PRIVACY POLICY

1. Introduction

At Host Leeds (hostleeds.com), we are committed to safeguarding your privacy and protecting your personal data. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information in accordance with applicable privacy legislation, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We prioritize transparency, user control, and accountability in all matters concerning your personal data.

2. Scope of This Policy and Data Controller Role

This Privacy Policy applies to all users, visitors, and customers accessing or interacting with hostleeds.com. Host Leeds acts as the data controller for the purposes of this policy. As the data controller, we determine the purposes and means of processing your personal information. If you have any questions or concerns related to the processing of your data, you may contact us at [email protected].

3. Categories of Data We Process

We collect and process various categories of personal data depending on your relationship with us and your interaction with hostleeds.com. The categories of data include:

– Usage Data: This includes data about how you use our website, such as your IP address, browser type and version, pages viewed, time spent on pages, links clicked, and referring/exit URLs.

– Account Data: Information you provide when creating or managing an account, including your name, email address, postal address, and phone number.

– Profile Data: Data related to your preferences, purchase history, service interactions, and user behavior on the site.

– Communication Data: Includes emails, support tickets, live chat history, and other correspondence initiated by you or us in the context of customer support and service delivery.

– Technical Data: Information about the device you use to access hostleeds.com, including device type, operating system, screen resolution, and browser settings.

– Transaction Data: Includes details of any payments made through our website, such as the date and value of payments, billing and delivery information, and partial card data (when applicable and as permitted by law).

– Preference Data: Your selected marketing and communication preferences, participation in surveys or promotions, and indicated product/service interests.

4. Legal Bases for Processing Personal Data

In compliance with GDPR and other global privacy regulations, we rely on the following legal bases to process your personal data:

– Consent: Where you have freely given clear and informed permission—for example, for marketing communications.

– Contractual Necessity: When processing is necessary to fulfill a contract, such as providing services you have requested or processing payments.

– Legal Obligation: Where processing is necessary for compliance with applicable laws and regulations.

– Legitimate Interests: When we have a legitimate business interest that does not override your rights and freedoms, such as enhancing user experience, preventing fraud, or securing our network.

5. Your Rights

We respect your rights under data protection laws and provide you with the ability to exercise them at any time. These include:

– Right of Access: You can request to access the personal data we hold about you.

– Right to Rectification: You may request corrections to inaccurate or incomplete personal data.

– Right to Erasure: You have the right to request deletion of your personal data where there is no legal or contractual obligation to retain it.

– Right to Restriction: You may request a temporary or permanent ban on processing certain data.

– Right to Data Portability: You can request to receive your data in a structured, commonly used, and machine-readable format.

To exercise these rights, please contact us at [email protected].

6. Security Measures

We implement robust technical and organizational measures to ensure the security and confidentiality of your personal data. These include:

– Data encryption during transmission and storage

– Role-based access controls and authentication

– Regular security audits and vulnerability scanning

– Staff training on data protection and discretion

– Secure cloud storage and fail-safe backup operations

7. International Data Transfers

Where we transfer personal data outside of your jurisdiction, including outside the European Economic Area (EEA), we ensure such transfers occur under appropriate safeguards, such as Standard Contractual Clauses approved by the European Commission or, where applicable, assurances under robust regional privacy frameworks.

8. Data Retention

We only retain personal data for as long as necessary to fulfill the purposes for which it was collected, including meeting legal, accounting, or reporting requirements. Typical retention periods include:

– Usage and Technical Data: Up to 12 months from collection

– Account and Profile Data: While the account remains active, and up to 6 years thereafter

– Transaction Data: Up to 7 years for compliance with financial and audit obligations

– Communication Data: Up to 3 years unless otherwise requested

– Preference Data: Retained until you update or withdraw your consent

9. Cookie Policy

hostleeds.com uses cookies to enhance user experience and analyze website performance. The types of cookies we use include:

– Essential Cookies: Necessary for website functionality and security (e.g., session management, site navigation)

– Functional Cookies: Enable personalization such as remembering your preferences

– Analytical Cookies: Help us understand visitor behavior via data analytics tools like Google Analytics

– Performance Cookies: Track reliability and speed of site performance to improve service delivery

10. Cookie Management and Legal Compliance

Under GDPR and CCPA, you have the right to opt-in or opt-out of non-essential cookies. Upon visiting hostleeds.com, you will be presented with a cookie banner allowing you to manage your preferences. You can also adjust your cookie settings anytime through your browser controls or via our dedicated Cookie Settings page. Note that disabling some cookies may affect website functionality.

To opt out of certain tracking technologies under CCPA, you may also submit a “Do Not Sell or Share My Personal Information” request through tools delineated on our site.

11. Children’s Privacy

hostleeds.com is not directed to children under the age of 13, and we do not knowingly collect or process data from minors. If we become aware that we have collected personal data from a child without verified parental consent, we will delete such information promptly. Parents or guardians who believe their child has provided us with personal information may contact us at [email protected].

12. Policy Updates and Revisions

We may occasionally update this Privacy Policy to reflect changes in law, technology, or service offerings. Significant changes will be communicated via a prominent notice on hostleeds.com or by direct communication if applicable. We encourage you to review this Policy periodically to stay informed about how we protect your personal data.

13. Contact Information

If you have questions, complaints, or requests related to this Privacy Policy or our handling of your personal data, please contact:

Data Protection Officer
Host Leeds
Email: [email protected]

We are committed to resolving your concerns and fulfilling our obligations under applicable data protection laws.

This Privacy Policy reflects Host Leeds’ strong commitment to privacy, transparency, and data protection. We aim to maintain your trust and comply with all legal requirements to safeguard your personal information. For further details about how we manage your data or to submit a request, please reach out to us at [email protected].