Effective Date: 9th April 2025
At Tragic Turtle (“we,” “our,” “us”), we are committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, and protect your personal information when you interact with us through our website or other services.
We collect and process personal data in various ways when you interact with us. Below is a table that explains the types of data we collect and the legal basis under data protection laws for processing it.
| Purpose | Data (key elements) | Basis |
|---|---|---|
| Enquiring about our organisation and its work | Name, email, message | Legitimate interests - it is necessary for us to read and store your message so that we can respond in the way that you would expect. |
| Subscribing to email updates about our work | Name, email | Consent - you have given your active consent. |
| Making a payment | Name, email, address, payment information | Contract - this information is necessary for us to fulfil your payment and order, and to send you confirmation messages. |
| Signing up as a member | Name, email | Contract - by paying your membership fees, you have entered into a contractual relationship with us as set out in our membership terms and conditions. |
| Website functionality | Website activity collected through cookies | Legitimate interests - it is necessary for us to store a small amount of information, usually through cookies, to deliver functionality that you would expect, such as remembering the contents of your order before you have fully completed the process. |
We will only use your data in ways that align with the purposes for which it was collected. This includes:
We may transfer your personal data to third-party service providers outside the European Economic Area (EEA) to support our business operations (e.g., email marketing or website analytics). In such cases, we ensure that the third-party providers comply with applicable data protection laws, including the General Data Protection Regulation (GDPR). These providers implement safeguards such as Standard Contractual Clauses (SCCs) to ensure that your data remains protected when transferred outside the EEA.
We will only share your personal data with third parties in the following circumstances:
With your explicit consent for sharing data with a named third party.
Data processors: We use third-party services to help us perform certain tasks, such as processing payments, sending emails, or analysing website traffic and usage analytics. These third-party providers are contractually required to safeguard your data and use it only for the tasks we ask them to perform.
Legal requirements: We may share your data when required by law (e.g., in response to legal requests from government authorities).
We are committed to the principle of data minimisation and will only keep your data for as long as necessary to fulfil the purpose for which it was collected. After this period, we will securely delete or anonymise your data. Specifically, for data collected via consent (e.g., email subscriptions), we will seek renewal of consent at least every three years.
Under current data protection laws, including the GDPR, you have the following rights over your personal data:
Access: You can request a copy of the personal data we hold about you.
Rectification: You can ask us to correct any inaccurate or incomplete data.
Deletion: You can request that we delete your data, although this may limit our ability to provide certain services.
Withdrawal of Consent: If you’ve consented to marketing communications, you can withdraw your consent at any time by clicking the “unsubscribe” link in our emails or contacting us directly.
Objection to Processing: You have the right to object to certain types of data processing, including direct marketing.
Data Portability: You can request that we transfer your data to another service provider in a structured, commonly used format.
For more information on your rights or to exercise any of these rights, please contact us via email.
We use cookies and similar technologies to enhance your experience on our website. Cookies allow us to remember your preferences, process orders, and analyse website traffic to improve our services.
A cookie banner appears when you first visit our website, notifying you that we use cookies. You can manage your cookie preferences at any time through your browser settings.
For more information, please see our Cookies Policy.
If you subscribe to our email updates or engage with us in other ways, you may receive marketing communications related to our work. You can opt-out at any time by clicking the “unsubscribe” link in any of our marketing emails or by contacting us via email.
While we cannot guarantee complete security, we take reasonable steps to protect your personal data using standard industry practices. These include using secure connections (SSL/TLS) for online transactions and ensuring that our third-party partners comply with privacy standards. However, please note that no data transmission over the internet or storage system can be guaranteed 100% secure.
We may update this Privacy Policy from time to time to reflect changes in our practices or legal obligations. If any changes meaningfully reduce your rights, we will notify you directly via email or through a prominent notice on our website.
If you have any questions or concerns about this Privacy Policy or how we handle your personal data, please contact us at support@tragicturtle.com.
