beta version
Copyright © 2024
Updated at 02 December 2023
This website or mobile application (the “Platform”) you are now visiting is owned and operated by Guestartist (“us”, “we”, or “our”). When we process your personal data on our Platform; market to you; provide services or products to you; when you create an account on our Platform; or when we communicate with you, we are your data controller and your point of contact.
We process your personal data with the purposes of marketing to you, offering you various tattoo related services and products, and communicating with you.
Marketing from us
If you consent to receiving direct marketing from us, our processing of your personal data will be based on the GDPR Article 6(1)(a).
Creation of an account and a public profile
When you create an account and a public profile on our Platform, we process your personal data for us to fulfil our part of the contract as intermediary; in this case, the processing is based on the GDPR Article 6(1)(b). We DO NOT publish your email address on your public profile.
Various communication
In any other cases, such as in case you might contact us for further inquiries, if you wish to complain, etc., we will process your personal data with the purposes of establishing, exercising or defending legal claims, where we are following a legitimate purpose where our legitimate interests override your interests or fundamental rights and freedoms. The processing will then be based on the GDPR Article 6(1)(f).
Using our Platform
When using our Platform, we process your personal data using cookie technology which entails the use of necessary cookies, statistic cookies and marketing cookies. Our processing of cookies is based on your consent and on the GDPR Article 6(1)(a). When we share cookie information with the purpose of remarketing to you on other platforms (social media, websites, apps, etc.) we follow a legitimate purpose where our legitimate interests override your interests or fundamental rights and freedoms and where the processing is based on the GDPR Article 6(1)(f).
The use of cookies is described in more detail as set out below.
We will process ordinary personal data about you, including contact details such as name, email address, telephone number and postal addresses. The personal data is provided by you with your consent.
We use cookies in order to keep our Platform functionable, optimizable and useful for the purposes as described above. We use the following types of cookies:
Necessary Cookies. Necessary cookies help make our Platform usable by enabling basic functions like page navigation and access to secure areas of the Platform. The Platform cannot function properly without these cookies.
What are session cookies?
Session cookies are cookies that last for a session. A session starts when you launch a website or web app and ends when you leave the website or close your browser window. Session cookies contain information that is stored in a temporary memory location which is deleted after the session ends. Unlike other cookies, session cookies are never stored on your device. Therefore, they are also known as transient cookies, non-persistent cookies, or temporary cookies.
How do session cookies work?
The session cookie is a server-specific cookie that cannot be passed to any machine other than the one that generated the cookie. The server creates a “session ID” which is a randomly generated number that temporarily stores the session cookie. This cookie stores information such as the user’s input and tracks the movements of the user within the website. There is no other information stored in the session cookie.
What is the purpose of session cookies?
A website itself cannot track a user’s movement on its webpage and treats each new page request as a new request from a new user. Session cookies allow websites to remember users within a website when they move between web pages. These cookies tell the server what pages to show the user so the user doesn’t have to remember where they left off or start navigating the site all over again. Therefore, without session cookies, websites have no memory. Session cookies are vital for user experience on online shops and websites when the functionalities depend on users’ activities.
Are session cookies GDPR compliant?
Session cookies fall under the categorization of strictly necessary cookies under the General Data Protection Regulation (GDPR), applicable in the European Union and the UK. Strictly necessary cookies like session cookies are exempt from the consent requirements underlined in the GDPR. Therefore, session cookies are GDPR compliant.
Do you need consent for session cookies?
As session cookies are set by the first party (the website https://guestartist.com you visit) and are necessary to keep track of your navigation through the website and remember user inputs, they do not require consent under GDPR. Websites can set session cookies on a user’s device without consent but should provide information on what these cookies do and why they are necessary.
We do not sell, rent, or otherwise disclose your personal data to others for their independent use, except when expressly required by law or if deemed necessary in relation to the purposes as described above.
Generally, we will keep your personal data only for as long as you have an active account on our Platform and/or as long as you have consented to receive direct marketing from us. Subsequently, we will process the personal data for an unlimited period, until you request a profile and/or account deletion.
We choose to use vendors deploying security according to best industry practices, and we only use encrypted data communication when transferring confidential or sensitive personal data. This includes, when required or appropriate and feasible, obtaining written assurances from third parties that may access your personal data that they will protect the data with safeguards designed to provide a level of protection equivalent to that adopted by us.
However, no data system can be a 100% secure. Hence, we cannot guarantee the absolute security of your data. Moreover, we are not responsible for the security of the data you transmit to us over networks that we do not control, including the Internet and wireless networks.
Under chapter III of the GDPR, you have several rights in relation to our processing of your data.
You have the following rights:
Your rights may be subject to conditions or restrictions. Accordingly, there is no certainty that you will be entitled to, for example, data portability in the specific situation; or to have your personal data erased; it will depend on the circumstances of the processing.
You can always lodge a complaint with a data protection authority, and you can read more about your rights in the English Data Protection Agency’s guidelines on the data subjects’ rights, which is available at www.gov.uk/data-protection.
If you would like to contact us with questions about our privacy and data protection practices, or you simply want to opt out of receiving marketing material from us, please use form available on contact page.
In your request, please specify your identity and to what your request pertains. We will require you to document your identity if this is not sufficiently done in your initial request.
beta version
Copyright © 2024