The Screeniverse: Privacy Policy

Last Updated: January 2026
Effective Date: January 2026

1. INTRODUCTION

The Screeniverse Limited ("we," "us," "our," "Company," or "The Screeniverse") is committed to protecting your privacy and ensuring you have a positive experience on our website (the "Service").

This Privacy Policy explains how we collect, use, disclose, retain, and safeguard your information when you visit our website, use our services, and interact with us.

We comply with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable UK and EU privacy laws.

Please read this Privacy Policy carefully. If you do not agree with our policies and practices, please do not use our Service.

2. INFORMATION WE COLLECT

2.1 Information You Provide Directly

Account Registration When you create an account, we collect:

Full name
Email address
Phone number
Company/organisation name
Job title
Business address
Payment information (card details processed securely)
Username and password

Contact Forms and Enquiries When you contact us, we collect:

Name
Email address
Phone number
Message content
Any attachments you provide

Campaign and Venue Information If you are an advertiser or venue partner, we collect:

Company information
Venue details and location
Campaign objectives and specifications
Creative assets and content
Performance preferences
Social media handles
Brand guidelines and assets

Payment Information When you purchase services, we collect:

Billing name and address
Invoice email address
Payment method details
Purchase order information
Transaction history

Correspondence We retain copies of:

Email communications
Support tickets
Chat messages
Call recordings (with consent)

2.2 Information Collected Automatically

Website Usage Data When you visit our website, we automatically collect:

IP address
Device type (desktop, mobile, tablet)
Browser type and version
Operating system
Pages visited and time spent on each page
Links clicked
Referrer URL
Date and time of visit
Interaction data (form submissions, downloads)

Cookies and Tracking Technologies We use cookies and similar technologies to:

Remember your preferences
Understand how you use our website
Analyse traffic and usage patterns
Deliver targeted content
Improve our Service

Cookies Used:

Essential Cookies: Required for the website to function (login, security)
Performance Cookies: Analyse how you use the website (Google Analytics)
Functional Cookies: Remember your preferences and settings
Marketing Cookies: Track your activity for advertising purposes

You can control cookies through your browser settings. Disabling cookies may affect some features of the website.

Analytics We use Google Analytics to understand how visitors use our website. Google Analytics collects data such as:

Pages you visit
Time spent on pages
Referrer sources
Device information
Geographic location

Google Analytics is subject to Google's Privacy Policy: https://policies.google.com/privacy

2.3 Information from Third Parties

Payment Processors Payment information is processed by Stripe (or similar payment processor). We do not store full card details; these are handled by our payment processor in compliance with PCI DSS standards.

Third Party Services If you link your account to third party services (social media, email providers, calendar apps), we may receive information from those services.

Business Partners We may receive information about you from venue partners, advertising agencies, or other business partners.

3. HOW WE USE YOUR INFORMATION

3.1 Lawful Basis for Processing

We process your personal data on the following lawful bases under UK GDPR:

Contractual Performance

Providing services you've requested
Billing and payment processing
Delivering campaigns
Supporting your account

Legal Obligation

Complying with tax and accounting requirements
Responding to legal requests
Preventing fraud and abuse

Legitimate Interest

Improving our Service
Analysing usage patterns
Developing new features
Marketing our services
Ensuring security and preventing fraud

Consent

Sending marketing emails (with your consent)
Using certain cookies (with your consent)
Recording calls (with your consent)

3.2 Specific Uses of Your Information

Service Delivery

Creating and managing your account
Processing payments and invoices
Delivering advertising campaigns
Managing venue partnerships
Providing technical support
Responding to enquiries

Communication

Sending transactional emails (order confirmation, invoice, password reset)
Responding to your enquiries
Providing customer support
Sending service announcements and updates
Following up on campaigns or partnerships

Marketing and Advertising

Sending newsletters and promotional emails (with consent)
Displaying targeted content based on interests
Retargeting on social media and other platforms
Analysing campaign performance
Personalising your experience

Business Operations

Analysing trends and usage data
Improving website functionality and user experience
Developing new features and services
Ensuring security and fraud prevention
Complying with legal and regulatory requirements
Resolving disputes
Enforcing agreements

Legal Compliance

Responding to legal requests
Complying with tax and accounting obligations
Maintaining records as required by law
Protecting rights and safety

4. SHARING YOUR INFORMATION

4.1 When We Share Information

Service Providers We share information with third parties who provide services on our behalf, including:

Payment processors (Stripe, etc.)
Cloud hosting providers (AWS, Heroku, etc.)
Email service providers (Mailchimp, HubSpot, etc.)
Analytics providers (Google Analytics)
Customer support platforms
Legal and accounting advisors

All service providers are subject to data processing agreements and are required to protect your data.

Venue Partners

Advertisers may see venue location and performance data
Venues may see aggregate campaign performance data
We do not share personal contact details without consent

Business Partners

Advertising agencies may access campaign performance data
Business partners with joint agreements may access relevant information

Legal Requirements We may disclose your information if required by:

Court orders or legal process
Government agencies or authorities
Law enforcement
Regulatory bodies
Other legal obligations

Safety and Protection We may disclose information to:

Prevent fraud or illegal activity
Protect our legal rights and property
Protect user safety and security
Enforce our Terms of Service

4.2 International Transfers

Personal data is primarily stored in the United Kingdom. If we transfer data outside the UK:

We ensure appropriate safeguards are in place
Transfers comply with UK GDPR requirements
We use Standard Contractual Clauses or other appropriate mechanisms

5. DATA RETENTION

5.1 Retention Periods

We retain personal data only as long as necessary for the purposes outlined in this Privacy Policy:

Account Information

Retained while your account is active
Deleted 12 months after account termination (unless legal obligation requires longer retention)

Campaign Data

Retained for the duration of your campaign
Performance data retained for 24 months for reporting purposes
Creative assets deleted at the end of campaign (or upon request)

Payment Information

Transaction records retained for 7 years (tax/accounting requirements)
Card details not retained (processed and deleted by payment processor)

Cookies

Session cookies deleted when you close your browser
Persistent cookies retained for up to 13 months
You can delete cookies in your browser settings

Correspondence

Support tickets retained for 3 years
Email communications retained according to business necessity
Call recordings retained for 12 months

Marketing Data

Retained until you unsubscribe
Deleted within 30 days of unsubscribe request

Website Analytics

Data retained for 26 months

If you request deletion, we will delete your data within 30 days (except where legal obligation requires longer retention).

6. YOUR RIGHTS UNDER UK GDPR

Under UK GDPR, you have the following rights:

6.1 Right of Access

You have the right to request a copy of the personal data we hold about you. You may make a Subject Access Request (SAR) at any time by contacting us.

We will provide your data in a portable, structured, and commonly used format within 30 days.

6.2 Right to Rectification

If your information is inaccurate or incomplete, you have the right to request correction. You can update much of your information directly in your account settings.

6.3 Right to Erasure

You have the right to request deletion of your personal data ("right to be forgotten") in certain circumstances, such as when:

The data is no longer necessary
You withdraw consent
You object to processing
The data was unlawfully processed

We may retain data if we have a legal obligation or legitimate reason to do so.

6.4 Right to Restrict Processing

You can request that we limit how we use your data while you contest its accuracy or our right to process it.

6.5 Right to Data Portability

You have the right to receive your personal data in a structured, portable format and to transmit it to another organisation.

6.6 Right to Object

You have the right to object to:

Processing based on legitimate interest
Direct marketing and promotional communications
Automated decision-making and profiling

6.7 Right Related to Automated Decision-Making

You have the right not to be subject to decisions based solely on automated processing that produce legal or similarly significant effects.

6.8 Right to Lodge a Complaint

If you believe we are mishandling your data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF

Phone: 0303 123 1113
Website: https://ico.org.uk/

7. EXERCISING YOUR RIGHTS

To exercise any of your rights under UK GDPR, please contact us:

Email: privacy@screeniverse.com
Address: The Screeniverse Limited, 128 City Road, London, EC1V 2NX, UK
Phone: +44 (0)7498 872664

We will respond to your request within 30 days. If your request is complex, we may extend the timeline to 60 days (you will be notified).

You will not be charged for exercising your rights, except in cases of manifestly unfounded or excessive requests.

8. DATA SECURITY

8.1 Security Measures

We implement comprehensive security measures to protect your personal data:

Technical Measures

Encryption of data in transit (TLS/SSL)
Encryption of sensitive data at rest
Secure authentication (passwords, two-factor authentication)
Regular security updates and patches
Firewalls and intrusion detection systems
Secure data centres with physical access controls

Organisational Measures

Employee training on data protection
Limited access to personal data (need-to-know basis)
Data processing agreements with service providers
Regular security audits and penetration testing
Incident response procedures

Administrative Measures

Privacy by design principles
Data protection impact assessments
Privacy policies and procedures
Regular data protection reviews

8.2 Data Breach Response

In the event of a data breach, we will:

Notify affected individuals within 72 hours (where legally required)
Notify the ICO of breaches involving special categories of data
Provide guidance on protective steps individuals can take
Investigate the cause and implement remedial measures

9. CHILDREN'S PRIVACY

The Service is not intended for children under 16 years old. We do not knowingly collect personal data from children under 16.

If we become aware that we have collected data from a child under 16 without parental consent, we will delete that data promptly.

Parents or guardians who believe a child under 16 has provided information to us should contact us immediately.

10. THIRD PARTY LINKS AND SERVICES

Our website may contain links to third party websites and services. This Privacy Policy applies only to The Screeniverse. We are not responsible for the privacy practices of third party websites.

We encourage you to read the privacy policies of any third party websites before providing your information.

11. COOKIES POLICY

11.1 What Are Cookies?

Cookies are small text files stored on your device that allow us to remember information about you and your preferences.

11.2 Types of Cookies We Use

Essential Cookies

Required for website functionality
Cannot be disabled
Examples: Session tokens, CSRF tokens, login authentication

Performance Cookies

Analyse how you use the website
Collect anonymous usage data
Example: Google Analytics

Functional Cookies

Remember your preferences and settings
Enable personalised features
Example: Theme preference, language selection

Marketing Cookies

Track your activity for advertising purposes
Used for retargeting and personalisation
Examples: Facebook Pixel, Google Ads conversion tracking

11.3 Managing Cookies

In Your Browser You can control cookies through your browser settings:

Most browsers allow you to refuse cookies or alert you when cookies are set
Instructions are typically found in your browser's "Help" section
Note: Disabling essential cookies may affect website functionality

Cookie Consent When you first visit our website, you will be asked to consent to non-essential cookies. You can manage your consent preferences at any time.

Opt-Out of Analytics You can opt out of Google Analytics tracking by installing the Google Analytics Opt-out Browser Add-on: https://tools.google.com/dlpage/gaoptout

Opt-Out of Marketing You can opt out of marketing cookies by:

Adjusting your preferences in our cookie management tool
Adjusting privacy settings on social media platforms
Using the Network Advertising Initiative (NAI) opt-out tool

12. CALIFORNIA AND VIRGINIA PRIVACY LAWS

If you are a resident of California or Virginia, you may have additional privacy rights under state law (CCPA/CPRA and VCDPA). While The Screeniverse is a UK company and primarily complies with UK GDPR, we honour requests under these laws.

13. MARKETING COMMUNICATIONS

13.1 Email Marketing

We may send you marketing emails if you have:

Opted in during registration
Agreed to receive promotional emails
Consented through other means

Unsubscribing You can unsubscribe from marketing emails at any time by:

Clicking the "Unsubscribe" link in the email
Contacting us directly
Updating your preferences in your account settings

We will process your unsubscribe request within 10 days.

13.2 Other Marketing Communications

We may also contact you via:

SMS (with consent)
Phone (with consent)
Push notifications (if you enable them)
In-app messages

You can opt out of any of these at any time.

14. CONTACT US

For questions about this Privacy Policy, to exercise your rights, or to report a privacy concern, please contact us:

Email: privacy@screeniverse.com
Address: The Screoniverse Limited, 128 City Road, London, EC1V 2NX, UK
Phone: +44 (0)7498 872664

We will respond within 30 days.

15. DATA PROTECTION OFFICER

If you have concerns about our data protection practices, you can contact our Data Protection Officer:

DPO Email: dpo@screeniverse.com
Phone: +44 (0)7498 872664

16. UPDATES TO THIS POLICY

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

Material changes will be posted on our website with a notice that the policy has been updated. Your continued use of the Service following the posting of a revised Privacy Policy constitutes your acceptance of the changes.

The "Last Updated" date at the top of this policy indicates when it was last revised.

17. LEGITIMATE INTEREST ASSESSMENT

For processing based on legitimate interest, we have conducted a balancing test between our interests and your rights. We only process data when:

There is a clear and recognised legitimate interest
The processing is necessary to achieve that interest
Your rights and interests do not override our interests
You would reasonably expect such processing

Examples of legitimate interest processing:

Fraud Prevention

Detecting and preventing fraudulent activity
Protecting our systems and users

Service Improvement

Analysing usage data to improve our Service
Developing new features based on user needs

Business Operations

Managing our business efficiently
Enforcing legal agreements
Protecting our legal rights

18. DATA PROCESSING AGREEMENTS

For business partners and service providers, we provide Data Processing Agreements (DPAs) that comply with UK GDPR Article 28 requirements.

Version: 1.0
Status: Active
Last Updated: January 2026
Next Review: January 2027

APPENDIX A: GDPR DEFINITIONS

Personal Data: Any information relating to an identified or identifiable natural person.

Processing: Any operation performed on personal data (collection, storage, use, analysis, transmission, deletion).

Data Subject: The individual to whom personal data relates.

Data Controller: The organisation that determines the purposes and means of processing (The Screeniverse).

Data Processor: An organisation that processes data on behalf of the controller (e.g., payment processors).

Legitimate Interest: A valid reason for processing that is not consent, contract, or legal obligation.

Consent: Freely given, specific, informed, and unambiguous affirmation of will.

Data Breach: Unauthorised access, disclosure, or loss of personal data.

Profiling: Automated processing of personal data to assess characteristics or predict behaviour.

Special Categories: Sensitive personal data including race, ethnicity, political opinion, religious belief, trade union membership, genetic data, biometric data, health data, and sex life data.