Privacy Policy - Post Street Theatre Sf

Post Street Theatre (accessible at https://poststreettheatre-sf.com), hereinafter referred to as “Post Street Theatre,” “we,” “us,” or “our,” is firmly committed to safeguarding the privacy and personal data of our visitors, customers, and users. This Privacy Policy explains how we collect, use, disclose, and protect personal information in full alignment with applicable privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), among other regulations.

1. Commitment to Privacy and Data Protection
We recognize and respect the importance of your privacy. We are dedicated to maintaining the confidentiality, integrity, and security of personal data in our custody. Our privacy practices are centered on transparency, minimal data collection, and responsible stewardship of personal information.

2. Scope and Role of the Data Controller
This Privacy Policy applies to all users, visitors, and customers who interact with our website and services available via https://poststreettheatre-sf.com. As the data controller, Post Street Theatre determines the purposes and means of processing your personal data. This policy governs all data collected both online and through any other interactions you may have with us.

3. Categories of Data Processed
We may collect and process the following categories of personal data when you interact with our website:

a) Usage Data
Information about your interaction with our website, such as IP address, browser type, access times, referring URLs, pages visited, and browsing session duration. This data facilitates system administration, fraud prevention, and analytics.

b) Account Data
Information provided when you register or update an account, including your name, mailing address, email address, and telephone number.

c) Profile Data
Information relating to your preferences, purchase history, website behavior, and event attendance that helps us tailor content and offerings to your interests.

d) Communication Data
Data generated from your interactions with our customer service or support channels, including emails, chat transcripts, contact forms, or voice communications.

e) Technical Data
Device-related data such as device identifier, operating system, screen resolution, and browser configuration, which helps us ensure site compatibility and optimize user experience.

f) Transaction Data
Information on purchases made via our website, such as billing and delivery details, payment confirmations, transaction history, and credit/debit card details, processed through secure partners.

g) Preference Data
Your expressed interests, product selections, preferred methods of communications, and consent preferences regarding marketing materials.

4. Legal Bases for Processing
We only process personal data where lawful. Our lawful bases for processing include:

– Consent: Data processed based on your express consent, such as when subscribing to newsletters or accepting cookies.
– Contractual Necessity: Processing required to fulfill our contractual obligations, such as ticket orders and customer support.
– Legitimate Interests: We may process data that is necessary to pursue our legitimate business interests, provided such interests are not overridden by your derechos or interests.
– Legal Obligations: Where processing is necessary to comply with applicable laws or regulatory requirements.

5. Your Privacy Rights
Under the GDPR (for EU/EEA-based individuals) and the CCPA (for California residents), you may have the following rights:

– Right of Access: You may request confirmation of personal data we hold about you and access such data.
– Right to Rectification: You may request corrections to inaccurate or incomplete data.
– Right to Erasure: In certain cases, you may request the deletion of your personal data.
– Right to Restrict Processing: You may ask us to limit how we use your personal data in specific scenarios.
– Right to Data Portability: You may request to receive your data in a structured format for transfer to another service provider.
– Right to Opt-Out of Sale (CCPA only): You may direct us not to sell your personal information.
– Right to Non-Discrimination (CCPA only): Exercise of your privacy rights will not result in discriminatory practices.

To exercise any of these rights, please contact us at [email protected].

6. Security Measures
We implement multiple layers of security measures to protect your data, including:

– Data encryption (in transit and at rest)
– Multi-factor authentication and strict access controls
– Secure server infrastructure and firewalls
– Regular backups and disaster recovery protocols
– Internal staff privacy training and confidentiality agreements

7. International Data Transfers
Your personal data may be processed outside your jurisdiction, including in countries that may not provide the same level of data protection laws. In such instances, we rely on legally recognized mechanisms, such as EU Standard Contractual Clauses, to safeguard your data during cross-border transfers.

8. Data Retention
We retain personal data for only as long as necessary to fulfill the purposes outlined in this Policy or conform with regulatory requirements. Retention periods vary depending on the category of data:

– Usage and Technical Data: 12 months (for performance and diagnostics)
– Account and Profile Data: Maintained for the duration of your active account and up to 3 years thereafter
– Communication and Transaction Data: Retained for 6 years to meet audit and financial obligations
– Preference Data: Maintained until you update your preferences or withdraw consent

9. Cookie Policy
We use cookies and similar tracking technologies to enhance your experience at https://poststreettheatre-sf.com. Cookies fall into the following categories:

– Essential Cookies: Necessary for basic functionality such as login and ticket purchases
– Functional Cookies: Enable site personalization based on user preferences
– Analytics Cookies: Help us measure performance and understand website engagement
– Performance Cookies: Allow testing of design and content for user experience improvements

10. Cookie Management and Compliance
Our website features a cookie consent mechanism compliant with GDPR and CCPA requirements. You may manage cookie preferences at any time via our Cookie Settings interface or adjust your browser settings to disable non-essential cookies.

11. Children’s Privacy
Our services are not intended for, nor directed at, children under the age of 13. We do not knowingly collect personal data from minors. If you believe a child under 13 has provided us with their information, please contact us immediately at [email protected], and we will take steps to remove such data from our systems.

12. Privacy Policy Updates
We may update this Privacy Policy from time to time to reflect legal changes or improvements to our practices. Material changes will be communicated to users through prominent notices on https://poststreettheatre-sf.com or by direct email communication, where appropriate.

13. Contact Us
For questions about this Privacy Policy, concerns regarding the handling of your data, or to exercise your data protection rights, please contact us at:

Email: [email protected]
Website: https://poststreettheatre-sf.com

We are fully committed to complying with all applicable privacy laws and deeply value the trust you place in us. Your privacy matters—please reach out to us with any concerns or requests regarding your data.