PRIVACY POLICY

Last updated: 10/09/2025

1. Introduction

This Privacy Policy explains how The Clubheads (“we”, “us”, “our”) collects, uses, stores and protects your personal data when you visit our website (“www.theclubheadsband.co.uk”), purchase merchandise, sign up to our newsletter or interact with our content.

We are committed to protecting your privacy and complying with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable laws.

2. Who We Are

Name: The Clubheads

We operate in Brighton. However if you need a return address please contact us via email: theclubheadsband@gmail.com

If you have any questions about this Privacy Policy, please contact us using the details above.

3. Data We Collect

We may collect and process the following data about you:

• Identity Data: name, username, account details.
  
  

• Contact Data: email address, postal address, phone number.
  
  

• Order Data: products purchased, shipping details, payment status.
  
  

• Payment Data: payment card details are handled securely by our payment processors (Stripe, PayPal, or other). We do not store full card details.
  
  

• Technical Data: IP address, browser type, device type, pages visited, cookies.
  
  

• Marketing Preferences: newsletter opt-ins, communication preferences.

4. How We Collect Data

• When you purchase merchandise or download music.
  
  

• Automatically through cookies and analytics tools when you browse our Site.
  
  

• When you contact us by email or via forms on the Site.
  
  

5. How We Use Your Data

We use your personal data to:

• Process and deliver your orders.
  
  

• Communicate with you about your orders or account.
  
  

• Send newsletters or marketing communications (if you opt in).
  
  

• Improve and personalise our Site and services.
  
  

• Comply with legal obligations and prevent fraud.
  
  

6. Legal Bases for Processing

We process your personal data only where we have a legal basis under UK GDPR, such as:

• Performance of a contract (processing your order).
  
  

• Consent (marketing emails, cookies).
  
  

• Legitimate interests (site analytics, fraud prevention).
  
  

• Legal obligations (tax and accounting records).
  
  

7. Sharing Your Data

We may share your data with trusted third parties who help us run our Site and services:

• Squarespace (website hosting and analytics).
  
  

• Stripe, PayPal or other payment processors.
  
  

• Email marketing platforms (e.g., Mailchimp).
  
  

• Delivery and logistics partners.
  
  

We require these third parties to handle your data securely and only for the purposes specified.

8. International Transfers

Some of our service providers (e.g., Squarespace, Mailchimp) may store data outside the UK or EEA. We take steps to ensure appropriate safeguards (such as standard contractual clauses) are in place.

9. Cookies and Tracking

We use cookies and similar technologies to enhance your browsing experience, provide analytics, and remember your preferences. You can manage cookies through your browser settings or our cookie banner. For more information, see our Cookie Policy.

10. Data Retention

We retain personal data only as long as necessary to fulfil the purposes we collected it for, including satisfying legal, accounting, or reporting requirements.

11. Your Rights

Under UK GDPR you have the following rights:

• Access – request a copy of your personal data.
  
  

• Rectification – correct inaccurate or incomplete data.
  
  

• Erasure – request deletion of your data.
  
  

• Restriction – limit processing of your data.
  
  

• Data Portability – receive your data in a machine-readable format.
  
  

• Objection – object to processing for direct marketing or legitimate interests.
  
  

• Withdraw Consent – at any time, if processing is based on consent.
  
  

To exercise your rights, contact us at [Insert Email]. We may require proof of identity.

12. Security of Your Data

We take appropriate technical and organisational measures to protect your personal data from unauthorised access, alteration, disclosure or destruction.

13. Children

Our Site is not directed to children under 13. We do not knowingly collect personal data from children without parental consent.

14. Links to Other Websites

Our Site may contain links to third-party websites. We are not responsible for their privacy practices or content.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated “Last updated” date.

COOKIE POLICY (Optional Section)

Our Site uses cookies to:

• Recognise returning visitors and improve the user experience.
  
  

• Analyse Site traffic and performance.
  
  

• Provide secure checkout and authentication.
  
  

Types of cookies we may use:

• Essential cookies – required for the Site to function.
  
  

• Analytics cookies – to understand visitor interactions (Squarespace Analytics, Google Analytics).
  
  

• Marketing cookies – to track newsletter sign-ups or social media embeds.
  
  

You can change your cookie settings at any time via your browser or the cookie banner on our Site.