Privacy Policy

Welcome to the Cereal Killers Audio LTD's privacy notice.

This privacy notice provides information on how Cereal Killers Audio LTD collects and processes your personal data when you visit our website [to sign up for a newsletter, purchase a product or service] or purchase our products.

It is important that you read this privacy notice together with our website privacy policy which contains more detailed information about our data processing and can be accessed here.

Important information and who we are

Cereal Killers Audio LTD is the controller and responsible for your personal data.

Contact details

Our full details are:

Full name of legal entity: Cereal Killers Audio LTD

Name or title of Data Protection Officer: Matthew Williams

Email address: cerealkillersaudio@gmail.com

Postal address: 81 St Werburghs Park, Bristol, BS2 9YX.

Telephone number: 07756 571 436

1. The data we collect about you

We may collect, use, store and transfer different kinds of personal data about you as follows:

  • Identity Data.
     
  • Contact Data.
     
  • Financial Data.
     
  • Transaction Data.
     
  • Technical Data.
     
  • Profile Data.
     
  • Usage Data.
     
  • Marketing and Communications Data.

We explain these categories of data here:

Identity Data

This is information that can be used to directly identify you as an individual. It's the most basic "who you are" data. Examples: First name, last name, username or similar identifier, marital status, title, date of birth, and gender.

Contact Data

This category includes any information that allows someone to get in touch with you. Examples: Billing address, delivery address, email address, and telephone numbers.

Financial Data

This refers to information related to your financial accounts and payment methods. It's highly sensitive data used for processing payments. Examples: Bank account details, payment card details (credit or debit card numbers), and other financial information.

Transaction Data

This is a record of your history with a company, specifically related to the products and services you've engaged with. Examples: Details about payments to and from you, and other details of products and services you have purchased from the company.

Technical Data

This is information collected automatically from your devices when you interact with a website, app, or service. It's about the technology you use. Examples: Internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform.

Profile Data

This data builds a picture of you as a customer or user, based on information you provide and your interactions. It helps tailor experiences to your preferences. Examples: Your username and password, purchases or orders made by you, your interests, preferences, feedback, and survey responses.

Usage Data

This is information about how you use a website, product, or service. It focuses on your behaviour and patterns of interaction. Examples: Information about how you navigate the website, which pages you visit, what you click on, how long you stay on a page, and the services you use.

Marketing and Communications Data

This category covers your preferences for receiving promotional materials and how you want to be communicated with. Examples: Your preferences in receiving marketing from a company and its third parties, and your general communication preferences (e.g., email, text, phone call).

How We Collect Your Personal Data

We use different methods to collect data from and about you, including through:

A. Direct Interactions

You may give us your Identity, Contact, Financial, and Profile Data by filling in forms or by corresponding with us by post, phone, email, or otherwise. This includes personal data you provide when you:

  • create an account on our website or application;
  • purchase our products or services;
  • subscribe to our services or publications;
  • request marketing to be sent to you;
  • enter a competition, promotion, or survey; or
  • give us feedback or contact us for support.

When you engage in these activities, we collect the information necessary to fulfil your request. For example, completing a transaction will require the collection of your Financial Data and Transaction Data. Similarly, contacting our customer service may result in the collection of your Identity and Contact Data so we can resolve your query.

B. Automated Technologies or Interactions

As you interact with our website, we will automatically collect Technical Data and Usage Data about your equipment, browsing actions, and patterns. We collect this personal data by using cookies, server logs, and other similar technologies.

  • Technical Data: This includes your internet protocol (IP) address, browser type and version, time zone setting, operating system, and platform. This information is gathered to ensure our website is compatible with your device and to help diagnose technical problems.
  • Usage Data: This includes information about how you use our website, such as the pages you viewed, the time spent on each page, and the links you clicked. This helps us understand what is popular on our service and to improve the user experience.
  • Please see our cookie policy for further details on the technologies we use.
  • C. Third Parties or Publicly Available Sources
  • We may receive personal data about you from various third parties and public sources as set out below:
  • Technical Data from analytics providers such as Google; advertising networks; and search information providers.
  • Contact, Financial, and Transaction Data from providers of technical, payment, and delivery services who are engaged to process your orders.
  • Identity and Contact Data from data brokers or aggregators who provide us with information to supplement the data we hold.
  • Identity and Contact Data from publicly available sources such as Companies House and the Electoral Register based inside the UK.

2. How we use your personal data

We will only use your personal data for the purpose for which we collected it which include the following:

  • To register you as a new customer.
     
  • To process and deliver your order.
     
  • To manage your relationship with us.

  • To enable you to participate in a prize draw, competition or complete a survey.
  • To improve our website, products/services, marketing or customer relationships.
  • To recommend products or services which may be of interest to you.
     

3. How we share your personal data

We may share your personal data [within the group / with external third parties]. More detail can be found here:

We take your privacy very seriously and are committed to being transparent about how we use and share your personal information. We operate under UK GDPR and adhere to its principles of data minimisation, purpose limitation, and transparency.

1. With Third-Party Service Providers

To operate our business and provide you with our services, we share your data with certain third-party service providers. These companies act on our behalf and are contractually obligated to protect your data. They are not permitted to use your information for their own purposes. The categories of service providers we use include:

E-commerce and Payment Processors: We use Shopify to host our website and process your payments. When you make a purchase, your transaction and delivery information (excluding sensitive financial details) is shared with Shopify. Your payment is securely processed by Shopify’s third-party payment provider, who will also receive your payment information to complete the transaction. We never share your specific contact details (such as your address or phone number) or financial details with any other third party for marketing or other commercial purposes.

2. For Advertising, Marketing, and Analytics

We use a tool called the Meta Pixel on our website. The Meta Pixel collects and sends certain data about your browsing activity to Meta (the parent company of Facebook and Instagram). This data includes information about the pages you visit, the products you view, and actions you take on our site (such as adding an item to your cart or making a purchase).

We use this data to:

  • Measure the effectiveness of our advertising campaigns on Meta's platforms.
  • Show you relevant advertisements on Facebook and Instagram.
  • Better understand how users interact with our website.

We consider this activity as "sharing" data with a third party for cross-context behavioural advertising. We only do this if you have given us your explicit consent to use non-essential cookies and tracking technologies. You have the right to withdraw your consent at any time through our cookie management tool.

3. For Internal Business Analysis with AI Models

We may use Artificial Intelligence (AI) models to analyse the data we collect from various sources, including the Meta Pixel, to better understand sales trends and customer interest in our company. This analysis is performed for our internal business purposes only, such as improving our products and services. We do not use this data to create individual profiles for sale or share the results of this analysis with any third parties in a way that would identify you personally.

4. As Required by Law

We may disclose your personal information if we are required to do so by law, such as to comply with a subpoena or other legal process, or if we believe in good faith that such disclosure is necessary to protect our rights, your safety, or the safety of others.

Your Choices and Rights

You have the right to control how your data is shared. You can manage your preferences for data sharing, including opting out of targeted advertising, through our cookie consent banner. Please note that opting out of these tracking technologies will not prevent you from seeing advertisements, but they will be less tailored to your interests.

For more information on your rights under UK GDPR, including the right to access, rectify, or erase your data, please see the "Your Legal Rights" section of this privacy policy.

4. International transfers

We may transfer, store and process your personal data outside the UK. More detail can be found here:

The personal data we collect from you may be transferred to, stored at, and processed in a country outside of the United Kingdom. This is necessary to provide you with our services and to operate our business.

Specifically, we may transfer your data to the following countries and for the following reasons:

1. E-commerce and Website Hosting

Our website is hosted on Shopify's platform. As a global company, Shopify stores and processes data in various data centres around the world, including in the United States. Your personal data, such as your contact information and order history, is transferred to and processed by Shopify's servers to enable our website to function and to complete your orders. Shopify is a recipient of our international data transfers.

2. Advertising and Analytics

We use a Meta Pixel to help us manage our advertising and marketing campaigns on Facebook and Instagram. Data collected by the Meta Pixel, such as your browsing activity on our website, is transmitted to Meta's servers, which are located primarily in the United States. This data is used to measure the effectiveness of our advertising and to show you more relevant advertisements.

We may also use other third-party services and platforms for advertising and analytics in the future. These services may also be located outside the UK, and any data transferred to them will be handled in accordance with this policy and UK GDPR.

3. Data Analysis

We may use Artificial Intelligence (AI) models to analyse data related to sales and customer interest. The platforms hosting these AI models may be located outside the UK. Any data transferred to these platforms for processing will be in a pseudonymised or aggregated format wherever possible to protect your privacy.

Safeguards

Where we transfer your personal data to a country outside the UK that has not been approved by the UK government as having adequate data protection laws, we ensure that appropriate safeguards are in place. These safeguards are designed to protect your data to a standard equivalent to that of the UK. We do this by implementing legal agreements such as the UK's International Data Transfer Agreement (IDTA) or the UK Addendum to the Standard Contractual Clauses (SCCs). These agreements legally bind the recipients of your data to protect it and uphold your data protection rights.

For more information on the specific safeguards we have in place, please contact us using the details provided in our Privacy Policy.

5. Your legal rights

Under certain circumstances, you have rights under data protection laws in relation to your personal data. We are committed to upholding these rights. The rights available to you depend on our reason for processing your personal data. These include:

  • The right to be informed: You have the right to be provided with clear, transparent, and easily understandable information about how we use your data and your rights. This privacy policy is designed to fulfil that right.
  • The right of access: You have the right to request a copy of the personal data we hold about you. This is commonly known as a Subject Access Request (SAR). We will provide you with a copy of your data without undue delay and at no cost, unless the request is unfounded, excessive, or repetitive.
  • The right to rectification: If the information we hold about you is inaccurate or incomplete, you have the right to have it corrected or completed.
     
  • The right to erasure ("the right to be forgotten"): In certain circumstances, you have the right to request that we delete or remove your personal data. This applies, for example, where the data is no longer necessary for the purpose for which it was collected, or where you withdraw your consent.
     
  • The right to restrict processing: In certain circumstances, you have the right to block or suppress the further processing of your personal data. This means we can continue to store your data, but we cannot process it further without your consent.
  • The right to data portability: You have the right to receive the personal data you have provided to us in a structured, commonly used, and machine-readable format. You also have the right to have this data transmitted to another company if technically feasible.
     
  • The right to object: You have the right to object to the processing of your personal data where we are relying on a legitimate interest to do so. You also have an absolute right to object to the processing of your data for direct marketing purposes.
     
  • Rights in relation to automated decision-making and profiling: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

To exercise any of these rights, please contact us using the contact details provided in our privacy policy.

Your Right to Complain to the Regulator

You have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK regulator for data protection issues.

Before you complain to the ICO, we would appreciate the chance to deal with your concerns ourselves. We kindly ask that you contact us first so we can try to resolve your issue.

If you are still not satisfied, you can contact the ICO. You can find more information about how to make a complaint on their website: