Privacy

Privacy

Our policy on privacy and your rights while browsing and interacting with our website. This policy was updated on 01 December 2019.

Introduction

TLC Encuentros Ltd (hereinafter “Garúa Milonguero”, “we”, “us” and “our”) is an event website dedicated to providing information about the tango event Garúa Milonguero Craicfest.

Our products and services (hereinafter “Services”) are available to anyone via our website (hereinafter “Our Website”), located at https://garua-milonguero.com. This Privacy Policy, together with any other referenced documents herein, explains what Personal Data we collect, how we collect it and why, how we use this data, the conditions under which we may disclose it to others and what choices our customers (hereinafter “Customers”, “you”, “your”), meaning any person who has been granted access to use Our Website.

For the purposes of this policy and in respect of your personal data (hereinafter “Personal Data”) Garúa Milonguero may act as either a data controller (hereinafter “Controller”), that is, the entity that decides how and why Personal Data is processed, or, a data processor (hereinafter “Processor”, “Third Party Service Provider”), meaning, any person, other than employees of the Controller, entity or entity’s website, that processes Personal Data on behalf of the Controller, depending on the circumstances. Data “process”, “processing” or “processed” means anything that is done with any Personal Data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

We do all we can to respect, limit and protect your Personal Data. By using our Services, you agree to be bound by this Privacy Policy.

What is personal data

Personal Data is information that can be used directly or indirectly to identify you. Personal data also includes anonymous information that is linked to information that can be used to directly or indirectly identify you. Personal Data does not include information that has been irreversibly anonymised or aggregated so that it can no longer enable us, whether in combination with other information or otherwise, to identify you.

Why we collect personal data

Our legal grounds for collecting your Personal Data is because either you provided your express consent (written, verbal or online) to the processing of your Personal Data, it is necessary for our contractual relationship (“contractual necessity”), the processing is necessary for us to comply with our legal or regulatory obligations or we have a legitimate interest in carrying out the processing for the purpose of managing, operating or promoting our event.

Personal data we collect

We collect the minimum amount of data we need to be able to deliver our Services to you in the best possible way, to maintain Our Website, to protect the privacy of all our Customers, to keep you informed, to process transactions for you and respond to correspondence. We do not gather sensitive Personal Data about you without your prior, informed, consent. We may collect Personal Data either directly from you, automatically from your devices that interact with our Services, or from Third Party Service Provider sources as described below.

Information provided directly and voluntarily by you may include:
● Your name, email address and telephone number;
● Gender, country of residence and social media profile;
● Any consents, communications and feedback;
● Personal interests, preferences, medical conditions and emergency contact name and telephone number;
● Other personal information collected on the basis of your prior, express, voluntary consent.

Additional information collected when you use our websites may include:
● Your browser, operating system, device model, IP-address, time of access and duration of access;
● Location data such as GPS coordinates or similar measures;
● Web pages through which Our Website were accessed, the pages browsed by you, any other activities you undertook during your visit to Our Website such as interactions, clicked referral links and search key words you used;
● Cookies and other identification tags;
● Your participation in our promotions, surveys, events or competitions; and
● Other information collected based on your consent.

Additional information related to the purchase of our paid services and any other business with us by you:
● Information on orders, deliveries, payment methods, billing and delivery addresses and other information related to any business you may do with Garúa Milonguero;
● Any communication we have with you;

Note that when using any of our paid Services, you may be asked for financial details such as credit or debit card information for payment processing purposes. Any Personal Data collected during payment processing is held on Third Party Service Provider’s separate secure servers and is subject to that Third Party Service Provider’s terms and privacy policy. We do not store any credit or debit card information on our servers. Refer to Section 11 regarding “Exclusions”.

Information collected from other sources associated with your interaction with us:
● If you have connected to Our Website, service or social media channel using your social media profile(s), we may collect the public information available on your social media profile(s);
● We may collect information from public registers maintained by authorities, if such registers are available in your country; and
● Updated delivery and contact information from delivery agents.

Cookies and similar technologies

Our Website uses cookies and similar technologies to provide, protect, and improve our Services, such as by personalising content, understanding user behaviour, and providing a safer experience. You can remove or reject cookies using your browser or device settings, but in some cases doing so may affect your ability to use our Services. Please read our separate Cookies Policy for more information and how to refuse cookies.

How we use your personal data

We use the private information we have collected for the following purposes:

NOTIFICATIONS
As is our legal obligation we will notify you by email about any changes to our terms of service and other legal policies or documentation.

LEGAL OBLIGATIONS
We may process your Personal Data for the purposes of detecting, investigating and preventing unlawful or fraudulent activities. We may provide your information to law enforcement authorities based on their request or on a legal basis defined in any applicable law for prevention and investigation of fraud and other unlawful activities. We may disclose your Personal Data to any party in response to an order from a court of competent jurisdiction.

CONTRACTUAL OBLIGATIONS
If you have ordered paid Services from us, we may collect your Personal Data for the purposes of processing your order(s) and to fulfil any contractual obligations we have with you. Payment details are not stored in our systems. Instead, payment data is provided by you directly to Third Party Service Providers. Refer to Section 11 regarding “Exclusions”.

MARKETING AND COMMUNICATIONS
We will retain your Private Data in order to respond effectively to your correspondence with us (written or verbal). If you have subscribed to any of our various marketing and communication channels, we will keep you informed of Garúa Milonguero event news or information published on Our Website as part of our Services. Such marketing and communications may be carried out via mail, telephone, electronic messages (emails and other electronic messages), digital online displays, web-based notifications and search engine marketing.

PRIVACY PROTECTION
We may need to identify you for the purposes of ensuring your privacy and the privacy of all our Customers is protected. We may also identify you to provide you with better, more personalised and customised Services. For example, Our Website uses “cookies” to enhance your experience when browsing. Refer to Section 5 regarding “Cookies”.

WEBSITE MAINTENANCE
We use anonymised data to help us maintain and develop Our Website, troubleshoot problems, research general user interests, to keep Our Website safe and secure and to monitor actual or suspected fraudulent activity. This information is delivered to us by Third Party Service Providers in an aggregated format. Data in an aggregated format cannot be used to identify you and is not considered Personal Data. Refer to Section 11 regarding “Exclusions”.

SERVICES DEVELOPMENT AND DELIVERY
We may process Personal Data to allow you to participate in interactive features of our Services, measure the effectiveness of our Services, improve our existing Services and to develop new ones. If you choose to participate in any of our consumer surveys, panels or questionnaires we may connect any feedback and communication received from you with your account. Such activities are aimed at ascertaining a meaningful analysis of our customers’ preferences, expectations and opinions. The processing of Personal Data collected through such research, panels and surveys is governed by this Privacy Policy.

Retention period

We take every reasonable step to ensure that your Personal Data is processed for the minimum period necessary and solely for the purposes set out in this Privacy Policy.

Contractual necessity

Your Personal Data is stored for as long as it is absolutely necessary to deliver our contracted Services.

Legal obligation

We may retain your data for a longer period if we are legally required to do so in compliance with applicable law including the resolution of legal claims and disputes, to establish, exercise or defend our legal rights and any other additional periods required or permitted under applicable law. Remember to update your information if any material changes occur.

Disclosure

There are certain controlled circumstances in which we may disclose, transfer or share your information with certain Third Party Service Providers without further notice to you and in accordance with applicable law. Your data is adequately protected if transferred internationally.

Trading data

We do not, and will never, procure, sell, lease or rent your Personal Data.

Automated profiling and decision making

We do not use any Personal Data for automated decision making or profiling nor is such data subject to automated decision making or profiling.

Legal requirements

We may disclose your Personal Data if required to do so by law in order to, for example, respond to a subpoena or request from law enforcement, a court or a government agency, including in response to public authorities to meet national security or law enforcement requirements, or in the belief that such action is necessary to (a) comply with a legal obligation, (b) protect or defend our rights, interests or property or that of third parties, (c) prevent or investigate possible wrongdoing in connection with our Services, (d) act in urgent circumstances to protect the personal safety of our Customers or the public, or (e) protect against legal liability.

Mergers and aquisitions

In the event of any sale, consolidation or reorganisation of our businesses (for example mergers and acquisitions), we may disclose your Personal Data to prospective or actual purchasers or their advisers, where appropriate.

Third party service providers

We may pass limited information to some Third Party Service Providers who we have engaged for the purpose of providing you with our Services and any other contractual obligations we have established with you. Such disclosures may include transferring your Personal Data to payment processors, companies that facilitate your orders, delivery companies and customer service teams. We also share information with analytics providers that assist us in the improvement and optimisation of Our Website. This analysis data is aggregated and does not identify you. We have verified that these Third Party Service Providers are GDPR compliant and are certified under the EU-US Privacy Shield Framework where these organisations are based outside of the European Union.

Safeguarding

We take security very seriously and have created and implemented both technical and organisational safety measures, systems and processes to protect your Personal Data. Such security measures are designed to protect your Personal Data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, unauthorised access, and other unlawful or unauthorised forms of processing, in accordance with applicable law. A copy of our internal Data Security Policy is available on request.

Staff training and accountability

All personnel authorised to access and process Personal Data are trusted and accredited or are authorised personnel of Third Party Service Providers operating on our behalf. All Garúa Milonguero personnel who are granted access to your Personal Data are required to keep such data strictly confidential.

Storage security

All Private Data is stored on encrypted, password protected, servers. We use best practice concerning devices such as computers, laptops and mobiles, online accounts, website hosting servers as well as physical access and storage.

Data minimisation

We hold only the data that is absolutely necessary to deliver our Services.

Data transfer

Unfortunately, the transmission of information via the internet is never completely secure. We therefore cannot guarantee the security of your data transmitted to our site and any such transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access. Additionally, the data that we collect from you may be transferred to, and stored, at a destination outside the European Economic Area (“EEA”). It may also be processed by personnel operating outside the EEA who work for one of our Third Party Service Providers. Third party personnel may be engaged in, among other things, the fulfilment of your order, the processing of your payment details and the provision of support Services. By submitting your Personal Data, you agree to this transfer, storing and/or processing. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy.

Your rights

You have certain rights concerning the information we hold about you, as defined under the General Data Protection Regulation (hereinafter “GDPR”). If you have contracted business with us or subscribed to any of our communication Services, you have full access to your private information with, as is your right, the ability to opt in, view, update, correct, take copy of and delete forever your private information. Please contact us to make any such request. Refer to Section 13 for contact information.

CHOOSE TO DECLINE
You may choose not to provide your Personal Data to us. Note that some features of our Services may not be fully available to you if you choose not to provide us with your Personal Data.

CHOOSE TO OPT IN
By choosing to contract business with us or subscribe to any of our marketing and communication Services you will be given prior informed opportunity to provide the minimum Personal Data required and consent to our retention of same.

ACCESS, VIEW, EDIT AND UPDATE
You have the right to request access to your Personal Data, together with information regarding the nature, processing and disclosure of that data, at any time. We hope to ensure that the Personal Data we possess is accurate at all times and therefore we encourage you to update us should any changes have occurred. If you have opted in to any of our marketing and communications Services you will find the links to update your information at the bottom of every communication you have previously received.

REQUEST COPY
You may request a copy of any data we hold about you. Expect our response within and up to 40 days of the date of your request. Upon request, we will provide you with an electronic file containing the Personal Data we hold on record about you.

CHOOSE TO OPT OUT AND BE FORGOTTEN
You may at any time decide to withdraw your consent to the processing of your Personal Data and request erasure. If your consent is withdrawn, we will update our database promptly, however, it does not prevent us from processing your Personal Data based on other legal premises, such as fulfilling your orders and storing your order data as required by applicable law. Please note that withdrawal of consent does not affect the lawfulness of any processing performed prior to the date on which we receive notice of such withdrawal. Should you request that your Personal Data is deleted we will respond within 40 days.

OBJECT
You may have the right to object, on legitimate grounds, to the processing of your Personal Data. Should you believe that our processing of your Personal Data is inaccurate or illegal, we are not processing your data in accordance with the processing purpose or you want to oppose the processing, please contact us. Refer to Section 13 for contact information. We will investigate your request promptly before deciding what action to take. Should you believe that our processing of your Personal Data infringes your legal rights, you may lodge a claim with your local supervisory authority.

Exclusions

Children and age limitation
Our Services are not directed at persons under the age of 18 years. Therefore, we do not seek to collect Personal Data of children. If you learn that a person under the age of 18 years has provided us with Personal Data without consent, please contact us. Refer to Section 13 for contact information.

Personal data provided to others

This Privacy Policy does not apply to any Personal Data that you provide to another website user or visitor to Our Website or other Customers through any of our Services or through any other means, including information posted by you to any public areas of Our Website.

Third parties

This Privacy Policy applies only to our Services and does not apply to Third Party Service Providers or third party websites. Certain elements of Our Website in particular, contain features, interactive user activities such as social sharing buttons and/or links to other websites not operated or controlled by us. In providing such features, activities and links to these third party websites does not imply that we endorse or have reviewed these websites and therefore we cannot be held liable for any privacy policies or terms and conditions concerning the data privacy of such third parties. We suggest that you contact these websites directly for information about their privacy policies.

Changes to this policy

We may update this Privacy Policy from time to time. Any changes we make will be published here, on Our Website, so please ensure you visit this page occasionally to stay informed.

Contact

If you wish to raise a complaint or you have any questions please contact us by email at info@garua-milonguero.com. TLC Encuentros Ltd is a company limited by guarantee. Unit 9, Rossfield, 50 Rosemount Business Park Ballycoolin Dublin 11 Ireland. Registered in Ireland. Registration number 664230.

Copyrighted Image. Please contact us for permission to use this photo.