What we need
We collect information you provide us when you purchase from us, register to attend one of our events or subscribe to our mailing list. This information might include your name, address, email address, phone number and other information relevant to the event or service that you’re registering for.
Why we need it
We need to know basic personal data in order to update you with relevant information about our products, sales and upcoming events that you have engaged us to provide. If you do not provide this information, we will be unable to keep you updated as per your request.
How we look after it
We do not, and will not, sell any of your personal data to any third party – including your name, address or email address. We want to earn and maintain your trust, and we believe this is absolutely essential in order to do that.
By the definitions of GDPR, Accha Ltd. and on form is the ‘controller’ of your data, the organisation MailChimp is the ‘processor’ of your data. Subscribers personal details will be transferred to MailChimp, the applicable activities performed by MailChimp are: data collection through electronic sign up forms, storage of personal data in distribution lists and the transfer of personal data to certain of MailChimp’s sub-processors, who perform critical support for their services. Mailchimp’s servers and offices are located in the United States, so your information may be transferred to, stored, or processed in the United States. The legal ground for transferring personal data set out in the GDPR allows for an ‘adequacy decision’ – a decision by the European Commission that an adequate level of protection exists for personal data in the country, territory or organisation to which it is being transferred. A ‘Privacy Shield’ framework is one such example. MailChimp participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework and the Swiss-U.S Privacy Shield Framework. They are committed to subjecting all Personal Information received from European Union (EU) member countries and Switzerland, respectively, in reliance on each Privacy Shield Framework, to the Framework’s applicable Principles.
How long we keep it for
We will retain your information for as long as is necessary to provide you with the products or services that you have requested from us, or for as long as the law otherwise permits. Where you have not participated, attended or registered to attend or participate in one of our events, or otherwise engaged with us in seven years, we will contact you to reconfirm your subscription, unless we have an obligation to retain it for longer (for example for taxation purposes).