An advice blog for disabled students

Privacy and Cookie Policy

Privacy Policy

Welcome to www.spoonsintheocean.com, I take the protection of your Personal Data very seriously. I treat your Personal Data confidentially and in accordance with the Data Protection Act (“DPA”) and the General Data Protection Regulation (“GDPR”), and only as described in this privacy policy.

Personal Data is any information relating to personal or material circumstances that relates to an identified or identifiable individual. This includes, for example, your name, date of birth, e-mail address, postal address, or telephone number as well as online identifiers such as your IP address. In contrast, information of a general nature that cannot be used to determine your identity is not personal data. This includes, for example, the number of users of a website. However, I reserve the right to put this data to additional uses to the extent permitted or required by law or necessary to support legal or criminal investigations. In this case, I will inform you again about this further data processing to the extent required by law and obtain your consent.

Responsible for data processing

Responsible for data processing in accordance with the provisions of the GDPR and DPA is:


SpoonsInTheOcean

Alicia Parfitt

Penryn, United Kingdom


Web: www.spoonsintheocean.com

E-mail: spoonsintheocean@gmail.com

Instagram: https://www.instagram.com/spoonsintheocean/


Data processing

The individual data concerned, processing purposes, legal bases, recipients and, where applicable, transfers to third countries are listed below:

  1. a) Log file during website visit

My website logs your website visit. In doing so, I process:

  • date and time of the access,
  • the amount of data transferred,
  • the browser type and version,
  • the operating system you use,
  • the referrer URL (the previously visited web site),
  • your IP address,
  • the requesting provider.

The legal basis for data processing is my legitimate interest in the ongoing provision and security of my website (Art. 6 (1) f GDPR).

The log file is deleted after seven days, unless it is needed to prove or clarify specific legal violations that have become known within the retention period.

  1. b) Contacting me

If you contact me, I process the data you provide for the purpose of processing and handling your enquiry. This may include your name, contact details, telephone number and your message.

The legal basis of the data processing is my obligation to fulfil the contract and/or to fulfil pre-contractual obligations (Art. 6 (1) b) GDPR) and/or my legitimate interest in processing your enquiry (Art. 6 (1) f) GDPR).

  1. c) Contract fulfilment and data management in the context of service provision

I process various data within the framework of the provision of my services and for the initiation and processing of the existing contractual relationship between you and me.

If you have commissioned me to provide a service, I process your data (if provided: Name, contact details (email address and telephone number), address, bank details) and all other information that is necessary in the context of fulfilling the services, exclusively for the purpose of processing and handling the contractual relationship. This includes, appropriate advice and support, correspondence with you, invoicing, fulfilment of my accounting and tax obligations.

Accordingly, the data is processed on the basis of a contract (Art. 6 (1) b) GDPR) as well as to fulfil my legal obligations (Art. 6 (1) c) GDPR).


Duration of data storage

I only store personal data for as long as it is necessary for the purposes for which it is processed or for as long as any consent you have given me has been revoked by you. Insofar as statutory retention obligations must be observed, the storage period for certain data may be up to 6 years, irrespective of the processing purposes.

 

Transfer of personal data

I will not disclose or otherwise distribute your personal data to third parties unless this is necessary for the performance of my services (legal basis for processing: Art. 6 (1) b) GDPR), or you have consented to the disclosure (legal basis for processing: Art. 6 (1) a) GDPR) or the disclosure of data is permitted by relevant legal provisions.

I’m however, entitled to outsource the processing of your personal data in whole or in part to external service providers acting as processors on my behalf (Art. 4 No. 8 GDPR) and the framework of the DPA provisions. External service providers support me, for example, in the technical operation and support of the website, data management, the provision and performance of services, marketing, as well as the implementation and fulfilment of reporting obligations.

The service providers commissioned by me process your data exclusively in accordance with my instructions. I remain nonetheless responsible for the protection of your data, which is ensured by strict contractual regulations, technical and organisational measures, and additional controls.

Personal Data may also be disclosed to third parties if I’m legally obliged to do so e.g., by court order (legal basis for processing: Art. 6 (1) (c) GDPR) or if this is necessary to support criminal or legal investigations or other legal investigations or proceedings at home or abroad or my legitimate interests (legal basis for processing: Art. 6 (1) (f) GDPR).

 

Automated decision-making

Automated decision-making including profiling (Art. 22 (1) and (4) GDPR) does not take place.

 

Data Subject Rights

The following rights arise from the DPA and the GDPR:

  • Pursuant to 15 GDPR, you may request information about your Personal Data processed by me. In particular, you can request information about the processing purposes, the categories of Personal Data, the categories of recipients to whom your data have been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data if it has not been collected by me, about a transfer to third countries or to international organisations, and about the existence of automated decision-making, including profiling, and, if applicable, meaningful information about its details.
  • Pursuant to 16 GDPR, you can immediately request the correction of inaccurate or the completion of your Personal Data stored by me.
  • Pursuant to 17 GDPR, you may request the erasure of your Personal Data stored by me, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise, or defence of legal claims.
  • Pursuant to 18 GDPR, you may request the restriction of the processing of your Personal Data if you dispute the accuracy of the data, the processing is unlawful, I no longer need the data and you object to their erasure because you need them for the assertion, exercise or defence of legal claims. You also have the right under Article 18 of the GDPR if you have objected to the processing in accordance with Article 21 of the GDPR.
  • Pursuant to 20 GDPR, you may request to receive your Personal Data that you have provided to me in a structured, commonly used and machine-readable format or you may request that it be transferred to another controller.
  • Pursuant to 7 (3) GDPR, you may revoke your consent once given to me at any time. This has the consequence that I may no longer continue the data processing based on this consent for the future.
  • In accordance with 77 GDPR, you have the right to complain to a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence, your place of work for this purpose.
  • Right of objection. When your Personal Data is processed on the basis of legitimate interests pursuant to 6 (1) f GDPR, you have the right to object to the processing of your Personal Data pursuant to Art. 21 GDPR, insofar as there are grounds for doing so that arise from your particular situation or the objection is directed against direct advertising. In the case of direct advertising, you have a general right of objection, which is implemented by me without specifying a particular situation.

 

Security

State-of-the-art internet technologies are used to ensure the security of your data. During the online enquiry process, your details are secured with SSL encryption. For secure storage of your data, the systems are protected by firewalls that prevent unauthorised access from outside. In addition, technical and organisational security measures are used to protect the personal data you have provided against accidental or intentional manipulation, loss, destruction, or access by unauthorised persons.


Social Media

I’m present on Instagram, in order to communicate with my community, interested parties and users registered there and to be able to inform them about my offers there. I would like to point out that you use Instagram and its functions on your own responsibility. This applies in particular to the use of the interactive functions (e.g., commenting, sharing, rating).

In addition, your data may be processed by Instagram for market research and advertising purposes. For example, usage profiles can be created from your usage behaviour and the resulting interests. This allows, for example, advertisements to be placed within and outside the platforms that presumably correspond to your interests. Cookies are usually stored on your computer for this purpose. Independently of this, data that is not directly collected from your devices may also be stored in the usage profiles. I, as the provider of this policy, do not collect and process any data from your use of my service beyond this.

The processing of users’ personal data is based on my legitimate interests in providing users with effective information and communicating with users (Art. 6 (1) f. GDPR). If you are asked by the respective providers for consent to data processing (Art. 6 (1)  a., Art. 7 GDPR).

If you are a member of a social network and do not want the network to collect data about you via my website and link it to your stored membership data with the respective network, you must

  • log out of the respective network before visiting my website,
  • delete the cookies on your device and
  • close and restart your browser.

After logging in again, however, you will once more be recognisable to the network as a specific user. In the case of requests for information and the assertion of user rights, we would also like to point out that these can most effectively be asserted with the providers. Only the providers have access to the users’ data and can take appropriate measures and provide information directly. If you still need help, you can contact me.


Updating your information

If you believe that the information, I hold about you is inaccurate or that I`m no longer entitled to use it and want to request its rectification, deletion, or object to its processing, please do so by contacting me. For your protection and the protection of all of my users, I may ask you to provide proof of identity before I can answer the above requests.

Keep in mind, I may reject requests for certain reasons, including if the request is unlawful or if it may infringe on trade secrets or intellectual property or the privacy of another user. Also, I may not be able to accommodate certain requests to object to the processing of Personal Data, notably where such requests would not allow me to provide my service to you anymore.


Links to other providers

Our website also contains – clearly recognisable – links to the websites of other companies. Insofar as there are links to websites of other providers, I have no influence on their contents. Therefore, no guarantee or liability can be assumed for these contents. The respective provider or operator of the pages is always responsible for the content of these pages.

The linked pages were checked for possible legal violations and recognisable infringements at the time of linking. Illegal contents were not recognisable at the time of linking. However, permanent monitoring of the content of the linked pages is not reasonable without concrete indications of a legal violation. Such links will be removed immediately if infringements of the law become known.


Personal Data and children

Our services are aimed at people aged 18 and over. I will not knowingly collect, use or disclose Personal Data from minors under the age of 18 without first obtaining consent from a legal guardian through direct offline contact.

 

Changes and updates to the privacy policy

I kindly ask you to regularly inform yourself about the content of my privacy policy. I will amend the privacy policy as soon as changes to the information processing activities I carry out make this necessary. I will inform you as soon as the changes require an act of cooperation on your part (e.g., consent) or other individual notification.

 

Concerns and Contact

If you have any concerns about a possible compromise of your privacy or misuse of your Personal Data on my part, or any other questions or comments, you can contact me.


Cookies Policy

My website, www.spoonsintheocean.com uses cookies in order to collect and process information so that I`m able to better understand and improve my website, and to provide you with a customised online experience. I use the term “cookies” to refer to cookies and other similar technologies.

When cookies are used, your data may be transferred to recipients outside the UK/EEA where there is not an adequate level of data protection in accordance with the General Data Protection Regulation (GDPR) and the Data Protection Act 2018 (DPA) for example the USA.

Please read this Cookie Policy carefully to learn what a cookie is, which cookies I`m using and for what reason, and how you can manage your cookie settings, including how you can refuse or block all or certain types of cookies set by your visit on the Website.

To find out more about cookies, including how to see what cookies have been set, visit www.aboutcookies.org or www.allaboutcookies.org.

It is not necessary to accept cookies in order to use the website. However, there may be certain areas and features on the website that you will not be able to use.


What are cookies?

Cookies are very small text files or pieces of code, which often include an anonymous unique identifier. When you visit a website, the website sends information to your computer or mobile device and creates a text file that is then stored on your computer or mobile device. Information gathered through cookies may include the date and time of visits and show how people use the particular website or mobile application, usually so the website operator can make improvements. Amongst other things, cookies are also used to help you access a website and its content as efficiently as possible (by remembering you from your last visit) and to make sure you are presented with advertising that is relevant to you.

Similar to cookies are technologies known as “web beacons”, “pixels or “tags”. These technologies do a similar job to cookies, allowing website operators to count page views and understand how visitors interact with and respond to certain content.

Below I explain which cookies we use, for what purpose we process data from you for this purpose and how you can revoke any consent you may have given to the use of cookies.


How long do cookies last?

The lifespan of a cookie depends on its purpose and how you interact with it:

Session Cookies – these are temporary cookies that are placed on your device during your browsing session and then automatically erased when you close your browser.

Persistent Cookies – these are designed to last for a pre-defined period of time, which varies depending on the nature of the cookie. Persistent cookies stay in your browser until they reach their individual expiry date or you manually delete them.


Which cookies are used on our Site?

We use the following types of cookies:

Essential Cookies/Strictly Necessary Cookies – These cookies are those cookies which a website could not operate without. These include cookies such as login cookies and shopping cart cookies.

Functional Cookies – These cookies recognise you when you return to a website, remember your preferences and provide enhanced, more personalised features.

Performance Cookies – Performance cookies, along with other information, allow websites to calculate the aggregate number of people using a website and which features of a website are the most popular. This information is generally used to improve the website and the way visitors are able to move around it.


Cookies used

Below are the cookies my website uses. Please keep in mind that the cookies used may change from time to time and that this Cookie Policy will be updated accordingly.

 

Cookie

Type 

Description

Lifespan

cookielawinfo-checkbox-necessary

Necessary

Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the “Necessary” category .

1 year

cookielawinfo-checkbox-functional

Necessary

The cookie is set by the GDPR Cookie Consent plugin to record the user consent for the cookies in the category “Functional”.

1 year

cookielawinfo-checkbox-performance

Necessary

Set by the GDPR Cookie Consent plugin, this cookie is used to store the user consent for cookies in the category “Performance”.

1 year

cookielawinfo-checkbox-analytics

Necessary

Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the “Analytics” category .

1 year

cookielawinfo-checkbox-advertisement

Necessary

Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the “Advertisement” category .

1 year

cookielawinfo-checkbox-others

Necessary

Set by the GDPR Cookie Consent plugin, this cookie is used to store the user consent for cookies in the category “Others”.

1 year

elementor

Necessary

This cookie is used by the website’s WordPress theme. It allows the website owner to implement or change the website’s content in real-time.

never

 

How do I refuse, block or delete cookies?

You can manage your cookie settings using the setting options listed below or by configuring your browser settings. Most browsers are pre-set to accept cookies by default. However, you can configure your respective browser so that it only accepts certain cookies or not at all. You can also use your browser settings to delete cookies already stored in your browser or to have the storage period displayed. Furthermore, it is possible to set your browser to notify you before cookies are stored. Since the various browsers can differ in their respective functions, we ask you to use the respective help menu of your browser for the configuration options. Below you will find general instructions on how to manage cookies for the most popular browsers: Google Chrome, Microsoft Internet Explorer and Edge, Mozilla Firefox, Apple Safari, Opera Web. If you would like a comprehensive overview of all third-party accesses to your Internet browser, we recommend that you install specially developed plug-ins for this purpose.

 

Does this policy change?

I may update our Cookie Policy from time to time. This might be for a number of reasons, such as to reflect a change in the law or to accommodate a change in our business practices and the way we use cookies. I recommend that you check here periodically for any changes to our Cookie Policy.


Questions?

If you have any questions regarding this Cookie Policy or if you need more information on how we use cookies, please contact me.