Brighton and Hove Albion Football Club Limited ("We") are committed to protecting and respecting your privacy. We will protect the rights of individuals (data subjects) when data is obtained, stored, processed or supplied to others.
This Privacy Policy (together with our Terms of Use and any other documents referred to on it) sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.
Please note that when you are using our website, we also use cookies to collect information about your use of our website, which is done in accordance with our Cookies Policy.
For the purpose of the Data Protection Act 1998 (the "Act"), the data controller (who controls the use of the personal data collected about you) is Brighton and Hove Albion Football Club Limited whose registered office is at Maria House, 35 Millers Road, Brighton BN1 5NP and whose contact address is at American Express Community Stadium, Village Way, Brighton, East Sussex BN1 9BL.
We are notified as a data controller with the UK Information Commissioner.
In relation to your personal data that We hold, We will comply with the eight Data Protection Principles contained in the Act, i.e.:
We may collect and process the following data about you:
The data that we collect from you may be transferred to, and stored at, a destination outside the European Economic Area ("EEA"). It may also be processed by third parties or staff operating outside the EEA who work for us or for one of our suppliers. Such staff may be engaged in, among other things, the fulfilment of your order, the processing of your payment details and the provision of support services. By submitting your personal data, you agree to this transfer, storing or processing. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy.
All information you provide to us is stored on our secure servers. Any payment transactions will be encrypted using SSL technology. Where We have given you (or where you have chosen) a password which enables you to access certain parts of our website, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, We cannot guarantee the security of your data transmitted to our website; any transmission is at your own risk. Once We have received your information, We will use strict procedures and security features to try to prevent unauthorised access.
We use information held about you in the following ways:
As part of offering these services we may at times be required to transfer some of your data to third parties for processing to enable fulfilment of product purchases or provision of services. This will be limited to that which they need to carry out their services and only in the way in which we instruct them as part of a contractual agreement. Your data will never be sold or shared with third parties for the purposes of marketing without seeking prior consent.
We may also use your data, or permit selected third parties to use your data, to provide you with information about goods and services which may be of interest to you and We or they may contact you about these unless you opt out.
If you are an existing customer, We will only contact you by electronic means (e-mail or SMS) with information about goods and services similar to those which were the subject of a previous sale to you.
If you are a new customer, subscriber or user of our services, and where We permit selected third parties to use your data, We (or they) will contact you by electronic means only if you have consented to this.
If you do not want us to use your data in this way, or to pass your details on to third parties for marketing purposes, please tick the relevant box situated on the form on which we collect your data.
We may disclose your personal information to any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 1159 of the UK Companies Act 2006.
You have the right to ask us not to process your personal data for marketing purposes. We will usually inform you (before collecting your data) if We intend to use your data for such purposes or if We intend to disclose your information to any third party for such purposes. You can exercise your right to prevent such processing at any time by contacting us at dataprotection@bhafc.co.uk.
Our website may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
The Act gives you the right to access information held about you. Your right of access can be exercised by downloading the Subject Access Request form from our website. Any access request will be subject to a fee of £10 to meet our costs in providing you with details of the information we hold about you.
Where the information you are seeking is contained in files that are not appropriately structured or referenced, it may not be easy to locate and to identify whether personal information is held or being used. We keep as little 'unstructured' information as possible, since it is difficult to access and use.
If you require access to information held in these ‘unstructured’ manual files, you should describe the information in a way that would allow us to find it. It will help us to process your subject access request if you can be as specific as possible about what you want. Even if you describe the information, we are not obliged to provide you with access to unstructured manual data.
Any changes we may make to our Privacy Policy in the future will be posted on this page and, where appropriate, notified to you by e-mail.
Questions, comments and requests regarding this Privacy Policy are welcomed and should be addressed to the Data Protection Officer at Brighton & Hove Albion Football Club Ltd at American Express Community Stadium, Village Way, Brighton, East Sussex BN1 9BL, or at dataprotection@bhafc.co.uk.