We are Jeremy Tankard Typography Limited, a company registered in England (registration number 047069120) (“JTT”, “we” or “us”). We are registered as a data controller with the Information Commissioner’s Office (registration number Z8646042).
What personal information do we collect about you?
When you access and move around JTT, process an order with JTT or license a JTT Product from JTT, we may collect some or all of the following personal data about you:
– your name;
– the name of any company or entity on whose behalf you are engaging with JTT;
– billing address, email address and phone number(s);
– correspondence with and from JTT;
– your preferences about receiving communications from JTT;
– information about your use of JTT, and your orders from JTT; and
– details we may ask you to submit to verify your identity.
How do we use your personal information?
Your personal data will be collected, processed, stored and used by us, and may be passed to and processed by our subsidiary and/or affiliated companies and other data processors acting under contract with us:
– to provide JTT to you;
– to tailor aspects of your experience of JTT;
– to associate your orders, and your Licences, with you, and to verify your identity;
– to provide you with order and delivery information;
– to provide customer support;
– to contact you by email and mobile communication (such as text (SMS) notification);
– for customer satisfaction and other market research purposes; and
– in connection with the prevention and detection of copyright infringement, and fraud and other crime.
We may automatically collect anonymous information about your use of JTT. For example, we may automatically log which parts of JTT you access, which web browser you deploy and the website from which you linked to JTT. You cannot be identified from any of this information. It enables us to compile statistics about the use of JTT, and to help target aspects of JTT and advertising to you more accurately.
What is our legal basis for processing your personal data?
These are the legal bases we have for holding and processing your personal data:
– Contract: To enter into or perform a contract with you
– Legitimate Interest: For our (or third parties’) legitimate interests, as long as they aren’t overridden by your interests and rights
– Obligation: To comply with our legal obligations
– Consent: Where none of the other bases above applies, your consent.
Whom will we share your personal data with?
We will share your personal data with various third parties, but always for the uses referred to above. These third parties are businesses that provide services such as:
– payment services
– email services
– website hosting
We will not otherwise disclose any of your personal data without your permission unless:
– we are legally entitled to do so (for example, pursuant to a court order or for the purposes of prevention or detection of crime or fraud);
– we are in negotiations with a third party for the sale or purchase of any of our business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets;
– JTT, or substantially all of its assets, is acquired by a third party, in which case personal data held by JTT about its customers will be one of the transferred assets; or
– to enforce or apply our JTT Base Licence Agreement, Licences and other agreements to which you are party, or to protect our rights, property, safety, customers, or others,
and to do so is consistent with our legal obligations.
Your communication preferences
The emails and mobile text (SMS) communications which we may send to you fall into two categories:
– Emails and mobile text (SMS) communications that may provide you with information about offers, new JTT Products and other things that we think may interest you or JTT customers generally.
– The emails mobile text (SMS) communications which we may send you concerning your JTT-related activity, specifically:
– To remind you of unordered items in your online basket.
– Surveys to capture your feedback on orders you have placed with JTT.
You are provided with the opportunity to opt in or out of receiving our emails and/or mobile text (SMS) communications.
Please note that emails which we send you concerning your transactions (that is, emails that we need to send you relating directly to your orders from JTT) are unaffected by your preferences for newsletters and other Service Messages. So if you indicate that you wish to opt out of receiving our emails (or mobile text (SMS) communications) you will nevertheless continue to receive emails which confirm orders which you make from us, and any other emails which are necessary to effect a transaction with you.
While we do our best to act on your preferences as soon as we can, please be aware that it may take up to 7 days for changes to your preferences (an opt in or out, or an unsubscribe) to take effect.
How long will be keep your personal data for?
We keep your personal data for as long as is necessary:
– to address relevant legal, tax or accounting requirements, including potential claims by and against us.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the data, the potential risk of harm from unauthorised use or disclosure of that data, the purposes for which we process it, whether we can achieve those purposes through other means, as well as the appropriate legal, taxation and accounting requirements.
Links to third party sites
Our Site may, from time to time, contain links to the websites of third parties. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for those websites or their policies.
We take appropriate technical and organisational measures to guard against unauthorised or unlawful processing of your personal data and against accidental loss or destruction of, or damage to, your personal data. While no computer system is completely secure, we believe the measures implemented by our site reduce the likelihood of security problems to a level appropriate to the type of data involved.
We have security measures in place to protect our database of Users and access to this database is restricted internally. However, note that it remains each User’s responsibility:
– to ensure no-one else uses JTT through his/her credentials;
– to log off or exit from JTT when not using it; and
– to keep any/her password or other access information secret.
We will never ask you to confirm the details of your credentials or Payment Method by email or mobile communication. If you receive such contact, please do not respond to it.
Your legal rights
Under the law, you have the right to:
– Request access to your personal data (commonly known as a “data subject access request”). This enables you to receive a copy of the personal data we hold about you and to check that we are lawfully processing it.
– Request correction of your personal data that we hold about you. This enables you to have any incomplete or inaccurate data we hold about you corrected, though we may need to verify the accuracy of the new data you provide to us.
– Request erasure of your personal data. This enables you to ask us to delete your personal data where there is no good reason for us continuing to process it. You also have the right to ask us to delete your personal data where you have successfully exercised your right to object to processing (see below), where we may have processed your information unlawfully or where we are required to erase your personal data to comply with a legal or regulatory obligation. Note, however, that we may not always be able to comply with your request of erasure for specific legal reasons which will be notified to you, if applicable, at the time of your request.
– Object to processing of your personal data where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground as you feel it impacts on your fundamental rights and freedoms. In some cases, we may demonstrate that we have compelling legitimate grounds to process your information which override your rights and freedoms.
– Request restriction of processing of your personal data. This enables you to ask us to suspend the processing of your personal data in the following scenarios: (a) if you want us to establish the data’s accuracy; (b) where our use of the data is unlawful but you do not want us to erase it; or (c) where you need us to hold the data even if we no longer require it as you need it to establish, exercise or defend legal claims.
– Request the transfer of your personal data to you or to a third party. We will provide to you, or a third party you have chosen, your personal data in a structured, commonly used, machine-readable format.
– Withdraw consent to the processing of your personal data, where consent is the basis for that processing. However, this will not affect the lawfulness of any processing carried out before you withdraw your consent.
If you wish to exercise any of the rights set out above, please contact us by email to firstname.lastname@example.org. You will not have to pay a fee to exercise any of your legal rights as specified above. However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances.
We may need to request specific information from you to help us confirm your identity and ensure your right to access the relevant personal data (or to exercise any of your other legal rights). This is a security measure we take to help avoid your personal data being disclosed to a person who has no right to receive it.
We may also contact you to ask you for further information in relation to your request to help speed up our response.
We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK’s supervisory authority for data protection issues (www.ico.org.uk).
Updates to this policy