Privacy Policy for International Korean Adoptee Associations (IKAA)
This policy sets out how IKAA collects, processes, and holds your personal data if you visit our event ticket shop, visit our website www.ikaa.org, or otherwise provide personal data to us.
This policy affects your legal rights and obligations so please read it carefully. If you have any questions, please contact us at info@ikaa.org.
Personal data we collect
We collect, process, store and use personal data when you book a ticket or buy any of our associated products and services including your name, address and email address together with payment information. We may also collect personal data that you give to us about other people if you register them to attend an event. You agree that you have notified any other person whose personal data that you provide to us of this privacy policy and, where necessary, obtained their consent so that we can lawfully process their personal data in accordance with this policy.
All personal data that you provide to us must be true, complete and accurate.
When you contact us by email or other methods, we may keep a record of the correspondence and your personal data, and we may also record any telephone call we have with you.
When you visit our website or event ticket shop, we, or third parties on our behalf, automatically collect and store information about your device and your activities. This information could include (a) your computer or other device’s unique ID number; (b) technical information about your device such as type of device, web browser or operating system; (c) your preferences and settings such as time zone and language; and (d) statistical data about your browsing actions and patterns. We collect this information using cookies in accordance with the Cookie section of this policy.
How we use your personal data
We may use the personal data we collect to improve our website, the event ticket shop, our events and the products and services we provide, our marketing efforts, and for analytical and research purposes.
We may use your personal data to send you marketing communications, which may include newsletters, blog posts, surveys and information about new events.
We will use your personal data in order to comply with any contractual obligation to supply to you your tickets to an event and any products and services, including to contact you with any information relating to the event or your purchases, to deliver the event and your purchases to you in accordance with any requests you make and that we agree to, and to deal with any questions, comments or complaints you have in relation to the event or your purchases.
We may also use your personal data for our legitimate interests, including dealing with any customer services you require, enforcing the terms of any other agreement between us, for regulatory and legal purposes (for example anti-money laundering), for audit purposes and to contact you about changes to this policy.
You can choose to no longer receive marketing communications by contacting us at info@ikaa.org or clicking unsubscribe from a marketing email. If you do unsubscribe to marketing communications, it may take up to 10 business days for your new preferences to take effect. We shall therefore retain your personal data in our records for marketing purposes until you notify us that you no longer wish to receive marketing emails from us.
Who do we share your data with?
We may share your personal data with any service providers, sub-contractors and agents that we may appoint to perform functions on our behalf and in accordance with our instructions, including payment providers, event ticketing providers, email communication providers, IT service providers, accountants, auditors and lawyers.
Under certain circumstances we may have to disclose your personal data under applicable laws and/or regulations, for example, as part of anti-money laundering processes or protect a third party’s rights, property, or safety.
We may also share your personal data in connection with, or during negotiations of, any merger, sale of assets, consolidation or restructuring, financing, or acquisition of all or a portion of our business by or into another company.
Where we hold and process your personal data
Some or all of your personal data may be stored or transferred outside of the UK and the European Union (the EU) for any reason, including for example, if our email server is located in a country outside the UK or EU or if any of our service providers or their servers are based outside of the UK or EU.
Cookies
A cookie is a small text file containing a unique identification number that is transferred (through your browser) from a website to the hard drive of your computer. The cookie identifies your browser but will not let a website know your name and/or address. These files are then used by websites to identify when users revisit that website.
Our website may use cookies so that we can recognize you when you return and personalize your settings and preferences. Most browsers are initially set up to accept cookies. You can change your browser settings either to notify you when you have received a cookie, or to refuse to accept cookies. Please note that our website may not operate efficiently if you refuse to accept cookies.
Our website also may use Google Analytics to monitor how it is used. Google Analytics collects information anonymously and generates reports detailing information such as the number of visits, where visitors generally came from, how long they stayed, and which pages they visited. Google Analytics places several persistent cookies on your computer’s hard drive. If you do not agree to this you can disable persistent cookies in your browser. This will prevent Google Analytics from logging your visits.
Security
We endeavor to process your personal data in a manner that ensures appropriate security of the personal data. However, you acknowledge that no system can be completely secure. Therefore, although we take these steps to secure your personal data, we do not promise that your personal data will always remain completely secure.
Where we have given, or you have chosen a password, you are responsible for keeping this password confidential.
Your rights
You have the right to obtain from us a copy of the personal data that we hold for you, and to require us to correct errors in the personal data if it is inaccurate or incomplete. You also have the right at any time to require that we delete your personal data. To exercise these rights, or any other rights you may have under applicable laws, please contact us at info@ikaa.org.
Our website may contain links to other sites of interest. Once you have used these links to leave our website, you should note that we do not have any control over that other site. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this policy. You should exercise caution and look at the privacy policy applicable to the site in question.
Retention
We will retain your personal information for as long as is necessary to fulfill the specific purposes outlined in this privacy policy and to allow us to comply with our legal requirements. This is a case by case determination that depends on things like the nature of the data, why it is collected, why it is processed, and any relevant legal or operational retention needs. For example, we may retain your data for as long as you maintain an account on our website so that we may process and deliver your orders. We may also be legally required to hold some types of information to fulfil our statutory obligations. We review our retention periods for personal information on a regular basis. When the relevant processing activity has been completed, we may destroy your data, or alternatively anonymize the data in such a way that you are not personally identifiable, either directly or indirectly.
Personal Information Requests
You may send us an email at info@ikaa.org to request access to, correct, or delete any personal information that you have provided to us. To protect your privacy and security, we may take reasonable steps to verify your identity before granting access to, correcting, or deleting data. We may not accommodate a request to change information if we believe the change would violate any law or legal requirement or cause the information to be incorrect.
Users or website visitors residing in certain locations, including California and the European Union, may be afforded certain rights regarding their personal information. Except where an exception or exemption applies, these rights may include 1) the right to request access to or a copy of the information we have collected about you; 2) the right to review our data collection practices related to you; 3) the right to request deletion of your personal information; 4) the right to request correction of any information we hold about you; 5) the right not to be discriminated against due to your exercise of any of the preceding rights; and 6) the right to request portability of your data. In certain circumstances, you may also request restriction of, or objection to the processing we perform about you.
Basis for Processing – European Union Residents
Data protection law in Europe may require a “lawful basis” for collecting and retaining personal information from residents of the European Economic Area. Our lawful bases include:
- Performing the contract we have with you: In certain circumstances, we need your personal data to comply with our contractual obligation to deliver our products and services, and assist with any questions you may have.
- Consent: we may ask your consent to process your personal information in some situations. You have the right to withdraw consent and file a complaint with your local EU data supervisory authority.
- Legal compliance: Sometimes the law says we need to collect and use your data.
- Legitimate interests: This is a term in data protection law that allows us to process your personal information if we have a fair reason to use your data, and only if we do so in ways which do not hurt your interests and rights. We sometimes require your data to pursue our legitimate interests in running our business, including for delivering our products and services, fraud prevention, quality assurance, and marketing purposes, as long as our use of your data does not materially impact your rights, freedom or interests. This allows us to improve and develop the quality of the online experience we offer all our users.
General
This policy shall be governed by and construed in accordance with the law of the State of California, USA, and you agree to subject to the exclusive jurisdiction of California courts venued in San Francisco, California, USA.
We may change the terms of this policy from time to time. You are responsible for regularly reviewing this policy so that you are aware of any changes to it. If you continue to use our event ticket shop after the time we state the changes will take effect, you will have accepted the changes.