
Bringing The Magic Of
S. T. E. A. M
To Media
Ad Astra Media, LLC
Privacy Policy
Privacy Policy
We at Ad Astra Media, LLC (“AAM,” “we,” “us,” or “our”) created this privacy policy (“Privacy Policy”) because we know that you care about how information you provide to us is used and shared. This Privacy Policy relates to the information collection and use practices of AAM in connection with our online services (the “Services”), which are made available to you through our website located at https://www.adastrasteammedia.com/ (the “Site”).
We strive to educate parents and kids about how to appropriately safeguard their privacy when using our Services. We are committed to complying with the Children’s Online Privacy Protection Act of 1998 (“COPPA”), which requires us to inform parents and legal guardians about our information collection and use practices. COPPA also requires that we obtain parental consent before we allow children under the age of 13 to access and/or use our Services. We urge kids to check with their parents before entering information through our Site and/or Services, and we recommend that parents discuss with their kids restrictions regarding the online release of Personal Information (as defined below) to anyone they don’t know.
By visiting our Site and/or using our Services, or by permitting your child to use our Services, you are agreeing to the terms of this Privacy Policy and the accompanying Terms of Use. Capitalized terms not defined in this Privacy Policy shall have the meaning set forth in our Terms of Use.
1. Information We Collect.
Personal Information
We do not collect any personal information from you unless you voluntarily provide it to us.
When you sign up to become a user of the Site (a “User”), you will be asked to provide us with certain personal information, such as your first name, last name, and email address. In this Privacy Policy, we refer to this information as “Personal Information.” Other than the online contact information required to obtain parental consent, we do not collect any Personal Information from Users under the age of 13 unless the User’s parent or legal guardian has first provided us with consent for that User to use the Services and disclose Personal Information to us. If you are a User under the age of 13, please do not send any Personal Information to us if we have not obtained prior consent from your parent or guardian. If we learn we have collected Personal Information from a User under the age of 13 without parental consent, or if we learn a User under the age of 13 has provided us Personal Information beyond what we request from him or her, we will delete that information as quickly as possible. If you believe that a User under the age of 13 may have provided us Personal Information in violation of this Privacy Policy, please contact us at info@adastrasteammedia.com.
Usage Information
Like most websites, we use automatic data collection technology when you visit the Site to record information that identifies your computer, to track your use of our Site, and to collect certain basic information about you and your surfing habits. This information includes information about your operating system, your IP addresses, browser type and language, referring and exit pages and URLs, keywords, date and time, amount of time spent on particular pages, what sections of a website you visit, and similar information concerning your use of the Site and the Services (the “Usage Information”).
We collect this Usage Information by using cookies and pixel tags (also called web beacons or clear gifs). Cookies are small packets of data that a website stores on your computer’s hard drive so that your computer will “remember” information about your visit. Clear gifs are tiny graphics with a unique identifier, similar in function to cookies, and are used to track the online movements of website users. You can reject cookies by following the directions provided in your Internet provider’s “help” file. If you reject cookies, you may still visit the Site, but may not be able to use some areas of the Site and/or the Services.
We do not collect Personal Information in this way, but if you’ve provided us with Personal Information, we may associate that information with the information that is collected automatically. Automatic data collection may be performed on our behalf by our services providers.
2. How We Use Your Information. We may use your Personal Information and Usage Information in a manner that is consistent with this Privacy Policy and the context of our relationship with you. We will use your Personal Information and Usage Information collected through the Site for the following purposes:
(a) To identify you when you sign in to your account;
(b) To respond to your requests and to provide you with the Services;
(c) To respond to your inquiries and contact you about changes to the Site and/or the Services;
(d) To send you notices (for example, in the form of e-mails, mailings, and the like) regarding products or services you are receiving, and for billing and collection purposes;
(e) To send you information we think you may find useful or that you have requested from us;
(f) To enhance and improve the Site or the Service, such as through personalized features and content;
(g) To analyze the use of the Site and the Service and the people visiting to improve our content and Site and the Service;
(h) To investigate, prevent, or take action regarding illegal activities, suspected fraud, situations involving potential threats to the physical safety of any person, violations of our policies, or as otherwise required by law;
(i) For any other purposes disclosed at the time the information is collected or to which you consent; and
(j) As otherwise specifically described in this Privacy Policy.
3. Disclosure of Personal Information to Third Parties. We do not disclose your Personal Information to third parties for their direct marketing purposes.
We, like many businesses, sometimes hire other companies to perform certain business-related functions. Examples include mailing information, maintaining databases, hosting services, and processing payments. When we employ another company to perform a function of this nature, we provide them with the information that they need to perform their specific function, which may include Personal Information.
If we or all or substantially all of our assets are acquired, we expect that the information that we have collected, including Personal Information, would be transferred along with our other business assets.
We may disclose your Personal Information and Usage Information to government authorities and to other third parties when compelled to do so by government authorities, at our discretion, or otherwise as required by law, including but not limited to in response to court orders and subpoenas. We may also disclose your Personal Information and Usage Information when we have reason to believe that someone is or may be causing injury to or interference with our rights or property, other users of this Site, or anyone else that could be harmed by such activities.
4. How We Protect Your Information. We take commercially reasonable steps to protect the Personal Information from loss, misuse, and unauthorized access, disclosure, alteration, or destruction. Please understand, however, that no security system is impenetrable. We cannot guarantee the security of our databases, nor can we guarantee that the information you supply will not be intercepted while being transmitted to and from us over the Internet. In particular, e-mail sent to or from us may not be secure, and you should therefore take special care in deciding what information you send to us via e-mail.
5. Accessing and Modifying Account Information. You may update the information that is stored in your user account by visiting or by e-mailing us at .
We strive to help parents ensure that their kids have a safe experience using our Services. Parents or legal guardians can review any Personal Information collected about their child under 13 years of age, have this information deleted, request that there be no further collection or use of their child’s Personal Information, and/or allow for our collection and use of their child’s Personal Information while withholding consent for us to disclose it to third parties. We take steps to verify the identity of anyone requesting information about a child and to ensure that the person is in fact the child’s parent or legal guardian.
6. Your Choices. If you wish to stop receiving promotional e-mails, you may do so by visiting or by e-mailing . You may also choose to unsubscribe from our e-mails by following the instructions in the bottom of the email.
7. Links. The Site may contain content, services, advertising and other materials that link to websites operated by third parties. We have no control over those other sites, and this Privacy Policy does not apply to them. Please refer to the privacy policies of those sites for more information on how the operators of those sites collect and use your Personal Information.
8. California Privacy Rights: Shine the Light Law. Under California Civil Code Section 1798.83, California residents who have an established business relationship with us may choose to opt out of our sharing their contact information with third parties for direct marketing purposes. If you are a California resident and you wish to opt out, please send an e-mail to info@adastrasteammedia.com.
9. California Privacy Law: Do Not Track. We do not monitor, recognize, or honor any opt-out or do not track mechanisms, including general web browser “Do Not Track” settings and/or signals.
10. Important Notice to Users Outside the U.S. The Site and the Services are operated in the United States. If you are located outside of the United States, please be aware that any information you provide to us will be transferred to the United States. By providing us with any information through the Site or the Services, you consent to this transfer.
11. Changes to This Privacy Policy. This Privacy Policy is effective as of the date stated at the top of this Privacy Policy. We may change this Privacy Policy from time to time and will post any changes on the Site as soon as they go into effect. By accessing the Site or using the Services after we make any such changes to this Privacy Policy, you are deemed to have accepted such changes. Please refer back to this Privacy Policy on a regular basis.
12. How to Contact Us. If you have questions about this Privacy Policy, please e-mail us at info@adastrasteammedia.com, “PRIVACY POLICY” in the subject line, or mail us at the following address: 900 Riverside DR, Newport News, Virginia 23606.
Privacy Policy
We take your privacy very seriously. Please read this privacy policy carefully as it contains important information on who we are, how and why we collect, store, use, and share your personal information. It also explains your rights in relation to your personal information and how to contact us or supervisory authorities in the event you have a complaint.
We collect, use and are responsible for certain personal information about you. When we do so we are subject to various laws in the United States and the General Data Protection Regulation which applies across the European Union (including in the United Kingdom), and we are responsible as “controller” of that personal information for the purposes of those laws.
1. Key Terms.
It would be helpful to start by explaining some key terms used in this policy:
We, Us, Our
Ad Astra Media, LLC collects, uses and is responsible for certain personal information about you.
When we do so we are regulated under the General Data Protection Regulation which applies across the European Union (including in the United Kingdom) and we are responsible as controller of that personal information for the purposes of those laws.
Our Representative
Dr Jose Morey
Founder and Chief Executive Officer
900 Riverside DR
Newport News, VA 23606
Our Data Protection Officer
Spencer Baldwin
Managing Attorney for Cerebrate Law, PLLC
4011 Goldcrest DR NW, Olympia, WA 98502
Data Protection Officer Contact
Lauren Kidd
900 Riverside DR
Newport News, VA 23606
Personal Information
Any information relating to an identified or identifiable individual
2. Personal Information We Collect About You.
We may collect and use the following personal information that identifies, relates to, describes, is reasonable capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household:
Categories of Personal Information
Specific Types of Personal Information Collected
Identifiers (e.g., a real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, social security number, driver’s license number, passport number, or other similar identifiers).
In the course of providing content to users of the website through the Chopin in Space contest, we collect the following personal information when you provide it to us:
-
School Name,
-
Instructor/Teacher's Name, and
-
Child First Name and
-
Grade Level
In obtaining consent of the Parent or guardian of minor children, such personal information will only be used for the purpose of authenticating the parent/child relationship including the child’s name, the parent’s name and their contact information.
Information that identifies, relates to, describes, or is capable of being associated with, a particular individual, including, but not limited to, his or her name, signature, social security number, physical characteristics or description, address, telephone number, passport number, driver’s license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information.
Content that is user generated content and in the course of the Chopin in Space Contest, or other Ad Astra Media, LLC services, could be in the forms of voice recording, pictorial, videographic, illustrations, or animation generated by users. The Chopin in Space Contest will use the above personal information related to school, class, instructor, grade, child first name to identify the creative works associated with those contestants and their classrooms/schools. The provision of School, Teacher, Grade, First Name is required from you to enable us to Identification of the participating school, teacher, and students in the generation of works in response to content presented to the users.
Characteristics of protected classifications under California or federal law.
We will inform you at the point of collecting information from you, whether you are required to provide the information to us.
Audio, electronic, visual, thermal, olfactory, or similar information
[specific types of information collected]
Education information, defined as information that is not publicly available personally identifiable information as defined in the Family Educational Rights and Privacy Act (FERPA)
[specific types of information collected]
Inferences drawn from any of the information identified above to create a profile about a consumer reflecting the consumer’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes
[specific types of information collected]
This personal information is required to provide [products AND/OR services] to you. If you do not provide personal information we ask for, it may delay or prevent us from providing [products AND/OR services] to you.
3. How Your Personal Information is Collected.
We collect most of this personal information directly from you—in person, by telephone, text or email and/or via our website. For children under the age of 13, we obtain Parental Consent from the parent or guardian to participate in the contest. In the process of obtaining this consent, the parent provides Ad Astra Media, LLC with the information related to their minor child.
Ad Astra Media will use the content generated by the users in furtherance of the learning experience for the pupils who participate in the educational activities. The content will be used by the company and displayed for the purpose of including/immersing subjects within the subjects that they are learning. The user's physical location, via identification of the school, classroom and geographic area, may provide additional information on the display to show who generated the content and where the content came from.
However, we may also collect information:
-
From publicly accessible sources (e.g., property records);
-
Directly from a third party (e.g., sanctions screening providers, credit reporting agencies, or customer due diligence providers);
-
From a third party with your consent (e.g., your bank);
-
From cookies on our website; and
-
Via our IT systems, including:
-
Door entry systems and reception logs;
-
Automated monitoring of our websites and other technical systems, such as our computer networks and connections, CCTV and access control systems, communications systems, email and instant messaging systems; and
-
4. How and Why We Use Your Personal Information.
Under data protection law, we can only use your personal information if we have a proper reason for doing so, e.g.,:
-
To comply with our legal and regulatory obligations;
-
For the performance of our contract with you or to take steps at your request before entering into a contract;
-
For our legitimate interests or those of a third party; or
-
Where you have given consent.
A legitimate interest is when we have a business or commercial reason to use your information, so long as this is not overridden by your own rights and interests.
The table below explains what we use (process) your personal information for and our reasons for doing so:
What We Use Your Personal Information For
Our Reasons
To provide the services on the Ad Astra LLC website.
The primary purpose of the use the information is to provide educational content related to STEAM (science, technology, engineering, arts, and math), namely AISL (advanced informal STEAM learning) providing interactivity between the viewer of the content on the website and enhancing the learning experience through the interactivity and school/classroom participation in the educational content viewing and generation of responses to the content provided to the users of the site.
To provide the Chopin in Space Contest to you we use your child’s first name, classroom, teacher, school to associate the student to their submission. We may use the user generated content on the Ad Astra Media website.
For the user generated content, including content related to the Chopin in Space Contest, information related to the school is used to identify and categorize the submission by grade level, school, and classrooms.
The teacher name is used to identify the classroom or group of students.
The student name is used to identify the work the individual created.
To prevent and detect fraud against you or Ad Astra Media, LLC.
For our legitimate interests or those of a third party, i.e. to minimize fraud that could be damaging for us and for you
Conducting checks to identify our customers and verify their identity
Screening for financial and other sanctions or embargoes
Other processing necessary to comply with professional, legal and regulatory obligations that apply to our business, e.g. under health and safety regulation or rules issued by our professional regulator
[To comply with our legal and regulatory obligations]
[Gathering and providing information required by or relating to audits, enquiries or investigations by regulatory bodies]
[To comply with our legal and regulatory obligations]
Ensuring business policies are adhered to, e.g. policies covering security and internet use
For our legitimate interests or those of a third party, i.e. to make sure we are following our own internal procedures so we can deliver the best service to you
Operational reasons, such as improving efficiency, training and quality control
For our legitimate interests or those of a third party, i.e. to be as efficient as we can so we can deliver the best service for you at the best price
Ensuring the confidentiality of commercially sensitive information
For our legitimate interests or those of a third party, i.e. to protect trade secrets and other commercially valuable information
To comply with our legal and regulatory obligations
Statistical analysis to help us manage our business, e.g. in relation to [our financial performance, customer base, product range or other efficiency measures]
For our legitimate interests or those of a third party, i.e. to be as efficient as we can so we can deliver the best service for you at the best price
Preventing unauthorized access and modifications to systems
For our legitimate interests or those of a third party, i.e. to prevent and detect criminal activity that could be damaging for us and for you
To comply with our legal and regulatory obligations
Updating [and enhancing] customer records
For the performance of our contract with you or to take steps at your request before entering into a contract
To comply with our legal and regulatory obligations
For our legitimate interests or those of a third party, e.g. making sure that we can keep in touch with our customers about existing orders and new products
Statutory returns
To comply with our legal and regulatory obligations
Ensuring safe working practices, staff administration and assessments
To comply with our legal and regulatory obligations
For our legitimate interests or those of a third party, e.g. to make sure we are following our own internal procedures and working efficiently so we can deliver the best service to you
Marketing our services [and those of selected third parties] to:
¾ existing and former customers;
¾ third parties who have previously expressed an interest in our services;
¾ third parties with whom we have had no previous dealings.
For our legitimate interests or those of a third party, i.e. to promote our business to existing and former customers
[Credit reference checks via external credit reference agencies]
[For our legitimate interests or those of a third party, i.e. to ensure our customers are likely to be able to pay for our products and services]
External audits and quality checks, e.g. for ISO or Investors in People accreditation and the audit of our accounts
For our legitimate interests or a those of a third party, i.e. to maintain our accreditations so we can demonstrate we operate at the highest standards
To comply with our legal and regulatory obligations
[The above table does not apply to special category personal information, which we will only process with your explicit consent.]
5. Promotional Communications
We may use your personal information to send you updates (by email, text message, telephone or post) about our [products AND/OR services], including exclusive offers, promotions or new [products AND/OR services].
We have a legitimate interest in processing your personal information for promotional purposes (see above “How and why we use your personal information”). This means we do not usually need your consent to send you promotional communications. However, where consent is needed, we will ask for this consent separately and clearly.
We will always treat your personal information with the utmost respect and never [sell OR share] it with other organizations [outside the [organization's group name] group ]for marketing purposes.
You have the right to opt out of receiving promotional communications at any time by:
· Contacting us at [contact details for marketing opt-out];
· Using the “unsubscribe” link in emails or “STOP” number in texts; or
· [updating your marketing preferences on our [link to preference center]].
We may ask you to confirm or update your marketing preferences if you instruct us to provide further [products AND/OR services] in the future, or if there are changes in the law, regulation, or the structure of our business.
6. Who We Share Your Personal Information With
We routinely share personal information with:
Alliance for Innovation - Polish American Foundation.
About
AFI is a non-profit NGO was established to mobilize both American and Polish noble citizens and friends to strengthen cultural, scientific and business bonds between Poland and USA.
see http://alliance4innovation.org/en/
Contact
http://alliance4innovation.org/en/contact/
E-mail: contact@allianceforinnovation.org.pl
Poland
Plac Dąbrowskiego 1, 00-057 Warsaw.
Phone: +48 608 555 471
United States of America:
1243 Gateway Centre Parkway,
Richmond, VA 23235.
This data sharing enables the opportunity for the creation of joint media and other forms of artistic expression that bridges subject matter within STEAM concepts within a framework of AISL (advanced informal STEAM learning).
Some of those third-party recipients may be based outside the European Economic Area — for further information including on how we safeguard your personal data when this occurs, see Transfer of your information out of the EEA.
Our affiliates, including people within Ad Astra Media, LLC and Alliance for Innovation in Virginia;
Other third parties we use to help us run our business, such as marketing agencies or website hosts;
Third parties approved by you, including social media sites you choose to link your account to or third-party payment providers;
We only allow our service providers to handle your personal information if we are satisfied they take appropriate measures to protect your personal information.
We also impose contractual obligations on service providers relating to ensure they can only use your personal information to provide services to us and to you.
We may also share personal information with external auditors, e.g. in relation to ISO[ or Investors in People] accreditation and the audit of our accounts.
We may disclose and exchange information with law enforcement agencies and regulatory bodies to comply with our legal and regulatory obligations.
We may also need to share some personal information with other parties, such as potential buyers of some or all of our business or during a restructuring. We will typically anonymize information, but this may not always be possible. The recipient of the information will be bound by confidentiality obligations.
We will not share your personal information with any other third party.
7. Personal Information We Sold or Disclosed for a Business Purpose.
In the preceding 12 months, we have sold to one or more third parties the following categories of personal information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household:
Identifiers (e.g., a real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, social security number, driver’s license number, passport number, or other similar identifiers);
Information that identifies, relates to, describes, or is capable of being associated with, a particular individual, including, but not limited to, his or her name, signature, social security number, physical characteristics or description, address, telephone number, passport number, driver’s license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information;
Characteristics of protected classifications under California or federal law;
Commercial information (e.g., records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies);
Biometric information;
Internet or other electronic network activity information (e.g., browsing history, search history, and information regarding a consumer’s interaction with an Internet Web site, application, or advertisement);
Geolocation data;
Audio, electronic, visual, thermal, olfactory, or similar information;
Professional or employment-related information;
Education information, defined as information that is not publicly available personally identifiable information as defined in the Family Educational Rights and Privacy Act (FERPA); and
Inferences drawn from any of the information identified above to create a profile about a consumer reflecting the consumer’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.
In the preceding 12 months, we have disclosed for a business purpose to one or more third parties the following categories of personal information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household:
· Identifiers (e.g., a real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, social security number, driver’s license number, passport number, or other similar identifiers);
· Information that identifies, relates to, describes, or is capable of being associated with, a particular individual, including, but not limited to, his or her name, signature, social security number, physical characteristics or description, address, telephone number, passport number, driver’s license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information;
· Characteristics of protected classifications under California or federal law;
· Commercial information (e.g., records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies);
· Biometric information;
· Internet or other electronic network activity information (e.g., browsing history, search history, and information regarding a consumer’s interaction with an Internet Web site, application, or advertisement);
· Geolocation data;
· Audio, electronic, visual, thermal, olfactory, or similar information;
· Professional or employment-related information;
· Education information, defined as information that is not publicly available personally identifiable information as defined in the Family Educational Rights and Privacy Act (FERPA); and
· Inferences drawn from any of the information identified above to create a profile about a consumer reflecting the consumer’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.
8. Where Your Personal Information is Held
Information may be held at our offices and those of our [group companies, ]third party agencies, service providers, representatives and agents as described above (see above: “Who We Share Your Personal Information with”).
Some of these third parties may be based outside the European Economic Area. For more information, including on how we safeguard your personal information when this occurs, see below: “Transferring Your Personal Information Out of the EEA”.
9. How Long Your Personal Information Will Be Kept.
We will keep your personal information while you have an account with us or while we are providing [products AND/OR services] to you. Thereafter, we will keep your personal information for as long as is necessary:
· To respond to any questions, complaints or claims made by you or on your behalf;
· To show that we treated you fairly; or
· To keep records required by law.
We will not retain your personal information for longer than necessary for the purposes set out in this policy. Different retention periods apply for different types of personal information.[ Further details on this are available in our [set out details of records management policy and/or schedule that gives these details].]
[When it is no longer necessary to retain your personal information, we will delete or anonymize it.]
10. Transferring Your Personal Information Out of the EEA.
EEA
To deliver services to you, it is sometimes necessary for us to share your personal information outside the European Economic Area (EEA), e.g.:
· [With our offices outside the EEA;]
· With your and our service providers located outside the EEA;
· If you are based outside the EEA; or
· [Where there is an international dimension to the services we are providing to you.]
These transfers are subject to special rules under European and UK data protection law.
[The following countries to which we may transfer personal information have been assessed by the European Commission as providing an adequate level of protection for personal information: [list of countries].]
[Except for the countries listed above, these OR These] non-EEA countries do not have the same data protection laws as the United Kingdom and EEA. We will, however, ensure the transfer complies with data protection law and all personal information will be secure. Our standard practice is to use standard data protection contract clauses that have been approved by the European Commission. To obtain a copy of those clauses [details of where they have been made available (where possible providing a link to the mechanism or information].
If you would like further information, please contact [us OR] our Data Protection Officer (see “How To Contact Us” below).
United States
Such countries do not have the same data protection laws as the United Kingdom and EEA. Whilst the European Commission has not given a formal decision that such countries provide an adequate level of data protection similar to those which apply in the United Kingdom and EEA, any transfer of your personal information will be subject to a (as permitted under of the General Data Protection Regulation that are designed to help safeguard your privacy rights and give you remedies in the unlikely event of a misuse of your personal information.
If you would like further information please contact us (see “How to contact us” below). We will not otherwise transfer your personal data outside of the United Kingdom or to any organisation (or subordinate bodies) governed by public international law or which is set up under any agreement between two or more countries.
11. Your Rights Under the GDPR.
Right to Access
The right to be provided with a copy of your personal information (the right of access).
Right to Rectification
The right to require us to correct any mistakes in your personal information
Right to be Forgotten
The right to require us to delete your personal information—in certain situations
Right to Restriction of Processing
The right to require us to restrict processing of your personal information—in certain circumstances, e.g. if you contest the accuracy of the data
Right to Data Portability
The right to receive the personal information you provided to us, in a structured, commonly used and machine-readable format and/or transmit that data to a third party—in certain situations
Right to Object
The right to object:
-
at any time to your personal information being processed for direct marketing (including profiling);
-
in certain other situations to our continued processing of your personal information, e.g. processing carried out for the purpose of our legitimate interests.
-
Right Not to be Subject to Automated Individual Decision-Making
The right not to be subject to a decision based solely on automated processing (including profiling) that produces legal effects concerning you or similarly significantly affects you
For further information on each of those rights, including the circumstances in which they apply, see the Guidance from the UK Information Commissioner’s Office (ICO) on individuals' rights under the General Data Protection Regulation.
If you would like to exercise any of those rights, please:
-
Email, call, or write to us
-
Let us have enough information to identify you
Identification as parent or guardian of the person who is under the age of 18, consistent with obtaining parental consent process, provide the name of the person, school, classroom/teacher.
-
Let us have proof of your identity and address (a copy of your driving licence or passport and a recent utility or credit card bill)
-
Let us know the information to which your request relates
Identification as parent or guardian, or as the individual whose parent/guardian consented on their behalf, identification of the parent/guardian as well as first name and/or school, classroom, and teacher information.
12. Your Rights Under the CCPA.
You have the right under the California Consumer Privacy Act of 2018 (CCPA) and certain other privacy and data protection laws, as applicable, to exercise free of charge:
Disclosure of Personal Information We Collect About You
You have the right to know:
· The categories of personal information we have collected about you;
· The categories of sources from which the personal information is collected;
· Our business or commercial purpose for collecting or selling personal information;
· The categories of third parties with whom we share personal information, if any; and
· The specific pieces of personal information we have collected about you.
· Please note that we are not required to:
· Retain any personal information about you that was collected for a single one-time transaction if, in the ordinary course of business, that information about you is not retained;
· Reidentify or otherwise link any data that, in the ordinary course of business, is not maintained in a manner that would be considered personal information; or
· Provide the personal information to you more than twice in a 12-month period.
Personal Information Sold or Used for a Business Purpose
In connection with any personal information we may sell or disclose to a third party for a business purpose, you have the right to know:
The categories of personal information about you that we sold and the categories of third parties to whom the personal information was sold; and
The categories of personal information that we disclosed about you for a business purpose.
You have the right under the California Consumer Privacy Act of 2018 (CCPA) and certain other privacy and data protection laws, as applicable, to opt-out of the sale [or disclosure] of your personal information. If you exercise your right to opt-out of the sale [or disclosure] of your personal information, we will refrain from selling your personal information, unless you subsequently provide express authorization for the sale of your personal information. To opt-out of the sale [or disclosure] of your personal information, visit our homepage and click on the Do Not Sell My Personal Information link here: [URL].
Right to Deletion
Subject to certain exceptions set out below, on receipt of a verifiable request from you, we will:
· Delete your personal information from our records; and
· Direct any service providers to delete your personal information from their records.
· Please note that we may not delete your personal information if it is necessary to:
· Complete the transaction for which the personal information was collected, fulfill the terms of a written warranty or product recall conducted in accordance with federal law, provide a good or service requested by you, or reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform a contract between you and us;
· Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity; or prosecute those responsible for that activity;
· Debug to identify and repair errors that impair existing intended functionality;
· Exercise free speech, ensure the right of another consumer to exercise his or her right of free speech, or exercise another right provided for by law;
· Comply with the California Electronic Communications Privacy Act;
· Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when our deletion of the information is likely to render impossible or seriously impair the achievement of such research, provided we have obtained your informed consent;
· Enable solely internal uses that are reasonably aligned with your expectations based on your relationship with us;
· Comply with an existing legal obligation; or
· Otherwise use your personal information, internally, in a lawful manner that is compatible with the context in which you provided the information.
Protection Against Discrimination
You have the right to not be discriminated against by us because you exercised any of your rights under the CCPA. This means we cannot, among other things:
· Deny goods or services to you;
· Charge different prices or rates for goods or services, including through the use of discounts or other benefits or imposing penalties;
· Provide a different level or quality of goods or services to you; or
· Suggest that you will receive a different price or rate for goods or services or a different level or quality of goods or services.
Please note that we may charge a different price or rate or provide a different level or quality of [goods and/or services] to you, if that difference is reasonably related to the value provided to our business by your personal information.
13. Keeping Your Personal Information Secure.
We have appropriate security measures in place to prevent personal information from being accidentally lost or used or accessed in an unauthorized way. We limit access to your personal information to those who have a genuine business need to access it. Those processing your information will do so only in an authorized manner and are subject to a duty of confidentiality. [We continually test our systems and are ISO 27001 certified, which means we follow top industry standards for information security.] We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.
[details of any specific security which the controller wishes to mention to reassure data subjects, e.g., encryption technologies (this is purely optional)].
[If you want detailed information from Get Safe Online on how to protect your information and your computers and devices against fraud, identity theft, viruses and many other online problems, please visit www.getsafeonline.org. Get Safe Online is supported by HM Government and leading businesses.]
14. How to Exercise Your Rights.
If you would like to exercise any of your rights as described in this Privacy Policy, please:
· Complete a data subject request form available on our website at [URL];
· Call us, toll-free, at [toll-free phone number]; or
· [Email/write to] us at [contact information].
Please note that you may only make a CCPA-related data access or data portability disclosure request twice within a 12-month period.
If you choose to contact directly by [website/email/phone/in writing], you will need to provide us with:
· Enough information to identify you [(e.g., your full name, address and customer or matter reference number))];
· Proof of your identity and address (e.g., a copy of your driving license or passport and a recent utility or credit card bill); and
· A description of what right you want to exercise and the information to which your request relates.
We are not obligated to make a data access or data portability disclosure if we cannot verify that the person making the request is the person about whom we collected information, or is someone authorized to act on such person’s behalf.
Any personal information we collect from you to verify your identity in connection with you request will be used solely for the purposes of verification.
15. How to File a GDPR Complaint.
We hope that [we OR our Data Protection Officer] can resolve any query or concern you raise about our use of your information.
The General Data Protection Regulation also gives you right to lodge a complaint with a supervisory authority, in the European Union (or European Economic Area) state where you work, normally live, or where any alleged infringement of data protection laws occurred. The supervisory authority in the [country] is the [entity] who may be contacted at [contact information].
16. Changes to This Privacy Notice.
This privacy notice was published on [date] and last updated on [date].
We may change this privacy notice from time to time–when we do, we will inform you via [mechanism for informing the data subject of changes to the notice, e.g., our website or other means of contact such as email].
17. How to Contact Us.
Please contact us by post, email or telephone if you have any questions about this privacy policy or the information we hold about you.
Our contact details are shown below:
Our contact details:
Ad Astra Media
[Our Data Protection Officer's contact details]
900 Riverside Drive Newport News, VA 23606
[contact address]
[contact email address]
407-353-5794
[contact telephone number]
18. Do You Need Extra Help?
If you would like this notice in another format (for example: audio, large print, braille) please contact us (see “How to contact us” above).