This policy describes how we collect and use your personal and business information.


Last Updated: Saturday 12 August 2017

Introduction

DanceCloud is a dance event ticketing and management service - owned and operated by Cloud Creativity Limited. Our aim is simple: make organising dance events as easy as possible, so that there's more dancing in the world.

Our Privacy Policy

This Privacy Policy describes how Cloud Creativity Limited ('Cloud Creativity', 'we', and/or 'our') collects, uses, discloses and transfers the business and personal information that you provide when using services on the DanceCloud domain and its subdomains ('the Service').

Your information is very important to us. It is central to what we do and without it the Service would not function. We therefore take your privacy very seriously and are fully committed to protecting the information you provide us in accordance with this Privacy Policy.

Consent

By using the Service or allowing someone to use the Service on your behalf, you are consenting to our collection, use, disclosure, transfer and storage in accordance with this Privacy Policy of any information received by us as a result of such use.

What Information Do We Collect?

When you use the service, we may collect and use the following types of information:

  • Business sensitive information ('Business Sensitive Data') - information that relates to a specific dance organiser and/or business, which would not be known to other organisers or businesses, nor would it be made publically available. For example, the volume of door sales at a dance event.
  • Business non-sensitive information ('Public Business Data') - information relating to a specific dance organiser or business, which is publically available. For example, the times of a dance lesson.
  • Personally identifiable information ('Personal Data') -information that is attributable to a particular person. For example, an email address of a registered user of the Service.
  • Non-personally identifiable information ('Non-Personal Data') - information that was collected in the course of a person using the Service, but is not attributable to a specific person. For example, the types of web browsers being used to view our Service.

For the purposes of this Policy, 'Business Data' refers collectively to Business Sensitive Data and Public Business Data.

To help us distinguish between the types of information we collect, the Service has two types of accounts:

  1. Accounts belonging to individual people who have registered to use DanceCloud ('Dancers', 'Users');
  2. Accounts belonging to a dance organiser, organisation or business that has registered to use our event ticketing and/or management services ('Organisers'). These accounts are created and owned by a registered Dancer.

What Information Do We Collect?

When you interact with the Service, we may collect information from you, as further described below:

Business Sensitive Data: We collect data when you register an Organiser account and when you use our event management services, for example, but not limited to: event ticketing, event wait-listing, event door management, business management, business performance analysis. This information includes, but is not limited to: ticket sales and income, door sales and income, cash-flow management, rosters of roles that are not publicised, aggregation of data into business performance indicators and more.

Business Non-Sensitive Data: When you use our Service, we collect information as you use our event management services that is otherwise publically available, for these event management services to operate correctly. This includes, but is not limited to: times and dates of events, activities at events, those involved in publicised roles at the event (including, but not limited to: teachers, bands, DJs), event descriptions (free text and meta data, such as style of dancing). We will also collect publically available contact information from you, including but not limited to your Organiser email, address, website and telephone number.

Personal Data: We collect Personal Data from you when you voluntarily provide such information when using the Service (including in Organiser Subdomains, as defined below), such as when you register for access to the Services, register for an event, contact us with inquiries, respond to one of our surveys or use certain parts of the Services. The Personal Data we may collect includes without limitation your name, address, email address, postcode and other personally identifiable information. If you register for an event listed on the Service, the Organiser may collect virtually any information from you in connection with that registration. If you voluntarily provide that information in connection with registration for an event or otherwise, it will be available to us and will be held by us in accordance with this Privacy Policy. In addition, such information will be made available to the Organiser in accordance with “What Information Can Users Access: Personal Data” below.

Non-Personal Data: The Non-Personal Data we collect includes without limitation Internet Protocol (IP) addresses, Internet browser type, other characteristics of your device and software, domain names of your Internet Service Provider, your approximate geographic location, a record of your usage of the Services, the time of your usage and aggregated Personal Data that cannot be used to specifically identify you. Such information, which is collected passively using various technologies, cannot, in and of itself, be used to specifically identify you. We also collect Non-Personal Data (including, without limitation, of the type set forth above) from third parties. The information we collect from third parties may be combined with the information we collect.

What Information Can Dancers Access?

This section of this Policy describes how we provide access to information that we collect to visitors and registered Dancers accessing our Service.

Business Data

Public Business Data is accessible to any visitor to the Service, or any registered Dancer. When a Dancer accesses the Service, we use a Role Based Access Control ('RBAC') model to limit their access to Business Sensitive Data. The roles are as follows:

  • The current owner of an Organiser account ('Owner'). This is either the Dancer who registered the account or a Dancer to which control of the account has been transferred. An Owner can access all Business Data for the Organiser account.
  • An administrator of an Organiser account ('Administrator'). This is a registered Dancer who has been granted Administrator access to an Organiser account by the Owner or another Administrator. An administrator has the same access rights as an Owner.
  • A Dancer who has been given limited access to an Organiser account ('Delegate'). Access is limited by the function that the Delegate undertakes for an Organiser. For example, a Delegate who is a door person for a specific event can access details of who has booked to attend that event and can submit door sales data.

Roles are on a per-Organiser account basis. For example, a User could be an Owner of one Organiser account and a Delegate in another Organiser account. Their access to each Organiser's account will be based on their role for that specific account.

If a Dancer has none of the above roles for an Organiser's account, they are not able to access Business Sensitive Data for that Organiser.

Each Organiser account has a name that is used as their subdomain on the Service (the 'Organiser Subdomain'). For example, if an Organiser account's name is wedance, their subdomain will be wedance.dancecloud.com. When accessing an Organiser Subdomain, a visitor or registered Dancer will only ever be able to access Public Business Data or Business Sensitive Data (subject to their role) related to that Organiser.

When a visitor accesses our domain or a subdomain that is not an Organiser Subdomain, we may provide access to Public Business Data from multiple Organisers. When a registered Dancer is signed in to our domain or a subdomain that is not an Organiser Subdomain, we may provide access to Business Sensitive Data from multiple Organisers (subject to their role for each Organiser).

Personal Data

Personal Data can be accessed by the Dancer that it relates to and/or the Dancer that provided the information (for instance, if providing Attendee Contact Data as described below). It will not be made available to visitors to the Service.

When you purchase tickets for an event or join an event's wait-list, you consent to us providing your Personal Data to the Organiser of the event. The Organiser account Owner and Administrator will have access to your Personal Data, and Delegates who have been granted access to the event will also have access to your Personal Data. The granting of Delegate access to the event is at the Organiser's discretion. You agree that we are not responsible for which Dancers are given Administrator or Delegate access to an Organiser's account, or whom the current Owner is.

Organisers are not bound to treat your Personal Data in accordance with this Privacy Policy. You agree that we are not responsible for the actions of these Organisers with respect to your Personal Data. It is important that you review the applicable policies of the Organisers of an event before providing Personal Data or other information (including Attendee Contact Data as defined below) in connection with that event.

Non-Personal Data

Non-Personal Data may be made available to Organisers if it relates to their Public Business Data or Business Sensitive Data. For clarity, this includes without limitation providing access to Non-Personal Data relating to an event, its tickets and its wait-list, as well as Non-Personal Data relating to access to the Organiser's Subdomain.

How Do We Use Attendee Information You Provide?

If you purchase event tickets on behalf of other individuals, you are required to provide their contact details ('Attendee Contact Data'), for instance and without limitation their email address. This is because event Organisers may need to send information regarding the event - for instance, but not limited to, if an event's venue and/or date and times change. For example, you will have to provide details of other attendees when purchasing tickets for a group.

If Attendee Contact Data can be positively matched to a registered Dancer then it will also be treated as their Personal Data. They will have access to the information, including but not limited to the ticket that you purchased on their behalf. Matching may involve techniques such as matching attendee email addresses to usernames of registered Dancers and may occur at any point after you have provided the data. We may use matched Attendee Contact Data in the manner described by this Policy for Personal Data.

If Attendee Contact Data cannot be matched to a registered Dancer, the Service will use it as part of its functions for managing the event to which the data relates. This includes without limitation, providing the data to the event Organiser, allowing the event Organiser to message the attendees via the Service, and for sending Service messages related to the event for which the Attendee Contact Data was provided.

We will not use unmatched Attendee Contact Data for any purpose other than the event for which it was provided. You should note that Organisers are not bound to treat information in accordance with this Privacy Policy, as described earlier in this Policy.

By purchasing a ticket on behalf of another individual, you confirm that you have their permission to purchase their ticket and provide their Attendee Contact Data, with their consent that it will be used as described in this Policy.

Do We Collect Payment Card Information?

We use Stripe as our payment service specifically because it means there is no need for us to collect or store your payment card information in our Service. All Personal Data relating to your payment is sent directly to Stripe from your web browser.

Payment information is accessible by the Organiser you have paid, within their Stripe account. We have access to the Organiser's Stripe account because they have granted us access to manage their payments for them - Stripe call this service 'Stripe Connect'. In addition, we may give you the option of storing your payment card details in our Stripe account so that you can use them to make purchases for any Organiser on our Service.

If you are an Organiser paying for subscription-only elements of our Service, your payment information for the subscription is stored on our Stripe account.

As per our Terms of Service, when you use Stripe to pay for tickets on the Service you are bound by Stripe's applicable terms of service, including but not limited to all applicable privacy policies. We, and all Organisers, are bound by all applicable Stripe terms of service, including but not limited to their privacy policies.

For more information, see Stripe's website for details of their policies and security procedures.

How Do We Use The Information That We Collect?

The section of this Policy describes how we use the information that we collect.

Business Data

We use the Business Data that we collect in a manner that is consistent with this Policy, as follows:

  • Specific Reason: If you as an Owner, Administrator or Delegate of an Organiser account provide Business Data to us for a specific purpose or a certain reason, we may use the Business Data in connection with the purpose for which it was provided.
  • Internal Business Purposes: We may use your Business Data for internal business purposes including without limitation to help us improve the content and functionality of the Services, to better understand our Organisers, to improve the Services, to protect against, identify or address wrongdoing, to enforce our Terms of Service, to manage your account and provide you with customer service, and to generally manage the Services and our business.
  • Data Aggregation: We may use your Business Data in a manner that does not identify specific Organisers by aggregating data across Organisers. The purposes of doing so include without limitation to help us better understand the dance industry, specific dance sectors (for example, swing dance, ballroom, etc), identify industry trends, and generally to understand the business sector in which we operate.

Personal Data

We use the Personal Data that we collect in a manner that is consistent with this Policy, as follows:

  • Specific Reason: If you provide Personal Data for a certain reason, we may use the Personal Data in connection with the reason for which it was provided. For instance, if you contact us by e-mail, we will use the Personal Data you provide to answer your question or resolve your problem and will respond to the email address from which the contact came.
  • Access and Use: If you provide Personal Data in order to obtain access to or use of the Services or any functionality thereof, we will use your Personal Data to provide you with access to or use of the Services or functionality and to monitor your use of such Services or functionality.
  • Internal Business Purposes: We may use your Personal Data for internal business purposes including without limitation to help us improve the content and functionality of the Services, to better understand our Dancers, to improve the Services, to protect against, identify or address wrongdoing, to enforce our Terms of Service, to manage your account and provide you with customer service, and to generally manage the Services and our business.
  • Marketing: We may use your Personal Data to contact you in the future for our marketing and advertising purposes, including without limitation to inform you about services or events we believe might be of interest to you, to develop promotional or marketing materials and provide those materials to you, and to display content and advertising on or off the Services that we believe might be of relevance to you.
  • Organiser Emails: We allow Organisers to use our email system to contact Dancers for their current and past events, so you may receive emails from our system that originate from such Organisers.

Non-Personal Data

Because Non-Personal Data cannot be specifically identified as you, we may use it for any lawful purpose.

Other Uses

If we intend to use any Business Data and/or Personal Data in any manner that is not consistent with this Privacy Policy, you will be informed of such anticipated use prior to or at the time at which the Personal Data is collected or we will obtain your consent subsequent to such collection but prior to such use.

Cookies

Cookies are small text files that websites often store on computer hard drives or mobile devices of visitors to their sites. They are widely used in order to make websites work, or work more efficiently, as well as to provide information to the owners of the site. You can find out more detailed information about what cookies are used on the Service in our Cookie Policy.

What Information Do We Share?

We do not rent, sell or share Personal Data and/or Business Data about you with other people or non-affiliated companies except to provide or improve the products or services you have requested, when we have your permission, or under the following circumstances:

  • when we request that you share such information and you choose to do so;
  • to respond to your questions or concerns, to fulfil your requests, or to share knowledge about an issue;
  • we may disclose your personal information to any law enforcement agency, court, regulator, government authority or other third party where we believe this is necessary to comply with a legal or regulatory obligation, or otherwise to protect our rights or the rights of any third party;
  • we may disclose your personal information to any third party that purchases, or to which we transfer, all or substantially all of our assets and business. Should such a sale or transfer occur, we will use reasonable efforts to try to ensure that the entity to which we transfer your personal information uses it in a manner that is consistent with this Privacy Policy.

How Can You Access, Edit or Delete Your Information?

Business Data

Every Owner and Administrator of an Organiser Account can access all the Business Data within that account by signing into our various services that are hosted on the Organiser Subdomain. This allows you to view edit or delete the information. Some information may be in a read-only state (i.e. you will not be able to edit or delete it yourself) because to do so may undermine the correct functioning of the Service. Any such read-only records can be deleted if you request that your Organiser account is closed and records deleted.

The Organiser account Owner has the right to ask for a copy of any Business Data that we hold about your business, to correct any inaccuracies and to update any out-of-date information. Please write to us at the address listed below should you wish to do so.

The Organiser account Owner may close their Organiser account by contacting us at the address listed below. If you close your Organiser account, you can also request that we delete your Business Data. Please note that if you do not request us to delete your Business Data, we will archive your Business Data for the period permitted by law following account closure, but will keep your archived information secure and confidential throughout this period.

Personal Data

As we are currently in pilot stage of development, to access edit or delete your Personal Data you should contact us at the address listed below. During the course of the pilot, we will launch capability that will allow you to do this yourself via our subdomain: dancer.dancecloud.com. We will update this Privacy Policy when that capability is launched.

You have the right to ask for a copy of any Personal Data that we hold about you in our records, to correct any inaccuracies and to update any out-of-date information. Please write to us at the address listed below should you wish to do so.

You may close your Dancer account by contacting us at the address listed below. If you close your Dancer account, you can also request that we delete your personal information. Please note that if you do not request us to delete your personal information, we will archive your personal information for the period permitted by law following account closure, but will keep your archived personal information secure and confidential throughout this period.

Other Websites and Social Networking

The Service may contain links to other websites that are outside our control and are not covered by this Privacy Policy. If you access other websites using the links provided, the operators of these websites may collect information from you which will be used by them in accordance with their privacy policy, which may differ from ours.

The Service may also offer you the opportunity to share or follow information about the Service (or the products and/or services available through it) using third party social networking functionality (such as through “share this”, “like” or “follow” buttons).

We offer this functionality in order to generate interest in the Service among the members of your social networks, and to permit you to share and follow opinions, news and recommendations about the Service with your friends. However, you should be aware that sharing personal or non-personal information with a social network may result in that information being collected by the social network provider or result in that information being made publicly-available, including through internet search engines.

Please note that we do not endorse or control the policies or practices of any website to which we provide a link or any third party social network whose functionality you may access through the Site. You should always read the privacy policy of any website you access or social network through which you share information carefully in order to understand their specific privacy and information usage practices.

Updates to this Privacy Policy

We may amend this Privacy Policy from time to time. If we make substantial or material changes in the way we wish to use your personal information we will communicate providing a prominent notice on the Service.

If you do not agree to these changes, please do not continue to use the Service.

Contact Us

If you have any questions about this Privacy Policy, the Site, or your relationship with us, you can contact us at info [at] dancecloud.com.