Your legal rights
Under the GDPR, you have the following rights, which we will always work to uphold:
Further information about your rights can also be obtained from the Information Commissioner’s Office or your local Citizens Advice Bureau.
If you have any cause for complaint about our use of your personal data, you have the right to lodge a complaint with the Information Commissioner’s Office.
Information we may collect about you
We may collect the following data, which includes personal data from you:
How we use your information about you
Under the GDPR, we must always have a lawful basis for using personal data. This may be because the data is necessary for our performance of a contract with you, because you have consented to our use of your personal data, or because it is in our legitimate business interests to use it. Your personal data may be used for one of the following purposes:
Sharing your information
We may share your personal information with selected third parties, although it is likely that the exact identity of the third parties with whom we share your personal information will change during your relationship with us. Depending on that relationship, it is anticipated that your personal information will be disclosed to the following categories of third parties:
Accessing, reviewing, updating and modifying personal data
You may request to access, rectify or erase your Personal Data. You have the right to object to the processing of your Personal Data, restrict the processing of your Personal Data and exercise your right to data portability. Where you have given us your consent for our use of your Personal Data, you have the right to withdraw your consent at any time and we will apply your preferences for the future. We will respond to your questions or complaints relating to the processing of your Personal Data. If you are not satisfied with our responses, you have the right to lodge a complaint with a supervisory authority.
How we protect and retain personal data
We maintain administrative, technical and physical safeguards designed to protect the Personal Data we have about you against accidental, unlawful or unauthorized destruction, loss, alteration, access, disclosure or use. We make reasonable efforts to ensure a level of security appropriate to the risk of the processing, taking into account the costs of implementation and nature of the processing of Personal Data.
We retain Personal Data for the period needed to fulfill the purposes for which Personal Data was collected and as otherwise required or permitted by applicable law, such as in relation to our record retention obligations.
The Services may be hosted in and managed from a country outside the country in which you initially provided the information, including the United States. When your Personal Data is transferred to (or accessed from) a country outside the European Economic Area (“EEA”) for which the European Commission has not issued an adequacy decision, we will implement appropriate safeguards to ensure that your Personal Data remains protected. This may include data transfer agreements, a copy of which you can obtain by contacting us as indicated in the Contact Us Section below.
However, your Personal Data may be accessed by the courts, law enforcement and national security authorities of the recipient country in accordance with applicable law. When we transfer your Personal Data, we will protect that information as described in this Privacy Notice.
Links to other websites
Our website contains links to other websites, for example to enable you to “buy” or “download” books from third party retailers. Please be aware that this Privacy Notice does not apply to such websites and that we are not responsible for your information that third parties may collect through these websites. We encourage you to be aware of this when you leave our website, and to read the privacy and cookie policies of other sites that collect or use personal information.