Privacy Policy
1. Introduction
Making Theatre Work (“we,” “our,” or “us”) is committed to safeguarding your privacy and protecting your personal data. Your trust is important to us, and we take our responsibility to handle your data securely and transparently with utmost seriousness. This Privacy Policy outlines how we collect, use, store, and share your personal data when you visit or interact with our website at makingtheatrework.com or contact us via [email protected]. We are dedicated to compliance with all applicable data protection laws, including the EU General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”).
2. Scope of the Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and others who access or use the website located at makingtheatrework.com. Making Theatre Work acts as the data controller for the personal data we collect, meaning we determine the purposes and methods of processing your personal information.
If you are a California resident, please see Section 10 for additional disclosures required under the CCPA. For residents of the European Economic Area, all processing of your personal information is handled in accordance with the GDPR.
3. Categories of Data We Process
We process the following categories of personal data when you engage with our services:
– Usage Data: This includes data on how you use the makingtheatrework.com website, such as IP addresses, browser type and version, pages viewed, length of visits, referring URLs, and other information regarding activity on the site.
– Account Data: If you create an account or register on our platform, we may collect your name, address, email address, and phone number.
– Profile Data: Includes your preferences, order history, engagement behaviors, and other data related to your interaction with our services and content.
– Communication Data: This includes any communication you send to us via contact forms, chat, emails (including support or general inquiries submitted to [email protected]), or other channels. We maintain a log of support queries, responses, and conversation contents for service quality and legal purposes.
– Technical Data: Data about your device type, operating system, screen resolution, language settings, and hardware identifier are automatically collected to ensure a secure and optimized user experience.
– Transaction Data: This includes information related to purchases or donations you make through our website, such as billing details, shipping/delivery information, and payment confirmation.
– Preference Data: Includes your marketing preferences, consents to communication, and declared interests concerning services, events, or projects offered through makingtheatrework.com.
4. Legal Bases for Processing Personal Data
We only process your personal data where the law permits us to do so. The main legal grounds include:
– Consent: We rely on your explicit consent for sending marketing communications or using non-essential cookies.
– Contractual Necessity: When processing is required to enter into or fulfill a contract with you, such as delivering products, services, or information you request.
– Legitimate Interests: We may process personal data where it is reasonably necessary for our legitimate interests, provided they do not override your interests or fundamental rights. This may include site analytics, security measures, and fraud prevention.
– Legal Obligation: When required to comply with a legal or regulatory obligation, such as responding to a lawful request by public authorities.
5. Your Rights Under GDPR and CCPA
You have the following rights with respect to your personal data:
– Right of Access: You may request confirmation and a copy of the personal data we hold about you.
– Right of Rectification: You can request that inaccurate or incomplete data be corrected or updated.
– Right to Erasure: In certain cases, you can request deletion of your personal data, also known as the “right to be forgotten.”
– Right to Restrict Processing: You may request that processing of your data be limited, in particular if the accuracy of data is contested or processing is unlawful.
– Right to Data Portability: You may request to receive your data in a structured, commonly used, and machine-readable format, and have it transferred to another provider.
Under the CCPA, California residents also have the right to:
– Know what personal data is being collected, disclosed, or sold;
– Opt-out of sale of personal data (Note: we do not sell personal data);
– Equal service and price, even if exercising privacy rights.
To exercise any of the above rights, please contact us at [email protected]. We will respond promptly and in accordance with applicable laws.
6. Security Measures
We enforce industry-standard security protocols to manage and protect your data, including:
– Data encryption during transit (SSL/TLS);
– Secure servers with restricted access;
– Strict access control and role-based permissions;
– Regular system updates and vulnerability assessments;
– Employee privacy training and confidentiality protocols;
– Scheduled backups and disaster recovery procedures.
We continuously evaluate our systems to ensure your information remains protected.
7. International Transfers
Personal data collected on makingtheatrework.com may be processed in, transferred to, and stored outside your country of residence, including countries that may not offer equivalent levels of data protection. In such instances, we use Standard Contractual Clauses or rely on adequacy decisions issued by the European Commission to protect your data in compliance with GDPR requirements.
8. Data Retention
We retain personal data no longer than necessary for the purposes for which it was collected, in accordance with our internal data retention schedules. The standard timeframes for retention include:
– Usage Data: Up to 24 months;
– Account and Profile Data: Retained for the life of the user account and for 6 months thereafter unless required for legal obligations;
– Transaction Data: Retained for a minimum of 7 years for financial compliance;
– Communication Data: Retained for 24 months to support request resolution and quality assurance;
– Preference Data: Retained until you withdraw consent or delete your profile.
9. Cookie Policy
We use cookies and similar tracking technologies on makingtheatrework.com to enable core functionality, improve your user experience, and gather analytics. Cookies we use include:
– Essential Cookies: Necessary for basic website functionality (e.g., login, security);
– Functionality Cookies: Enable enhanced features such as remembering user preferences;
– Analytics Cookies: Help us understand user behavior and improve site performance;
– Performance Cookies: Measure website traffic sources and engagement levels.
10. Cookie Management and Compliance
When you first visit makingtheatrework.com, you will be prompted to consent to or reject non-essential cookies. You may also manage your cookie preferences at any time through our cookie management tool or by adjusting your browser settings.
Under GDPR, we require your informed consent for placing cookies, except for those strictly necessary. Under CCPA, we honor “Do Not Track” signals and provide opt-out mechanisms where applicable.
11. Special Protections for Children Under 13
Our website and services are not intended for children under the age of 13, and we do not knowingly collect personal data from individuals in this age group. If we become aware that personal information of a child under 13 has been collected without parental consent, we will take immediate steps to delete such data from our systems.
12. Policy Updates and User Notifications
We reserve the right to amend this Privacy Policy at our discretion and at any time. When changes are made, we will revise the policy on makingtheatrework.com, and notify users via a prominent site notice or direct contact where required by law. Continued use of the website following such changes signifies your acceptance of the updated terms.
13. Contact Us
If you have questions, concerns, or wish to exercise any of your data rights, you may contact us at:
We are committed to resolving privacy concerns in a fair and transparent manner. If you are not satisfied with our response, you may lodge a complaint with your local data protection authority.
We at Making Theatre Work affirm our ongoing commitment to full compliance with international privacy regulations. For any privacy-related questions or to exercise your rights, please contact us directly at [email protected].