free of charge, but a small administration fee may apply where requests are excessive.
We have put in place safeguards to prevent your personal data from being lost, used or accessed in an unauthorised way. We limit access to your personal data to those employees, agents or contractors who have a business need to know. Please contact firstname.lastname@example.org for a copy of our Security Policy.