This policy (“Cookies Policy”) is issued by BM UK Productions Ltd (referred to as “we”, “us” or “our” in this Cookies Policy), and applies to our use of “cookies” in connection with the website getupstandupthemiusical.com (“Website”).
what a cookie is (paragraph 2);
an overview of the cookies we use (paragraph 3);
what you can do if you do not agree to the cookie use (paragraph 4);
further information about cookies in general (paragraph 5); and
a detailed table listing all of the cookies that we use (paragraph 6).
If you don’t want to accept cookies in connection with your use of the Website, you should stop using it or turn off your cookies (see paragraph 4 below for how to do this) but this may impact how the Website functions.
2. What is a cookie?
Cookies are small text files containing small amounts of information which are downloaded and may be stored on any of your devices that enable internet usage e.g. your computer, smartphone or tablet - like a memory for a web page.
3. Cookies used on the website
We use several different types of cookies. In particular, we use: necessary cookies which allow certain fundamental features of the Website to work; functionality cookies, which allow us to remember choices you make (e.g. your cookie preference); and performance cookies, which monitors usage of the Website. We also use third party cookies - these are cookies that are set by a third party website rather than by us.
Some of these are session cookies which are temporary and allow us to link your actions during a single use of the Website. These are deleted at the end of your browsing session. Others are persistent cookies which remain on your device for the period of time specified in the cookie. These cookies help us to identify you as a unique user (by storing a randomly generated number).
The following is a more detailed explanation of the types of cookies we use:
a. Necessary cookies
Necessary cookies are essential and help you navigate the Website. This helps to support security and basic functionality and are necessary for the proper operation of the Website, so if you block these cookies we can't guarantee your use or the security during your visit.
b. Functionality cookies
c. Performance cookies
Performance cookies help us to understand the behaviour of users of the Website. This allows us to continuously improve the Website to provide the best recruitment experience. These cookies are also used to help us understand how effective our Website is; for instance these cookies tell us which pages visitors go to most often and if they get error messages from web pages. All of the information that these cookies collect is aggregated, to assist us to improve how the Website works. Some of these cookies are managed by third parties, and you may refer to the third parties' own website privacy notifications for further information. In particular, we use Google Analytics cookies to obtain an overall view of user habits and volumes, and to help improve the overall experience on the Website.
If you prevent these cookies, we cannot guarantee how the Website will perform for you.
4. Control your cookie settings
1. Necessary cookies (See section 3a of this Policy)
Expires 2 hours from date set
Holds CSRF Token
CSRF is used to protect the website against malicious cross-site scripting attacks.
2. Functional cookies (See section 3b of this Policy)
1.1 This website getupstandupthemusical.com is owned by BM UK Productions Ltd. We are committed to safeguarding your privacy online and to this end have developed the following policy to deal with issues which may concern you. This policy explains the kinds of data that we process in connection with the website, how that data is used, how it’s protected and how you can find out what rights you have in relation to your data.
1.2 We reserve the right to update or otherwise amend this policy at any time.
1.3 By accessing, browsing or otherwise using this website you confirm that you acknowledge the terms of this policy. If you are not happy with any part of this policy, you should not use this website or use our services.
2. Speed Read and Key Shortcuts
How we use your personal data - section 4
Who receives your personal data - section 9
Your rights - section 12
Who to contact - section 13
3. Types of Personal Data Processed
3.1 "Personal data" is a concept defined by data protection law, and refers to information which relates to an identified or identifiable individual.
3.3 Typically the types of personal data that you will provide to us when using our website include, but may not be limited to, the following:
3.3.1 Your Personal Details - for example your name, date of birth, and personal contact details; and
3.3.2 Transaction Data - for example what tickets and preferences you have; and
3.3.3 Your Financial Information - for example your credit and/or debit card details.
4. Legal Basis and Purposes for Processing
4.1 We use your personal data for a number of purposes which we have listed at paragraph 4.3 below.
4.2 Whenever we process your personal data, we do so on the basis of a lawful "condition" for processing. In the majority of cases, the processing of your personal data will be justified on one of the following bases:
4.2.1 it is provided for in your terms when you purchase a ticket, and therefore necessary to give effect to that contract (for example, collecting bank account details to arrange payment for your ticket that you have purchased);
4.2.2 it is necessary for us to comply with a legal obligation (for example, disclosing VAT data to HMRC); or
4.2.3 it is in our legitimate interests to operate as a business, and our interests are not overridden by your interests, fundamental rights or freedoms (for example, to market services to you, or to enable you to post messages on our bulletin board or to enable customers to use any other features of the website that may be offered from time to time, and may require such information in order to utilise the feature).
4.3 The purposes for which we process your personal data are to:
4.3.1 to provide a service to you in line with our business aims;
4.3.2 to manage, analyse, understand and develop your relationship with us, including where you volunteer to complete a survey or participate in a promotion;
4.3.3 to keep you informed of any of our other/new events and activities that may be of interest to you, where you have chosen to be made aware of this;
4.3.4 to troubleshoot problems with the website, or to customise your experience on the website;
4.3.5 investigate and respond to complaints or queries;
4.3.6 other purposes consistent with the processes envisaged by the categories of data listed in Section 3.3; and
4.3.7 exercise our rights to defend, respond to or conduct prospective or actual legal claims or proceedings
The Website is not designed for children under the age of 12. We do not knowingly permit children to purchase tickets or sign up to a newsletter. Where we become aware that we have collected such data, we will take all reasonable steps to delete such data.
6.1 We may use the information you provide us with to keep you informed about events, activities or services which we provide and which we believe you may be interested in, in accordance with your preferences.
6.2 Where we provide you with tickets for an event, we provide the opportunity for you to give an opt-in consent to provide you with our promotional marketing. If you do not provide your consent then we will not send you information via electronic communications (e.g. email or SMS). We may however contact you in future by telephone or post where we reasonably believe (on the basis of services that we are providing to you) that there are additional, different services which you may be interested in. If you do not wish to receive direct marketing communications from us you can let us know by unsubscribing from such communications by means of a link provided in every electronic message that is sent to you by us.
7. Retention of Personal Data
7.1 Our general approach is to only retain personal data for as long as is required to satisfy the purpose for which it was collected by us or provided by you. We will take steps to delete or anonymise the data where it is no longer required for those purposes (for example, if you have not contacted us, or purchased any tickets for over 3 years).
7.2 In certain cases, legal or regulatory obligations require us to retain specific records for a set period of time, including following the end of your relationship with us (including for tax and audit purposes).
7.3 In other cases, we deliberately retain records in order to resolve queries or disputes which we think may arise from time to time.
8. Sources of Personal Data
Primarily the personal data we process about you will have been provided by you, either during your visit to our website, or on an ad hoc basis during the course of relationship with you. From time to time, we may receive personal data about you from other third parties, for example other arts foundations where you have consented to your information being shared with us.
9. Disclosures of Personal Data
9.1 We use a number of third-party suppliers or social media platforms to help us provide IT services or run marketing campaigns with us (in particular we share data with Facebook to build custom and lookalike audiences (although you can turn off this feature within your Facebook account). These third parties may have access to or merely host your personal data, but they will only do so under our instruction and subject to a contractual relationship.
9.2 We may be required to disclose your personal data to third parties:
9.2.1 in response to orders or requests from court, regulators, parties to a legal proceeding or public authorities; or
9.2.2 to comply with regulatory requirements or as part of a dialogue with a regulator
10. Cross-border Transfers
10.1 Certain suppliers and service providers may have personnel or systems located outside of the EEA. Where your personal data may be transferred outside of the EEA, we will take steps to ensure that your personal data receives an adequate level of protection, including by, for example, entering into data transfer agreements or by ensuring that third parties are certified under appropriate data protection schemes (in particular, we make use of Dropbox which is certified with the EU-US Privacy Shield Framework). You have a right to request a copy of any data transfer agreement under which your personal data is transferred, or to otherwise have access to the safeguards used. Any data transfer agreement made available to you may be redacted for reasons of commercial sensitivity.
11. Security of your Personal Data
11.1 We implement reasonable physical, technical and administrative security standards designed to protect your personal data from loss, misuse, alteration, destruction or damage. To this end all personal data stored by us is kept on a server in a secure environment and regular security reviews are held by us to ensure that the website remains safe and secure for your protection.
11.2 We take steps to limit access to your personal data to those individuals who need to have access to it for one of the purposes listed in Section 4.
11.3 You also have an important role to play in protecting the security of your personal data, and you should take care about whom you disclose personal data to, and how you protect your communications and devices.
12. Data Subject Rights
12.1 You have the following rights in respect of your personal data:
12.1.1 to obtain a copy of your personal data together with information about how and on what basis that personal data is processed;
12.1.2 to rectify inaccurate personal data;
12.2 From 25 May 2018, you also have the right:
12.2.1 to erase your personal data in limited circumstances where it is no longer necessary in relation to the purposes for which it was collected or processed;
12.2.2 to restrict processing of your personal data where: (a) the accuracy of the personal data is contested; (b) the processing is unlawful but you object to the erasure of the personal data; (c) we no longer require the personal data for the purposes for which it was collected, but it is required for the establishment, exercise or defence of a legal claim;
12.2.3 to challenge processing which we have justified on the basis of a legitimate interest;
12.2.4 to object to decisions which are based solely on automated processing or profiling;
12.2.5 to obtain a portable copy of your personal data, or to have a copy transferred to a third party controller; or
12.2.6 to obtain a copy of or access to safeguards under which your personal data is transferred outside of the EEA (see Section 10).
12.3 In addition to the above, you have the right to lodge a complaint with the Information Commissioner's Office, who is the UK supervisory authority for data protection, however we would ask that you try to resolve such matters with us directly first.
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.