Privacy Policy

Please read the following privacy policy carefully before using the www.myattandco.com website (the “service”) operated by Mary Myatt Learning Ltd T/A Myatt & Co (“Us”, “we”, “our”).

Last updated: 29th April 2021.

1. Data Protection

We comply with the principles of the General Data Protection Regulation (GDPR) when dealing with all data received from customers or visitors to our website.

2. Our Services

We only hold the data necessary to offer services provided on our website. We do not ask for or use more data than necessary to provide you with a proper service. This means we only process and hold data related to purchases and subsequent support related to those purchases, in accordance with Article 6(1)(b) of the General Data Protection Regulation (GDPR). Any processing of your data is only done to provide or perform services or products you have purchased.

3. Required Period

We only hold personal data as long as necessary. Once data is no longer needed we delete it.

4. Card and Payment Processing Data

We use third-party payment providers to handle card and payment processing data securely. We never see or store any card or payment information. In accordance with Article 6(1)(b) of the General Data Protection Regulation (GDPR) any other data is only used to process your purchase securely. In accordance with Article 6 (1)(c) of the General Data Protection Regulation (GDPR), we need to retain data related to all purchases to fulfil our existing legal obligations to account for tax and VAT on all transactions.

5. Backup and Data Storage

For administrative reasons, customer data and email subscription data may be passed to and stored securely with third party service providers located outside the EEA (European Economic Area). This is done to backup and preserve your data where it is needed to carry on offering a service to you.

6. Customer Requests

As a customer, you can at any time (and free of charge) request details of the data we hold relating to you – and you can also request any such data is amended or deleted. Please note that if you request deletion of your data, this may prevent us from offering any further support relating to your previous purchases.

7. Email Updates

We regularly email website news and information updates to those customers who have subscribed to our email service. All subscription emails sent by us contain clear information on how to unsubscribe from our email service. Our email service is an opt-out service only; with your prior consent required in accordance with Article 6(1)(a) of the General Data Protection Regulation (GDPR). This means to subscribe you must enter your details into the email subscription page and submit them to us.

8. Our Promise

We will never sell, rent or exchange mailing lists.

9. Spam

In accordance with the Privacy and Electronic Communications (EC Directive) Regulations 2003, we never send bulk unsolicited email, (popularly known as Spam) to email addresses.

10. Product Updates

We may send emails to existing customers or prospective customers who have enquired or registered with us, regarding products or services directly provided by us.

11. Email Content

All emails sent by us will be clearly marked as originating from us. All such emails will also include clear instructions on how to unsubscribe from our email service and any future emails. Such instructions will either include a link to a page to unsubscribe or a valid email address to which you should reply, with “unsubscribe” as the email subject heading.

12. Cookies

Our website uses “cookies” to track use and allow customers to purchase from our website. Please note that these cookies do not contain or pass any personal, confidential or financial information or any other information that could be used to identify individual visitors or customers purchasing from website. Please note that you are free to refuse cookies. However, for purely technical reasons this may prevent you from purchasing from our website. This is because anonymous cookies are commonly used to keep track of the contents of customers’ shopping baskets or trolleys during the checkout process. This facility ensures that the items added to (or removed from) your basket are accurately stated when you go to pay.

13. Contact Us

If you have any questions or queries relating to our Privacy Policy, please email us at hello@myattandco.com

Security

In order to join the platform and have content access, we require users name (name and/or surname) and email address.

Platform servers and data are stored in United States (this includes email address and name of the user). Additional information is collected during the transaction such as card type, last 4 digits of the card, card expiration date, e-mail address, date of transaction, amount of transaction. This information will remain with and secured by the payment processing company (Stripe).

Data collected is only visible for Admins of Myatt & Co, as well as the technical support team of the platform (Uscreen).

Our database has several layers of encryption security, (it also includes protection with SSL encryption) plus other security measures to ensure that your data is protected and safe. Complex logic has been developed and deployed to detect malicious activity with swift banning implementation to prevent any hacking attempts.

Passwords are encrypted before being written to the database. This means that there are no plain text passwords stored in the database. Passwords cannot be retrieved, only reset, to protect privacy at the highest level.All processing of cardholder data is entirely outsourced to PCI DSS validated third-party service providers (ie. Stripe). The Myatt & Co does not electronically store, process, or transmit any cardholder data on Uscreen systems or premises, but relies entirely on a third party(s) to handle all these functions.

Once the user cancels their membership, they are marked in our database as 'Former'. The user can delete all their customer data entirely via Delete function. Admins of the platform have also have the ability to delete all individual data per request.