Privacy Policy

This privacy policy is for use of the JooJoo Creative website – www.joojoocreative.com - and served by JooJoo Creative, 168 Church Rd, Brighton BN3 2DL and governs the privacy of its users who choose to use it. It explains how we comply with the GDPR (General Data Protection Regulation), the DPA (Data Protection Act) [pre GDPR enforcement] and the PECR (Privacy and Electronic Communications Regulations).

This policy will explain areas of this website that may affect your privacy and personal details, how we process, collect, manage and store those details and how your rights under the GDPR, DPA & PECR are adhere to.

Additionally it will explain the use of cookies or software, advertising or commercial sponsorship from third parties and the download of any documents, files or software made available to you (if any) on this website. Further explanations may be provided for specific pages or features of this website in order to help you understand how we, this website and its third parties (if any) interact with you and your computer / device in order to serve it to you. Our contact information is provided if you have any questions.

The DPA & GDPR May 2018

We and this website complies to the DPA (Data Protection Act 1998) and already complies to the GDPR (General Data Protection Regulation) which comes into effect from May 25th 2018.
We will update this policy accordingly after the completion of the UK's exit from the European Union.

Our Details

The data controller and data officer for JooJoo Creative is Jen Wallace. You can contact her in writing to The Ironworks, 30 Cheapside, Brighton, BN1 4GD, by email support@joojoocreative.com or phone 01272 252622.

Our Company number is 08263936 and VAT number is 139 7219 83. Our company registered address is 168 Church Rd, Brighton BN3 2DL.

If you have any questions about how we deal with your data please get in touch with Jen on the details above.

Information that we collect

Use of Cookies
This website uses cookies to better the users experience while visiting the website. As required by legislation, where applicable this website uses a cookie control system, allowing the user to give explicit permission or to deny the use of /saving of cookies on their computer / device.

What are cookies?
Cookies are small files saved to the user's computers hard drive that track, save and store information about the user's interactions and usage of the website. This allows the website, through its server to provide the users with a tailored experience within this website.

Users are advised that if they wish to deny the use and saving of cookies from this website on to their computers hard drive they should take necessary steps within their web browsers security settings to block all cookies from this website and its external serving vendors or use the cookie control system if available upon their first visit.
You can use the Cookie Tool to select which Cookies you want to accept and to better understand them.

Below you will find a list of all cookies:

Category: Necessary (3)
Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.
COOKIE NAME PROVIDER TYPE EXPIRY
CookieConsent joojoocreative.com HTTP 1 year
Cookie purpose description: Stores the user's cookie consent state for the current domain
Initiator: Script tag, page source line number 7
Source: https://consent.cookiebot.com/uc.js
Data is sent to: Ireland (adequate)
csrftoken instagram.com HTTP 1 year
Cookie purpose description: Helps prevent Cross-Site Request Forgery (CSRF) attacks.
Data is sent to: United States (adequate)
PHPSESSID joojoocreative.com HTTP Session
Cookie purpose description: Preserves user session state across page requests.
Initiator: Script tag, page source line number 468
Source: https://www.joojoocreative.com/?twiget-get-tweets=1
Data is sent to: United Kingdom (adequate)
Category: Preferences (1)
Preference cookies enable a website to remember information that changes the way the website behaves or looks, like your preferred language or the region that you are in.
COOKIE NAME PROVIDER TYPE EXPIRY
lang cdn.syndication.twimg.com HTTP Session
Cookie purpose description: Remembers the user's selected language version of a website
Data is sent to: United States (adequate)
Category: Statistics (4)
Statistic cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.
COOKIE NAME PROVIDER TYPE EXPIRY
_ga joojoocreative.com HTTP 2 years
Cookie purpose description: Registers a unique ID that is used to generate statistical data on how the visitor uses the website.
Initiator: Page source line number 92-101
Source: Inline script
Data is sent to: United Kingdom (adequate)
_gat joojoocreative.com HTTP Session
Cookie purpose description: Used by Google Analytics to throttle request rate
Initiator: Page source line number 92-101
Source: Inline script
Data is sent to: United Kingdom (adequate)
_gid joojoocreative.com HTTP Session
Cookie purpose description: Registers a unique ID that is used to generate statistical data on how the visitor uses the website.
Initiator: Page source line number 92-101
Source: Inline script
Data is sent to: United Kingdom (adequate)
vuid vimeo.com HTTP 2 years
Cookie purpose description: Collects data on the user's visits to the website, such as which pages have been read.
Initiator: Iframe, page source line number 174
Source: https://player.vimeo.com/video/57858464
Data is sent to: United States (adequate)
Category: Marketing (11)
Marketing cookies are used to track visitors across websites. The intention is to display ads that are relevant and engaging for the individual user and thereby more valuable for publishers and third party advertisers.
COOKIE NAME PROVIDER TYPE EXPIRY
1P_JAR google.com HTTP 29 days
Cookie purpose description: Unclassified
Initiator: Script tag
Source: http://www.joojoocreative.com/
Data is sent to: Netherlands (adequate)
collect google-analytics.com Pixel Session
Cookie purpose description: Used to send data to Google Analytics about the visitor's device and behaviour. Tracks the visitor across devices and marketing channels.
Data is sent to: United States (adequate)
CONSENT google.com HTTP 7170 days
Cookie purpose description: Unclassified
Initiator: Script tag
Source: http://www.joojoocreative.com/
Data is sent to: Netherlands (adequate)
GPS youtube.com HTTP Session
Cookie purpose description: Registers a unique ID on mobile devices to enable tracking based on geographical GPS location.
Data is sent to: United States (adequate)
i/jot/syndication twitter.com Pixel Session
Cookie purpose description: Unclassified
Data is sent to: United States (adequate)
NID google.com HTTP 6 months
Cookie purpose description: Registers a unique ID that identifies a returning user's device. The ID is used for targeted ads.
Initiator: Script tag
Source: http://www.joojoocreative.com/
Data is sent to: Netherlands (adequate)
PREF youtube.com HTTP 8 months
Cookie purpose description: Registers a unique ID that is used by Google to keep statistics of how the visitor uses YouTube videos across different websites.
Initiator: Iframe, page source line number 241
Source: https://www.youtube.com/embed/me4ymg_vnoe
Data is sent to: United States (adequate)
rur instagram.com HTTP Session
Cookie purpose description: Unclassified
Data is sent to: United States (adequate)
urlgen instagram.com HTTP Session
Cookie purpose description: Unclassified
Data is sent to: United States (adequate)
VISITOR_INFO1_LIVE youtube.com HTTP 179 days
Cookie purpose description: Tries to estimate the users' bandwidth on pages with integrated YouTube videos.
Initiator: Iframe, page source line number 241
Source: https://www.youtube.com/embed/me4ymg_vnoe
Data is sent to: United States (adequate)
YSC youtube.com HTTP Session
Cookie purpose description: Registers a unique ID to keep statistics of what videos from YouTube the user has seen.
Initiator: Iframe, page source line number 241
Source: https://www.youtube.com/embed/me4ymg_vnoe
Data is sent to: United States (adequate)
Category: Unclassified (3)
Unclassified cookies are cookies that we are in the process of classifying, together with the providers of individual cookies.
COOKIE NAME PROVIDER TYPE EXPIRY
_c;;i joojoocreative.com HTML Persistent
Cookie purpose description: Unclassified
Initiator: Inline script, page source line number 92-101
Source:
Data is sent to: United Kingdom (adequate)
dml;;ssv joojoocreative.com HTML Persistent
Cookie purpose description: Unclassified
Initiator: Inline script, page source line number 92-101
Source:
Data is sent to: United Kingdom (adequate)
tplis_cl_cookie_policy_accepted joojoocreative.com HTTP 19 days
Cookie purpose description: Unclassified
Initiator: Script tag
Source: http://www.joojoocreative.com/
Data is sent to: United Kingdom (adequate)

How do I turn off my Cookies?
To turn off cookies you can read instruction here: https://www.computerhope.com/issues/ch000509.htm.

Website Visitor Tracking
This website uses tracking software to monitor its visitors to better understand how they use it. The software will save a cookie to your computers hard drive in order to track and monitor your engagement and usage of the website, but will not store, save or collect personal information.
Specifically we use Google Analytics to track user behavior on site. This does not capture any personal information about the individual but monitors how the site is used i.e.: time spent, most viewed pages etc.

To learn more about the cookies that Google Analytics uses, please read this article: How Google Analytics uses Cookies.

You can opt out of this at any time using the cookie tool or by using the information above.

Web server log information
We use a third party server to host our website called Nimbus Hosting, the privacy policy of which is available here: https://www.nimbushosting.co.uk/docs/privacypolicy.pdf.

Our website server automatically logs the IP address you use to access our website as well as other information about your visit such as the pages accessed, information requested, the date and time of the request, the source of your access to our website (e.g. the website or URL (link) which referred you to our website), and your browser version and operating system.
Please read more here about Nimbus hosting and their compliance with GDPR https://www.nimbushosting.co.uk/general-data-protection-regulation/

Contact & Communication With us
Users contacting this us through this website do so at their own discretion and provide any such personal details requested at their own risk. Your personal information is kept private and stored securely until a time it is no longer required or has no use.

Where we have clearly stated and made you aware of the fact, and where you have given your express permission, we may use your details to send you products/services information through a mailing list system. This is done in accordance with the regulations named in 'The policy' above.

Our site is hosted with Nimbus Hosting - further information here https://www.nimbushosting.co.uk Their data centres are all in the EU, located in the UK.

Our email is hosted with Google (G Suite) - further information here
https://policies.google.com/privacy Their data centres are outside of the EU in the USA.

Email Mailing List & Marketing Messages
We operate an email mailing list program, used to inform subscribers about products, services and/or news we supply/publish. Users can subscribe through an online automated process where they have given their explicit permission.
Subscriber personal details are collected, processed, managed and stored in accordance with the regulations named in 'The policy' above.

Subscribers can unsubscribe at any time through an automated online service, or if not available, other means as detailed in the footer of sent marketing messages (or unsubscribe from all Mailchimp lists). The type and content of marketing messages subscribers receive is clearly outlined at the point of subscription.

Email marketing messages may contain tracked clickable links or similar server technologies in order to track subscriber activity within email marketing messages. Where used, such marketing messages may record a range of subscriber data relating to engagement, geographic, demographics and already stored subscriber data.

Our EMS (email marketing service) provider is; Mailchimp and you can read their privacy policy here https://mailchimp.com/legal/privacy/
Their data centres are outside of the EU in the USA.

Phone
We don’t record calls but we do have a record of when calls are made and their duration.

We use Skype for our phone calls. You can read their privacy policy here https://www.skype.com/en/legal/

Post
If you contact us by post, we will collect any information you provide to us in any postal communications you send us.

We will contact you on your preferred method. You can opt out of communications at any time by emailing us support@joojoocreative.com

Legal basis for processing: our legitimate interests (Article 6(1)(f) of the General Data Protection Regulation)
Legitimate interest(s): responding to enquiries and messages we receive and keeping records of correspondence.

Interaction with our website

Downloads & Media Files
Any downloadable documents, files or media made available on this website are provided to users at their own risk. While all precautions have been undertaken to ensure only genuine downloads are available users are advised to verify their authenticity using third party anti virus software or similar applications.
We accept no responsibility for third party downloads and downloads provided by external third party websites and advise users to verify their authenticity using third party anti virus software or similar applications.

External Website Links & Third Parties
Although we only look to include quality, safe and relevant external links, users are advised to adopt a policy of caution before clicking any external web links mentioned throughout this website.

Shortened URL's; URL shortening is a technique used on the web to shorten URL's (Uniform Resource Locators) to something substantially shorter. This technique is especially used in social media and looks similar to this (example: http://bit.ly/zyVUBo). Users should take caution before clicking on shortened URL links and verify their authenticity before proceeding.

We cannot guarantee or verify the contents of any externally linked website despite our best efforts. Users should therefore note they click on external links at their own risk and we cannot be held liable for any damages or implications caused by visiting any external links mentioned.

Social Media Policy & Usage
We adopt a Social Media Policy to ensure our business and our staff conduct themselves accordingly online. While we may have official profiles on social media platforms users are advised to verify authenticity of such profiles before engaging with, or sharing information with such profiles. We will never ask for user passwords or personal details on social media platforms. Users are advised to conduct themselves appropriately when engaging with us on social media.

There may be instances where our website features social sharing buttons, which help share web content directly from web pages to the respective social media platforms. You use social sharing buttons at your own discretion and accept that doing so may publish content to your social media profile feed or page. You can find further information about some social media privacy and usage policies in the resources section below.

Sharing of your information with third parties

We use a number of third parties to provide us with services which are necessary to run our business or to assist us with running our business and who process your information for us on our behalf.

Your information will be shared with these service providers where necessary to provide you with the service you have requested, whether that is accessing our website or ordering goods and services from us.

We do not display the identities of our service providers publicly by name for security and competitive reasons. If you would like further information about the identities of our service providers, however, please contact us directly via our contact form or by email and we will provide you with such information where you have a legitimate reason for requesting it (where we have shared your information with such service providers, for example).

Hosting: Nimbus Hosting - Privacy Policy: https://www.nimbushosting.co.uk/docs/privacypolicy.pdf

Email: Google- Privacy Policy: https://policies.google.com/privacy

Phone: Skype - Privacy Policy: https://www.skype.com/en/legal/

Email Marketing: Mailchimp - Privacy Policy: https://mailchimp.com/legal/privacy/

Project Management: Basecamp - Privacy Policy: https://basecamp.com/about/policies/privacy

We disclose your information to other third parties in specific circumstances. These third parties include our accountants, business partners, independent contractors etc. We do not display the identities of all the other third parties we may share information with by name for security and competitive reasons. If you would like further information about the identities of such third parties, however, please contact us directly via our contact form or by email and we will provide you with such information where you have a legitimate reason for requesting it (where we have shared your information with such third parties, for example).

If we suspect that criminal or potential criminal conduct has been occurred, we will in certain circumstances need to contact an appropriate authority, such as the police. This could be the case, for instance, if we suspect that we fraud or a cyber crime has been committed or if we receive threats or malicious communications towards us or third parties.

We will generally only need to process your information for this purpose if you were involved or affected by such an incident in some way.

We may share the information we collect as follows:

  • Related to Business Transfers. If we are acquired by or merged with another company, if all or a portion of our assets are transferred to another company, or as part of a bankruptcy proceeding, we may transfer the information we have collected from you to the other company.
  • In Response to Legal Process. We may also disclose user information to comply with the law, a judicial proceeding, court order, or other legal process, such as in response to a court summons.
  • To Protect Us and Others. We also may disclose user information where we believe it is necessary to investigate, prevent, or take action regarding illegal activities, suspected fraud, situations involving potential threats to the safety of any person, violations of our Terms of Use or this Policy, or as evidence in litigation in which JooJoo is involved.

Legal basis for processing: legitimate interests (Article 6(1)(f) of the General Data Protection Regulation).

Legitimate interest relied on: where we share your information with these third parties in a context other than where is necessary to perform a contract (or take steps at your request to do so), we will share your information with such third parties in order to allow us to run and manage our business efficiently.

How we secure your information

We take appropriate technical and organisational measures to secure your information and to protect it against unauthorised or unlawful use and accidental loss or destruction, including:

  • only sharing and providing access to your information to the minimum extent necessary, subject to confidentiality restrictions where appropriate, and on an anonymised basis wherever possible;
  • using secure servers to store your information
  • verifying the identity of any individual who requests access to information prior to granting them access to information;
  • using Secure Sockets Layer (SSL) software to encrypt any information you submit to us via any forms on our website via our website;
  • only transferring your information via closed system or encrypted data transfers;

 

Sensitive Personal Information

‘Sensitive personal information’ is information about an individual that reveals their racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic information, biometric information for the purpose of uniquely identifying an individual, information concerning health or information concerning a natural person’s sex life or sexual orientation.

We do not knowingly or intentionally collect sensitive personal information from individuals, and you must not submit sensitive personal information to us.

If, however, you inadvertently or intentionally transmit sensitive personal information to us, you will be considered to have explicitly consented to us processing that sensitive personal information under Article 9(2)(a) of the General Data Protection Regulation. We will use and process your sensitive personal information for the purposes of deleting it.

Children Under 13

Our Services are not designed for children under 13. If we discover that a child under 13 has provided us with personal information, we will delete such information from our systems.

Changes to our Privacy Policy

This Policy is current as of the Effective Date set forth as May 22nd 2018.

We may change this Policy from time to time, so please be sure to check back periodically. We will post any changes to this Policy on our Site.

If we make any changes to this Policy that materially affect our practices with regard to the personal information we have previously collected from you, we will endeavour to provide you with notice in advance of such change by highlighting the change on our Site.

Resources & Further Information

March 2018