Story 9 Data Protection Policy
At Story 9 we are committed to protecting the privacy and security of personal data in accordance with the General Data Protection Regulation (GDPR) and the UK Data Protection Act 2018. This policy sets out how we collect, store, use, and process personal data, including cookie data and first-party data provided by our clients.
Collection and use of personal data
- We collect personal data in order to provide digital advertising services to our clients. This includes collecting data on website visits, ad impressions, and clicks, as well as any personal data provided by our clients. We may also collect personal data through our website or other marketing channels for the purpose of promoting our services.
Storage and processing of personal data
- We store personal data securely, both physically and electronically, and we only process personal data for the purposes for which it was collected. We ensure that any third-party processors we use are also GDPR compliant.
Use of cookies
- We use cookies to track website visits, ad impressions, and clicks. We only use cookies for the purpose of providing our services, and we do not use cookies to collect any personal data that could be used to identify an individual. We also ensure that any third-party cookies we use comply with GDPR.
Client first-party data
- We process first-party data provided by our clients in order to provide digital advertising services. We ensure that any first-party data we process is done so in accordance with GDPR and any other relevant data protection legislation.
Data retention
- We retain personal data only for as long as necessary to provide our services or as required by law. We regularly review our data retention policies and ensure that any personal data that is no longer necessary is securely deleted.
Data subject rights
- We respect the rights of data subjects, including the right to access, rectify, erase, restrict processing, object to processing, and data portability. We ensure that any requests from data subjects are handled in a timely and professional manner.
Data breaches
- In the event of a data breach, we have procedures in place to ensure that the breach is contained, any affected individuals are notified, and appropriate action is taken to prevent future breaches.
Training and awareness
- We provide regular training and awareness to all employees on GDPR and data protection best practices to ensure that personal data is handled appropriately and securely.
If you have any questions or concerns about our data protection policy, please contact our Data Protection Officer at rllewellyn@story9.agency