Privacy Policy for Broken Rocks

Effective Date: December 17th, 2024

Broken Rocks ("we," "us," or "our") is committed to protecting your privacy and ensuring that your personal data is handled in a safe and responsible manner. This Privacy Policy outlines how we collect, use, and protect your information in compliance with the General Data Protection Regulation (GDPR).

1. Who We Are

Broken Rocks is a nonprofit recording studio dedicated to supporting emerging artists by providing access to professional recording services.

Contact Information: Broken Rocks 18360 Pinhook Hollow Dr. Wildwood, MO 63069, info@brokenrocks.org

For any privacy-related queries, please contact us directly at info@brokenrocks.org.

2. What Personal Data We Collect

We may collect and process the following types of personal data:

a) Information You Provide Directly

  • Full Name

  • Email Address

  • Phone Number

  • Mailing Address

  • Payment Details (for donations or payments for services)

  • Artist or Band Details (e.g., name, portfolio, music recordings)

b) Automatically Collected Information

  • IP Address

  • Device Information

  • Cookies (see Section 6)

c) Data from Third Parties

If you interact with us through social media, fundraising platforms, or third-party services, we may receive relevant personal data as permitted under their terms.

3. Why We Collect Your Data

We collect personal data to:

  • Provide you with our services, such as recording studio bookings or artistic support.

  • Manage donations and nonprofit fundraising activities.

  • Communicate with you regarding updates, events, and opportunities.

  • Improve our services and understand the needs of emerging artists.

  • Fulfill legal and regulatory obligations.

4. Lawful Basis for Processing Your Data

We process your data based on the following lawful bases:

  • Consent: When you provide explicit consent (e.g., subscribing to our newsletter).

  • Contractual Necessity: To provide requested services, such as studio bookings.

  • Legal Obligation: To comply with applicable laws.

  • Legitimate Interest: To operate and grow our nonprofit, including communicating with donors and artists.

5. How We Share Your Data

We do not sell or rent your personal data. However, we may share your information with:

  • Service Providers: Third-party vendors who provide services like payment processing, email communications, or IT support.

  • Legal Authorities: When required to comply with legal obligations or to protect our rights.

  • Collaborative Partners: Organizations or individuals who assist us in artist development (only with your consent).

All third parties are GDPR-compliant and required to process your data securely.

6. Cookies and Tracking Technologies

We use cookies to enhance your experience on our website. Cookies help us analyze website traffic, remember your preferences, and improve our services.

  • You can manage cookie settings in your browser.

  • For more information, see our [Cookie Policy].

7. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes outlined in this policy or as required by law. Once your data is no longer needed, we securely delete or anonymize it.

8. Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Access: Request access to your personal data.

  • Rectification: Correct inaccurate or incomplete data.

  • Erasure: Request deletion of your data ("Right to be Forgotten").

  • Restriction of Processing: Restrict the processing of your data under certain circumstances.

  • Portability: Receive your data in a structured, machine-readable format.

  • Objection: Object to the processing of your data based on legitimate interest or direct marketing.

  • Withdraw Consent: If processing is based on consent, you can withdraw it at any time.

To exercise any of these rights, contact us at [Insert Email Address].

If you are unsatisfied with our response, you can lodge a complaint with your local data protection authority.

9. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction.

10. International Data Transfers

If we transfer your data outside the European Economic Area (EEA), we ensure appropriate safeguards, such as Standard Contractual Clauses or other lawful mechanisms, are in place.

11. Updates to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated effective date. We encourage you to review this page periodically.

12. Contact Us

For any questions, concerns, or requests regarding this Privacy Policy, please contact:

Contact Information: Broken Rocks 18360 Pinhook Hollow Dr. Wildwood, MO 63069, info@brokenrocks.org