Privacy Policy

1. Who we are

1.1 Rematch STM Ltd (referred to in this privacy policy as “we”, “us” and “our”) operate the Rematch website available at: www.rematchlive.com (the “Website”).

1.2 Rematch STM Ltd is an events production company specialising in recreating famous sporting events from the past.

1.3 Our company number is 11725302 and our registered address is 125 Courthouse Road, Maidenhead, Berkshire SL6 6HY. We are registered with the UK Information Commissioner’s Office with registration number ZA300498.

1.4 To contact us, please use the following information:

Email: info@rematchlive.com
Postal address: The Windsor Centre, Windsor Street, London, England, N1 8QG

2. Purpose of this policy

2.1 This privacy policy (the “Policy”) explains how we look after your personal data when you visit the Website (regardless of where you visit it from), what personal data we may collect about you, how we use this data, for what purposes, who we may share it with and about your privacy rights.

2.2 It is important that you read this Policy carefully together with any other privacy policies we may provide on occasions when we collect or process personal data about you, so you are fully aware how and why we are using your data. This Policy supplements these other policies and does not replace them.

3. The data we collect about you

3.1 When you access the Website you may provide us with personal data, and we may collect, use, store and transfer such data which we have grouped together as follows:

• Technical data including your internet protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions and other details about the devices you use to access this Website
• Usage data including information about how you use our Website; and
• Enquiry data including records of communications you have with us.

3.2 We also collect, use and share aggregated data such as statistical or demographic data. Aggregated data may be derived from your personal data but is not considered to be personal data in law as it does not directly or indirectly reveal your identity. For example, we may aggregate your usage data to calculate the percentage of users accessing specific features on the Website. However, if we combine or connect aggregated data with your personal data so that it can directly or indirectly identify you, the combined data will be personal data and we deal with it in accordance with this Policy.

3.3 We do not knowingly collect details about your racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, health, sex life, sexual orientation, or genetic or biometric data (known as “special categories of data”), or any information about criminal convictions or offences through the Website.

4. How your personal data is collected

4.1 We collect your personal data in different ways, including:

• Direct interaction with you. You may give us identity and contact data by filling in online form(s) on the Website or by communicating with us by post, telephone, email or otherwise. This includes data you provide when you request information about our products and services, contact us, download resources, or use interactive features on the Website or social media applications.
• Automated technologies. When you interact with the Website, we may automatically collect technical data about your equipment, browsing actions and patterns. We collect this personal data using cookies, server logs and other similar technologies. We may also receive technical data about you if you visit other websites using our cookies. For more information about cookies please see our Cookies Policy.
• Third parties and publicly available sources. We may receive personal data about you from other parties and/or from public sources, such as: technical data from analytics providers such as Google Analytics.

5. How we use your personal data

5.1 Data collected directly: your title, first name, last name, email address, mobile number, date of birth, postcode, country

5.2 We use your personal data:

• For the administration of your purchases and our events and to contact you about your purchase (for example with details on your tickets and your attendance);
• To contact you about your attendance (for example with your arrival time);
• To contact you with marketing messages which you have requested or agreed to receive from us (for example via a branded newsletter);
• To contact you with surveys and feedback requests (for example relating to a show you attended);
• To analyse the purchase history of our customers and the way our customers use our websites.

5.3 Please note that we may process your personal data for more than one lawful ground depending on the specific purpose for which we are using your data. Please contact us using the details above if you need details about the specific legal ground we are relying on to process your personal data where more than one ground has been set out in the table above.

5.4 We will only use your personal data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose.

5.5 In the unlikely event that we need to use your personal data for an unrelated purpose, we will notify you and we will explain which legal basis allows us to do so.

6. Marketing

6.1 You may receive marketing communications from us if you have requested such information from us. We will get your express opt-in consent before we send you marketing communications in any other circumstances.

6.2 You can ask us to stop sending you marketing messages at any time by following the opt-out links in any marketing message sent to you. If you opt-out of receiving any marketing messages, this will not apply to personal data provided to us for other purposes, for example, as a result of your registration to be the first to hear when tickets go on sale.

7. Cookies

7.1 We use cookies (small text files which are transferred to your browser by our websites to identify data traffic patterns, personalise contents and support security) or other similar technologies to capture certain data when you use the Website as well as when you open or interact with any Rematch emails we may send to you. They do not provide any information that directly discloses the identity of a specific person but they may potentially identify your computer, your browser and your internet settings. You may change the storing of cookies in your browser settings at any time by selecting the function “accept no cookies”. However, disabling essential cookies may result in you no longer be able to use the entire functionality of the websites. For further information on our use of cookies, please see our Cookies Policy.

8. Who we share your data with

8.1 When using the Website, we may need to disclose your personal data to selected third parties in the following circumstances:

• if we are under a duty to disclose or share your personal data in order to comply with any legal or regulatory obligation, we may share your personal data with a regulator or law enforcement agency;
  in the event that we sell any part of our business, in which case we may disclose your personal data to the prospective buyer of that part of our business to the extent that such disclosure is directly relevant to the sale; and
• professional advisers (acting as processors or joint controllers), including lawyers, accountants, auditors, bankers, insurers who provide legal, accountancy, audit, banking, insurance or consultancy, or other services to us and our group companies; and
• third party service providers which provide us with services, including IT providers such as Microsoft Azure for hosting the Website and Google Analytics in order to track visits to the Website (although this service only uses anonymous data).

9. Where might data about you be sent

9.1 We will not transfer your personal data outside the UK and EU, except:

• to a country which has been found by the European Commission to provide an adequate level of protection, which can be found here https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/adequacy-protection-personal-data-non-eu-countries_en;
• to an entity in the United States which is part of the EU-US Privacy Shield Framework. For further information see: https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/eu-us-privacy-shield_en;
• to a company which has agreed to follow the same rules when processing your personal data; where your personal data benefits from the same contractual protections as it would in the EU;
  where the transfer is necessary to perform a contract between us; or
• with your explicit consent.

9.2 Such transfer of your data will always be subject to our physical, technical and organisational measures for the protection of personal data in those countries, territories or international organisations in accordance with applicable data protection laws.

10. Third party websites

10.1 The Website may include links to third party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third parties and are not responsible for their privacy policies. When you leave the Website, we recommend that you read the privacy policy of every website you visit and every plug-in or application you use.

11. Data security

11.1 We have appropriate physical, technical and organisational security measures in place to safeguard your personal data, and protect it from being accidentally or unlawfully destroyed, lost or altered, or disclosed or accessed in any unlawful way.

11.2 We limit access to your personal data to those of our employees, agents, contractors and other third parties who have a genuine business need to know it, and those processing your information will do so only in an authorised manner.

11.3 We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.

12. Data retention

12.1 We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of complying with any legal, accounting and/or reporting obligations. If you would like to find out more about how long we store your data for, please get in touch using the contact details above.

12.2 In some circumstances you can ask us to delete your personal data: see paragraph 13 below. In some circumstances we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes, in which case we may use this information indefinitely without further notice to you.

13. Your rights

13.1 As a result of us collecting and processing your personal data, you may have the following legal rights:

• to access personal data held about you;
• to request us to make any changes to your personal data if it is inaccurate or incomplete;
• to request your personal data is deleted where we do not have a compelling reason to continue to process such data in certain circumstances;
• to receive your personal data provided to us as a controller in a structured, commonly used and machine-readable format where our processing of your personal data is based on: (i) your consent; (ii) our necessity for performance of a contract to which you are a party; or (iii) steps taken at your request prior to entering into a contract with us and the processing is carried out by automated means;
• to object to, or restrict, our processing of your personal data in certain circumstances;
  if we use your personal data for direct marketing, you can ask us to stop and we will comply with your request;
• if we use your personal data on the basis of having a legitimate interest, you can object to our use of it for those purposes, giving an explanation of your particular situation, and we will consider your objection;
• to object to, and not be subject to a decision which is based solely on, automated processing (including profiling), which produces legal effects or could significantly affect you; and
• to lodge a complaint with a data protection supervisory body or seek a judicial remedy from your national court. The supervisory authority in the UK is the Information Commissioner who may be contacted at https://ico.org.uk/make-a-complaint/, although we would like the prior opportunity to respond to any complaint.

13.2 To exercise any of your rights set out above, including to withdraw your consent where we have stated we are processing your personal data based on your consent, please contact us using the contact details above.

CONTACTING US AND CHANGES TO YOUR PERSONAL DATA

If you have any questions, comments and requests about this Policy or your personal data, please contact us using the contact details outlined in 1. above. Please notify us with any changes to your personal data at any time.

CHANGES TO OUR PRIVACY POLICY

Any changes we may make to this Policy in the future will be posted here. Please check back regularly to keep informed of updates or changes to this Policy. This Policy was last updated on 09 May 2019.