PRIVACY AND COOKIES POLICY
Shimmr AI Ltd ("we", “us”, or “our”) is committed to protecting and respecting your privacy. This Privacy and Cookies Policy (“Policy”) sets out the basis on which the personal data collected from you, or that you provide to us will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.
For the purpose of the General Data Protection Regulation (GDPR), the UK General Data Protection Regulation and the UK Data Protection Act 2018 (together abbreviated here as “UK GDPR”), the data controller is Shimmr AI Ltd, registered in England and Wales with registered office at 5a Bear Lane, Southwark, London, England SE1 0UH (Company Number 14391431). The definitions of controller, processor (and processing), data subject, personal data and personal data breach are as set out in the UK GDPR.
1.1 In this Section 1 we have set out in each case:
We use artificial intelligence (AI) models to create continuously self-optimising advertising campaigns for books, with advertisements deployed into media channels to drive e-commerce sales of those books. The AI models will analyse the content in digital copies of books and any personal data in the books (such as author’s name, foreword, dedication notes, author’s biography) in order to create the advertising campaign. Our legal basis for processing this personal data is the performance of a contract. To find out more about how we create our advertisement campaigns using AI, visit https://shimmr.ai/what-were-up-to on our website.
Before you provide us with personal data about another person, you shall ensure you have a legal basis for our use of their personal data and that they are notified accordingly.
1.4 Change of purpose:
We will only use your personal data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If you then wish to get an explanation as to how the processing for the new purpose is compatible with the original purpose, please contact us.
If we need to use your personal data for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so.
Please note that we may collect and process your personal data without your knowledge or consent, in compliance with the above rules, where this is required by law.
In addition to the above uses we may use your information, to notify you about products or services which may be of interest to you. Where we do this, we will contact you by electronic means (e-mail) only if you have consented to such communication. If you do not want us to use your data in this way, please either (i) unsubscribe from our electronic communications using the method indicated in the relevant communication; or (ii) inform us at any time by contacting us at the contact details set out below.
3. DISCLOSURE OF YOUR INFORMATION
3.1 We may disclose your personal data to third parties:
3.2 Where we are acting as a processor for publishers, we may need to share personal data with trusted third party service providers. The publisher hereby authorises us to engage third party service providers. We will enter into the relevant contracts with such third party service providers in compliance with the UK GDPR and we will notify the publisher in the event we intent to add or remove a third party service provider.
3.3 Other than as set out above and save insofar as is necessary in order for us to carry out our obligations arising from any contracts entered into between the publisher and us, we will not share personal data with third parties unless we have procured the individual’s express consent to do so.
4. STORING YOUR PERSONAL DATA
We take appropriate measures to ensure that any personal data are kept secure, including implementing security measures to try our best to prevent personal data from being accidentally lost, or used or accessed in an unauthorised way. We limit access to your personal data to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.
Where we have given you (or where you have chosen) a password which enables you to access certain parts of the website and/or our platform, you are responsible for keeping this password confidential.
We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to the website; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
Keeping your personal data up to date
If your personal details change you may update them by accessing the relevant page on your dashboard or by contacting us using the contact details below. If you have any questions about how we use data collected which relates to you, please contact us by sending a request by email to the contact details below.
If you contact us, we will endeavour to update your personal data within seven (7) working days of any new or updated personal data being provided to us, in order to ensure that the personal data we hold about you is as accurate and up to date as possible.
Data retention policy
We may store personal data that you have provided us for as long as it is reasonably necessary taking into consideration our need to provide you with the services for which you have signed up, to resolve any disputes, enforce our rights and/or respond to queries.
We will hold your personal data for as long as reasonably necessary after the end of your Agreement with us, but no longer than the period we are required to retain this information by applicable UK law (currently 6 years).
We will hold waitlist and notification data for as long as you are interested in hearing about our products and services.
If you have any questions about our data retention policy, please contact us.
Where we store your personal data
We use cloud-based servers to store your data. We also make use of artificial intelligence (AI) and third-party service providers to deliver our services (see section 3.2 above). The data that we collect from you may be transferred to and stored at a destination outside the United Kingdom and/or the European Economic Area ("EEA"). It may also be processed by staff operating outside the United Kingdom and/or EEA who work for us or for one of our suppliers. Such staff maybe engaged in, among other things, the fulfilment of your orders, the processing of your payment details and the provision of support services.
In the event we transfer your personal data to a country without an adequacy decision from the United Kingdom, any such transfer will be subject to the international data transfer agreement approved by the United Kingdom’s Information Commissioner’s Office and any other appropriate safeguards which may be applicable to such transfers.
If you would like further information, please contact us (see ‘Contact’ below).
5. YOUR RIGHTS
Under the UK GDPR you have a number of important rights free of charge. In summary, those include rights to:
For further information on each of those rights, including the circumstances in which they apply, see the Guidance from the UK Information Commissioner’s Office (ICO) on individuals rights under the UK GDPR.
If you would like to exercise any of those rights, please:
You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we could refuse to comply with your request in these circumstances.
We may collect information about you including where available your IP address, operating system and browser type, for systems administration. This is statistical data about our users’ browsing actions and patterns and does not identify any individual. We may, however, use such information in conjunction with the data we have about you in order to track your usage of our services.
A cookie is a small file of letters and numbers that we store on your browser or the hard drive of your computer if you agree. Cookies contain information that is transferred to your computer's hard drive.
The cookies we use include:
Cookies which are strictly necessary for the core functionality of the website are enabled by default and set automatically at the point you access the website.
Any cookies which are not strictly necessary for the functioning of the website will not be set unless you expressly consent to them through the cookie banner by clicking “accept”.
You may block cookies by changing your preferences or activating the setting on your browser that allows you to refuse the setting of all or some cookies. However, if you use your browser settings to block all cookies (including essential cookies) you may not be able to access all or parts of the website. Except for essential cookies, all cookies will expire after the period set out in the table above.
7. HOW TO COMPLAIN
We hope that we can resolve any query or concern you raise about our use of your information.
The UK GDPR also gives you the right to lodge a complaint with the Information Commissioner who may be contacted at https://ico.org.uk/make-a-complaint/ or telephone: 0303 123 1113.
8. CHANGES TO OUR POLICY
We reserve the right to modify this Policy at any time. Any changes we may make to our Policy in the future will be notified and made available to you using the website. Your continued use of our services and the website shall be deemed your acceptance of the varied Policy.
Email – firstname.lastname@example.org
Address - 5a Bear Lane, Southwark, London, England SE1 0UH
Last updated: September 2023