The site is owned and run by the SOS Publications group of companies.
- Our Values
- What is considered “personal data”?
- What kinds of information do we collect?
- How do we use your information?
- How is your information shared?
- What is our legal basis for processing data?
- You are in control of your personal data
- Where do we store your data?
- Data retention, account deactivation and deletion
- External Services
- Data Protection by Design and Data Protection Impact Assessment
1. Our Values
This website complies with all UK national laws and requirements for user privacy outlined in the EU GDPR law and the UK Data Protection Act.
This website complies with the California Consumer Privacy Act.
Learn how we collect, use, disclose, retain and protect your personal information.
SOS MusicTools prioritises customer trust. We know that your personal data is important to you. That is why we keep it private and safe, and we only ever use your personal data with your consent.
SOS MusicTools is committed to being a good guardian of your Personal Information. We will always handle it in a responsible manner, and secure it with administrative, technical, and physical safeguards.
We also believe in being honest, direct and transparent when it comes to your data and follow these three guiding principles:
Transparency: we will always be transparent about what Personal Information we collect and process.
Simplicity: we will use easy‑to‑understand language to describe our privacy practices to help you fully understand what is happening and the choices you have.
Control: we give you control over the Personal Information you provide to us.
2. What is considered “personal data”?
The GDPR and CCPA guidelines say personal data is any information relating to an identified or identifiable individual; meaning information that could be used, on its own or in conjunction with other data, to identify an individual.
Personal data will now include not only data that is commonly considered to be personal in nature (eg. names, physical addresses, email addresses), but also data such as IP addresses, behavioural data, location data, financial information, and much more.
We will only use your information for the purpose it was collected for (or for similar/related purposes).
3. What kinds of information do we collect?
The type of information we collect depends on which services you use on our site(s).
If you sign up to receive our email marketing newsletters, we collect your name and email address.
If you use our store to buy products, we require your full name, address, email address and payment details.
4. How do we use your information?
For Email Newsletter sign‑up we store your email address and the choice of newsletters in our email marketing database. You may unsubscribe and opt out from any newsletter at any time by clicking the Unsubscribe link in the message. This service is provided by MailChimp.
If you are purchasing items from our store we will request your card or PayPal payment details and process it via our Payment Service Providers, Stripe Inc or PayPal Inc. Note: we do not store your card details on our server but pass them to our payment service provider at the moment of transaction. This is done via a secure encrypted SSL link. We only retain the last four digits of your card number and the card type to help identify which card was used should there be a query with your order. Stripe and PayPal store your information on the basis of their own privacy policies.
If you have purchased from us, we keep a record of each order in the Order History section of your private My Account. You can view this in your account at any time and see a list of items you have ordered, check the status of each order and download an invoice/receipt for your own records.
See our Cookies and Site Security page.
6. How is your information shared?
SOS MusicTools will never sell your personal data. Nor will we share it with third parties without your full consent.
7. What is our legal basis for processing data?
Under GDPR guidelines there are six ‘lawful basis’ categories that may apply or be relevant and are therefore the basis for processing your data. For example, if you sign up to our email newsletters, you made the decision to provide your name and email address and select the newsletters you’d like us to send. So, by submitting your sign‑up form you have given us ‘Consent’ to provide the service. Depending on how you use our site other lawful bases may apply.
8. You are in control of your personal data
When you register on our site you create an account that we call ‘My Account’. You can log in at any time, using your email address and the password you chose when creating this account, in order to amend your contact details.
We want to ensure you remain in control of your personal data. Part of this is making sure you understand your legal rights, which for individuals are as follows:
- The right to confirm as to whether or not we have your personal data and, if we do, to obtain a copy of it (this is known as a subject access request).
- The right to have inaccurate data rectified.
- The right to object to your data being used for marketing or profiling.
- The right to have your data deleted.
If you would like further information on your rights or wish to exercise them, please contact us at firstname.lastname@example.org
9. Where do we store your data?
The SOS MusicTools website is hosted in the USA by our IT Suppliers. We use cloud‑based Enterprise Class servers in a secure environment. The hosts safeguard our sites and servers using firewalls and physical access controls at their data centres plus data access authorisation control compliant with Privacy Shield status.
We also use MailChimp for our email marketing activity. This third‑party supplier is also based in the USA and secures your data on the basis of Privacy Shield.
What is Privacy Shield?
The U.S. Department of Commerce, with the European Commission and the Swiss government, created the EU‑U.S. and Swiss‑U.S. Privacy Shield Frameworks to provide companies with a mechanism to transfer personal data from the European Union to the United States in a manner that provides an adequate level of protection for the purpose of European data protection law.
10. Data retention, account deactivation and deletion
We retain your personal information for as long as necessary to provide the Services you have requested, or for other essential purposes such as complying with our legal obligations.
Right To Be Forgotten
You may request that we deactivate or delete your account at any time, subject to our legal obligations.
Please submit your request by email to email@example.com
11. External Services
We use a number of third‑party services to monitor the usage of our website and provide customer support.
We use Google Analytics to help us understand how users interact with our site. This is completely anonymous and no personally identifiable data is collected or can be tracked back to any one individual.
12. Data Protection by Design and Data Protection Impact Assessment
Whenever we develop new services on our website which impact how your personal data is used, we will do this in the spirit of the GDPR ‘Data Protection by Design’ methodology. This requires us to carry out a ‘Data Protection Impact Assessment’ in order to discover and understand how we might implement such a service that is in the best interests of our users and is compliant.
E&OE. Last updated 01 July 2021.