Privacy Policy
1. Introduction
At Blackbird Play (“we,” “us,” “our,” or “Blackbird Play”), accessible via blackbirdplay.com (the “Website”), we are committed to protecting and respecting your privacy. We understand the importance of safeguarding your personal data and are dedicated to maintaining the highest standards of data protection, transparency, and accountability in accordance with applicable privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope of Policy and Data Controller Role
This Privacy Policy governs the processing of personal data collected through your interaction with blackbirdplay.com. For the purposes of the GDPR and other applicable data protection laws, Blackbird Play is the data controller of the personal data you provide through the Website.
This policy applies to all visitors, users, and others who access or use our Website or services. By using this Website, you consent to the practices described in this policy, including the collection, use, and disclosure of personal data.
3. Categories of Data Processed
We may collect and process the following categories of personal data:
– Usage Data: Includes information about your use of the Website such as IP address, browser type, device type, operating system, date/time of access, and session duration.
– Account Data: Includes your name, email address, mailing address, telephone number, and other identifiers used to establish and manage a user account.
– Profile Data: Includes details such as your preferences, purchase history, user behavior on the Website, interaction patterns, and engagement with features.
– Communication Data: Includes data arising from communications with us, including support requests, form submissions, emails, and customer service correspondence.
– Technical Data: Includes device identifiers, configuration data, software settings, crash logs, and diagnostics related to the use of the Website and associated platforms.
– Transaction Data: Includes payment and billing details, shipping addresses, transactional records, and order fulfillment information.
– Preference Data: Includes marketing and communication preferences, opt-in records, and information about your interests in specific content, products, or offerings.
4. Legal Bases for Processing
We rely on the following lawful bases to process your personal data, depending on the nature of the data and the processing activities:
– Performance of a contract: Where processing is necessary to fulfill obligations under a contract with you, such as providing purchased services or responding to your requests.
– Legitimate interests: To pursue our legitimate business interests in providing and improving the Website and services, except where such interests are overridden by your rights and interests.
– Consent: Where you have provided explicit consent for processing, including for marketing communications or the use of non-essential cookies.
– Legal obligations: Where processing is necessary to comply with legal or regulatory requirements.
5. Your Rights
Under applicable data protection laws, you have a number of rights in relation to your personal data. These include:
– Right of Access: You have the right to request access to the personal data we hold about you.
– Right to Rectification: If any of the data we hold is inaccurate or incomplete, you may request that it be corrected.
– Right to Erasure: Also known as the “right to be forgotten,” you may request that your personal data be deleted where no longer necessary or where you withdraw consent.
– Right to Restriction: You have the right to request the restriction of processing of your personal data under certain circumstances.
– Right to Data Portability: You may request a copy of certain data in a structured, machine-readable format for your own use or transfer to another provider.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement a range of technical and organizational security measures to protect your personal data against unauthorized access, disclosure, alteration, or destruction. These measures include but are not limited to:
– Encryption of data in transit and at rest
– Role-based access control and multi-factor authentication
– Firewalls and intrusion detection systems
– Regular security audits and vulnerability scans
– Staff training in privacy and data protection
– Regular backups and disaster recovery protocols
7. International Data Transfers
Where we transfer personal data outside the European Economic Area (EEA) or your local jurisdiction, such transfers are conducted in accordance with applicable data protection laws. We utilize Standard Contractual Clauses approved by the European Commission and other appropriate safeguards to ensure an adequate level of protection for your data.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including compliance with legal, accounting, or reporting requirements. The retention timeframe depends on the following:
– Account and Profile Data: Retained for as long as your account remains active or as needed to provide services.
– Transaction and Communication Data: Retained for up to 7 years for record-keeping and regulatory compliance.
– Technical and Usage Data: Retained for up to 24 months for diagnostics, performance analytics, and service improvement.
– Marketing Preference Data: Retained until you withdraw your consent or opt out of communications.
9. Cookie Policy
Our Website uses cookies and similar tracking technologies to enhance user experience and improve Website functionality. Categories include:
– Essential Cookies: Necessary for the Website to function and cannot be switched off in our systems.
– Functional Cookies: Enable personalization and retain user preferences across sessions.
– Analytics Cookies: Collect aggregated data on Website usage to improve performance and user experience.
– Performance Cookies: Monitor performance metrics such as loading speed and error rates.
See our Cookie Management section below for more information on controlling and disabling cookies.
10. Cookie Management and Compliance
To comply with GDPR and CCPA, we provide mechanisms for users to manage cookie preferences. On initial visit to blackbirdplay.com, users are presented with a cookie consent banner allowing them to opt in or opt out of non-essential cookies. Users can modify their preferences at any time through the cookie settings available on the Website.
You may also configure your browser settings to reject cookies or notify you when they are set. Note that disabling certain cookies may affect your overall Website experience.
11. Children’s Privacy
Protecting the privacy of children is of paramount importance. Our Website is not intended for or directed to children under the age of 13. We do not knowingly collect or process personal information from children under 13. If we become aware that we have inadvertently collected such data, we will promptly delete it. Parents or guardians who believe that we may have collected data from a child under 13 should contact us at [email protected].
12. Policy Updates and User Notifications
We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. Any material changes will be communicated to users through the Website or directly, where appropriate. Continued use of blackbirdplay.com following changes indicates your acceptance of the updated policy.
13. Contact
If you have any questions, concerns, or requests regarding this Privacy Policy or our handling of your personal data, please contact us at:
Email: [email protected]
We are committed to protecting your privacy and ensuring that your data is handled in a transparent, secure, and lawful manner. We encourage all users to reach out with any privacy-related inquiries or concerns regarding the processing of their personal data through blackbirdplay.com.