Privacy Policy

The Shortlisted™ EU GDPR Privacy Policy

This Privacy Policy has been updated in May 2018 and then in May 2019 to fully comply with the European General Data Protection Regulation (also known as the GDPR).

1. Privacy Policy statement and purpose

1.1. By using this website, you agree to all the following terms. Please note that this website is in no way affiliated with any brands or companies. All brand names and logos are the exclusive property of each respective owner.

1.2 This privacy policy is for this website and governs the privacy of its users who choose to use it. The Shortlisted is a personal blog/magazine run with WordPress and hosted by GoDaddy. The Data Controller for this website is the founder and editor-in-chief, S.P.

1.3. The policy sets out the different areas where user privacy is concerned and outlines the obligations & requirements of the users, the website and website owners. Furthermore, the way this website processes, stores and protects user data and information will also be detailed within this policy.

1.4. This website and its owners take a proactive approach to user privacy and ensure the necessary steps are taken to protect the privacy of its users throughout their visiting experience. This website complies to UK and EU laws and requirements for user privacy.

1.5. The Shortlisted™ is committed to preserving and safeguarding the privacy of its visitors and to making every effort to ensure the confidentiality and privacy of information sent to it by customers but does not undertake any responsibility for the privacy or security of that information in any way whatever, other than that demanded under the EU General Data Protection Regulation 2018. In particular, the principles related to the processing of personal data are: 1) lawfulness, fairness and transparency, 2) purpose limitation, 3) data minimisation, 4) accuracy and security, 5) storage limitation, 6) integrity and confidentiality, 7) not transferred to countries without adequate protection.

1.6. The Shortlisted™ is bound to protect personal information and to handle it according to rigorous guidelines. This website is opposed to spam and will never sell personal data to anyone.

1.7. The Shortlisted™ does not undertake any responsibility for maintaining the security and privacy of that information, other than that demanded under the EU General Data Protection Regulation 2018.

1.8. In any case, The Shortlisted™ will use its best endeavours to protect the security and privacy of that information. Should a user not wish The Shortlisted™ to store information it will be deleted upon the specific instruction of a customer by email, this does not imply in any way that The Shortlisted™ undertakes any responsibility for that information.

1.9. All the content on The Shortlisted™ is totally an expression of the opinions of contributors and not facts: opinions are statements that can’t be proven true or false no matter of the viewpoint. In order to protect third parts’ privacy, The Shortlisted™ is based on work of fiction. Names, characters, businesses, places, events, locales, and incidents are either the products of the author’s imagination or used in a fictitious manner. Any resemblance to actual persons, living or dead, or actual events is purely coincidental. In order to maintain their anonymity in some instances, names of individuals and places may have been changed, as well as some identifying characteristics and details such as physical properties, occupations and places of residence.

1.9.1. If you have any questions about this privacy policy, you can send an email to [email protected]

2. Information collected from users and how it is used

2.1. This website obtains information about users when they use the website, get in touch by email, Facebook, Twitter, LinkedIn, Pinterest and Instagram and/or opt-in forms, subscribe to the newsletter.

2.2. The only information the website collects about users is the one users provide themselves through standard forms, other correspondence and any technical information gathered automatically when users use the website.

2.3. The personal information collected might include name, address, email address, IP address, and information regarding what web pages are accessed and when. Users’ personal information may be used to reply to inquiries, notify of changes to services, publish comments that have been submitted on the blog, send communications which the users have requested and that may be of interest to them.

2.4. This website will not contact users for marketing purposes unless they have given prior consent.

2.5. This website may use non-personal information about users such as IP address, device type or geographical location in order to monitor activity to better understand how the website is being used, and what countries the visitors come from. This data is tracked by Google Analytics; for further information, see the Google Analytics privacy policies. However, this website does not match users’ IP address to any other information that would identify them as unique individual persons.

2.6. The retention periods for personal information are reviewed on a regular basis. The personal information is held on internal systems for as long as is necessary for the relevant activity, or until such time as users request that we delete users’ information.

2.7 The email service provider managing the website official email address is Outlook, and their Privacy Policy can be found here; the website owner denies any responsibility regarding this.

3. Third-party access to personal information and rights

3.1 This website will not sell or rent information to third parties, nor will share information with third parties for marketing purposes.

3.2. This website guarantees never to sell email address to anyone or to spam people. Only and solely with users’ permission, The Shortlisted™ may distribute details to carefully selected partners, providers, agents, subcontractors and other associated organisations for the purposes of completing tasks or providing services on our behalf (for example to send the email newsletter). However, when third party services providers are used, this website discloses only the personal information that is necessary to deliver the service and there is a contract in place that requires them to keep information secure and not to use it for their own direct marketing purposes.

3.3 We can provide information on which services have access to personal data in their role as data processor for The Shortlisted™ upon request.

3.4. In case of a credit or debit card purchase from this website, users’ card information is not held by the website, it is collected by our third party payment processor Stripe, that specialises in the secure online capture and processing of credit/debit card transactions and are fully PCI-DSS compliant.

4. Third parties links

4.1. Concerning any links provided on this website to third parties, this doesn’t mean that The Shortlisted™ endorses or approves those sites’ policy towards privacy. Prior to sending them any personal data, users should still review their own privacy policy.

4.2. Although this website strives to only include quality, safe and relevant external links, users are advised to adopt a policy of caution before clicking any external web links mentioned throughout this website.

4.3. The owner of this website cannot guarantee or verify the contents of any externally linked website despite their best efforts. Users should, therefore, note they click on external links at their own risk and this website and its owners cannot be held liable for any damages or implications caused by visiting any external links mentioned.

5. Security precautions

5.1. The Shortlisted™ strives to ensure the integrity, security and privacy of personal information submitted by customers, and reviews and updates its security measures in light of current technologies. The Shortlisted™ follows generally accepted standards to protect the personal information submitted by customers, both during transmission and once the website receives it.

5.2. Unfortunately, no data transmission over the Internet can be guaranteed to be completely secure. Therefore, The Shortlisted™ cannot guarantee its absolute security. However, The Shortlisted™ will endeavour to take all reasonable steps to protect the personal information users may transmit. Once The Shortlisted™ receives users’ transmission, it will also make the best possible efforts to ensure its security on systems.

5.3. For users’ safety and protection, The Shortlisted™ never stores credit and debit card numbers on its servers. Where necessary, credit and debit card numbers are stored by a carefully selected payment gateway provider (“Stripe”) providing the use of encryption during transmission. When users enter sensitive information (such as a credit and debit card number) on the website order forms, The Shortlisted™ encrypts the transmission of that information using secure socket layer technology (SSL).

6. How users can access and update their information

6.1. If users change email address or any of the other information the website hold is inaccurate or out of date, they can get in touch via email to request that we update it, or they can use the link included at the bottom of our email newsletter.

6.2. Users have the right to ask for a copy of the information that we hold about users. They also have the right to request that we delete the information that we hold about them by getting in touch via email.

7. Transferring personal information outside of Europe

7.1. As part of the services offered to the users through this website, the information which they provide to the server may be transferred to countries outside the European Union (“EU”). By way of example, this may happen if any of our data processors’ servers are located in a country outside of the EU. These countries may not have similar data protection laws to the UK or Europe. By submitting their personal data, users are agreeing to this transfer, storing or processing.

7.2. If the website transfers personal information outside of the EU, it will take steps to ensure that appropriate security measures are taken with the aim of ensuring that users’ privacy rights continue to be protected as outlined in this Policy.

7.3. If users access the website while outside the EU, their information may be transferred outside the EU in order to provide them with those services.

8. User-generated comments on the blog

8.1 Users have the ability to add a comment to the blog, in which case the name and email address they enter with the comment will be saved to this website’s database, along with their computer’s IP address and the time and date that they submitted the comment.

8.2. Such information is only used in order to identify the user as the comment author, and will not be used for any other purpose, nor is it transmitted to any third party or data processor. Only users’ names will be shown on the public-facing website, though if the supplied email address is linked to a Squarespace account, users’ Squarespace profile avatar may also be shown. Users can read Squarespace’s Privacy Policy here.

8.3. User-generated comments and associated personal data will remain on this site until such time that we either (a) remove the comment or (b) remove the blog post. If they wish to have their comments and data removed, they may request that we do so at any time.

9. Email newsletter

9.1. This website operates an email newsletter, used to inform subscribers about news and services supplied by it. Users can subscribe through an online automated process should they wish to do so, but do so at their own discretion. Subscrib9.ers are given the opportunity to unsubscribe and/or manage their email preferences at any time through the MailChimp system. This process is detailed at the footer of each email campaign.

9.2. Subscriptions are taken in compliance with all relevant privacy laws; this website will not subscribe users to any marketing lists or send users information without users prior consent. All personal details relating to subscriptions are held securely within the MailChimp system. No personal details are passed on to third parties nor shared with companies/people outside of the company that operates this website. MailChimp privacy policy can be read here.

9.3. Email marketing campaigns published by this website or its owner may contain tracking facilities within the actual email. Subscriber activity is tracked and stored in a database for future analysis and evaluation. Such tracked activity may include; the opening of emails, forwarding of emails, the clicking of links within the email content, times, dates and frequency of activity [this is by no far a comprehensive list]. This information is used to refine future email campaigns and supply the user with more relevant content based on their activity. To find out more about the types of tracking associated with our email campaigns, read the MailChimp privacy policy.

10. Social media platforms

10.1 Communication, engagement and actions taken through external social media platforms that this website and its owner participate on are custom to the terms and conditions as well as the privacy policies held with each social media platform respectively.

11.1 Users are advised to use social media platforms wisely and communicate/engage upon them with due care and caution in regard to their own privacy and personal details. This website nor its owners will ever ask for personal or sensitive information through social media platforms and encourage users wishing to discuss sensitive details to contact them through primary communication channels such as by telephone or email.

11.2. This website may use social sharing buttons which help share web content directly from web pages to the social media platform in question. Users are advised before using such social sharing buttons that they do so at their own discretion and note that the social media platform may track and save the request to share a web page respectively through users’ social media platform account.

12. Shortened links in social media

12.1. This website and its owners through their social media platform accounts may share web links to relevant web pages. By default, some social media platforms shorten lengthy URLs [web addresses].

12.2. Users are advised to take caution and good judgement before clicking any shortened URLs published on social media platforms by this website and its owners. Despite the best efforts to ensure only genuine URLs are published, many social media platforms are prone to spam and hacking and therefore this website and its owners cannot be held liable for any damages or implications caused by visiting any shortened links.

13. Cookie Policy

13.1. Click here for more information about The Shortlisted™ Cookie Policy.

14. Policy review

14.1. This Policy is being kept under regular review.

Latest revision: April 2019