top of page

Privacy Policy

Let's discuss your privacy

​

This Privacy Policy describes the policies and procedures of Story Of Me Ltd (“Story Of Me”, “we”, “our” or “us”) on the collection, use and disclosure of your information on www.storyofme.co (the “Site”) and the services, features, content or applications we offer (together with the Site, the “Services”).


We receive information about you from various sources, including: (i) if you register for the Site and the Services, through your user account on the Services (your “Account”); (ii) your use of the Services generally; and (iii) from various third party websites and other services. All defined terms not defined herein shall have the meaning ascribed to them in the Terms of Service, available at www.storyofme/terms.

​

What's covered in this Policy?

​

This Privacy Policy covers Story Of Me’s processing of Personal Data that Story Of Me gathers when you are accessing and using the Services. As used in this Privacy Policy, “Personal Data” means any information that can be used to individually identify a person, and “processing” generally covers actions that can be performed in connection with data such as collection, use, storage and disclosure.


This Privacy Policy also covers Story Of Me's treatment of any Personal Data that Story Of Me's business partners share with Story Of Me or Story of Me shares with its business partners. This Privacy Policy does not apply to the practices of third parties, and their sites, services or applications that Story Of Me does not own or control, or to individuals that Story Of Me does not employ or manage (“Third Parties”). While we attempt to provide access only to those Third Parties that share our respect for your privacy, we cannot take responsibility for the content, actions or privacy policies of those Third Parties. We encourage you to carefully review the privacy policies of any Third Parties you access.


If you are a resident of the European Union, United Kingdom, Lichtenstein, Norway, or Iceland, you may have additional rights under European Union Regulation (EU) No. 2016/679 of 27 April 2016, also known as the General Data Protection Regulation or GDPR (the “GDPR”) with respect to your Personal Data, as outlined below. Story Of Me may be the controller of your Personal Data processed in connection with the Services for purposes of the GDPR. If you have any questions about this Privacy Policy or whether any of the following applies to you, please contact us at info@storyofme.co


Note that we may also process Personal Data of our users’ own customers, end users, or employees in connection with our provision of services to customers, in which case we are the processor of Personal Data for purposes of the GDPR. If we are the processor of your Personal Data (i.e., not the controller) for purposes of the GDPR, please contact the controller of your Personal Data (i.e., the user or individual providing the course, product, or other offering in connection with which you provided your Personal Data) in the first instance to address your rights with respect to such data.

​

​

Personal data collection
 

We collect Personal Data about you when you provide such information directly to us, when third parties such as our business partners or service providers provide us with Personal Data about you, or when Personal Data about you is automatically collected in connection with your use of our Services.

​

Information we collect directly from you: We receive Personal Data directly from you when you provide us with such Personal Data, including without limitation the following:
 

  • First and last name

  • Email address

  • Billing post code and/or country of residence

​

Information we receive from third party sources: We have built services from some third parties into the Site, and those third parties provide us with Personal Data about you, such as the following:
 

  • Account information for third party services: If you interact with a third party service when using our Services, such as if you use a third party service to log-in to our Services (for example, signing up for an account with Facebook Connect), or if you share content from our Services through a third party social media service, the third party service will send us information about you, such as information from your public profile, if the third party service and your account settings allow such sharing. The information we receive will depend on the policies and your account settings with the third party service.

 

  • Information from our advertising partners: We receive information about you from some of our service providers who assist us with marketing or promotional services related to how you interact with our Site and Services.

 

  • Information from our service providers: We receive information collected by third parties about your use of the Services. For example, we may use analytics service providers to analyse how you interact and engage with the Services and our advertisements, so we can learn and make enhancements to offer you a better experience. Some of these entities may use cookies, web beacons and other technologies to collect information about your use of the Services and other websites, which may include tracking activity across time and unaffiliated properties, including your IP address, web browser, pages viewed, time spent on pages, links clicked and conversion information. Third parties may also help us provide you with customer support, and provide us with information so that we may help you use our Services.

 

Information we automatically collect when you use our Services: Some Personal Data is automatically collected when you use our Services, such as the following:
 

  • IP address

  • Device identifiers

  • Web browser information

  • Page view statistics

  • Browsing history

  • Usage information and click tracking

  • Transaction information (e.g. transaction amount, date and time such transaction occurred)

  • Cookies and other tracking technologies (see below for more information)

  • Log data (e.g. access times, hardware and software information)

​

​

How we use your personal data
 

We process Personal Data to operate, improve, understand and personalise our Services. For example, we use Personal Data to:
 

  • Communicate with you about the Services

  • Protect against or deter fraudulent, illegal or harmful actions

  • Allow you to create and/or manage your digital storefront, your sales pages, and your online courses

  • Allow you to create, manage, and/or subscribe to membership software

  • Allow you to create, manage, and/or sell digital files

  • Allow you to create, manage, and/or sell digital downloads and online courses

  • Contact you about Service announcements, updates or offers

  • Personalize website content and communications based on your preferences

  • Provide support and assistance for the Services

  • Discover others who might be interested in the Services

  • To identify trends and other statistical information that may be useful to our business

  • Comply with our legal or contractual obligations

  • Resolve disputes

  • Enforce our Terms of Service (including, for clarity, the Privacy Policy and, where applicable, the EU Data Processing Addendum)

 

We will only process your Personal Data if we have a lawful basis for doing so. Lawful bases for processing include consent, contractual necessity and our “legitimate interests” or the legitimate interest of others, as further described below.
 

Contractual Necessity: We process the following categories of Personal Data as a matter of “contractual necessity,” meaning that we need to process the data to perform under our Terms of Service with you, which enables us to provide you with the Services. When we process data due to contractual necessity, failure to provide such Personal Data will result in your inability to use some or all portions of the Services that require such data.
 

  • First and last name

  • Email address

  • User Content (which can include Personal Data if you include Personal Data in such content)

  • IP address

  • Billing postcode and/or country of residence

 

Legitimate Interest: We process the following categories of Personal Data when we believe it furthers the legitimate interest of us or third parties.
 

  • First and last name

  • Email address

  • IP address

  • Billing postcode and/or country of residence

 

Examples of these legitimate interests include:
 

  • Protection from fraud or security threats

  • Operation and improvement of our business, products and services

  • Marketing of our products and services, directly to you and to others

  • Provision of customer support

  • Compliance with legal obligations

  • Completion of corporate transactions

 

Consent: In some cases, we process Personal Data based on the consent you expressly grant to us at the time we collect such data. When we process Personal Data based on your consent, it will be expressly indicated to you at the point and time of collection.
 

Other Processing Grounds: From time to time we may also need to process Personal Data to comply with a legal obligation, if it is necessary to protect the vital interests of you or other data subjects, or if it is necessary for a task carried out in the public interest.
 

​

How we share your personal data
 

We share Personal Data with vendors, third party service providers and agents who work on our behalf and provide us with services related to the purposes described in this Privacy Policy or our Terms of Service. 

​

We may disclose your personal data to:
​

  • Story Of Me employees 

  • Contractors working with Story Of Me

  • Regulators, and other legal authorities

  • The brands that you are promoting

  • Auditors

  • Payment providers

  • Fraud prevention and compliance services

  • Third party marketing services

  • Potential purchasers or investors

  • Companies that you ask us to share your data with

 
We implement effective processes to identify, manage, monitor and report risks and internal control mechanisms. These controls include secure systems and networks, and clear processes for privilege access rights. All data is stored securely.
​

Our lawful basis for processing personal data include:

​

  • To fulfil a contract, we have with you.

  • When it is our legal duty to do so.

  • When it is in our legitimate interest.

  • When you consent to it.

​

 

Data Transfers outside the EEA

We will not transfer Personal Data to recipients in Third Party countries that are outside of the EEA, or are not currently recognised by EU law as having an adequate level of legal protection for the rights and freedoms of data subjects unless:

  1. a) The Processor is certified under the EU-U.S. Privacy Shield Framework.

  2. b) The existence of any other specifically approved safeguard for data transfers (as recognised under EU Data Protection Laws) and/or a European Commission finding of adequacy can be demonstrated.

 

​

Data Retention

You may request that your Personal Data be anonymised in the following circumstances:

  • Where the Personal Data is no longer necessary in relation to the purpose for which it was originally collected/processed.

  • When you withdraw consent, if consent is being used as the Legal Basis for Processing.

  • If you object to the Processing and there is no overriding Legitimate Interest or Legal Obligation to continue the Processing.

  • The Personal Data was unlawfully processed.

  • The Personal Data has to be erased to comply with a legal obligation

 

We will only retain data for the necessary time to complete the task that the data was collected for, or to meet our legal obligations.

​

 

Subject Access Request (SAR)

You are entitled to a file a Subject Access Request (SAR) to obtain a copy of the personal information which we hold about you. If you wish to receive a copy of this information, please contact your account manager, or the DPO directly, and allow up to thirty calendar days for the information to be collated and provided to you, your identity will need to be confirmed.

​

​

Cookies

 
By using the Story Of Me website, you consent to our use of ‘cookies’. A cookie is a small piece of information sent by a web server to a web browser, which enables the server to collect information from the browser. We use cookies and the information gained from them to analyse site usage, with this information used accordingly to improve our content and site layout and to remember your onsite preferences.
​
We use the following types of Cookies:
 

  • Essential Cookies. Essential Cookies that are required for providing you with features or services that you have requested. For example, certain Cookies enable you to log into secure areas of our Site or Services. Disabling these Cookies may make certain features and services unavailable.

 

  • Functionality Cookies. Functional Cookies are used to record your choices and settings regarding our Services, maintain your preferences over time and recognize you when you return to our Services. These Cookies help us to personalize our content for you, greet you by name, and remember your preferences (for example, your choice of language or region).

 

  • Performance/Analytical Cookies. Performance/Analytical Cookies allow us to understand how visitors use our Site and Services such as by collecting information about the number of visitors to the Site, what pages visitors view on our Site and how long visitors are viewing pages on the Site. Performance/Analytical Cookies also help us measure the performance of our advertising campaigns in order to help us improve our campaigns and the Services’ content for those who engage with our advertising. For example, Google, Inc. (“Google”) uses cookies in connection with its Google Analytics services. Google’s ability to use and share information collected by Google Analytics about your visits to the Services is subject to the Google Analytics Terms of Use and the Google Privacy Policy. You have the option to opt out of Google’s use of cookies by visiting the Google advertising opt-out page at https://www.google.com/privacy_ads.html or the Google Analytics Opt-out Browser Add-on at https://tools.google.com/dlpage/gaoptout/ .

 

  • Retargeting/Advertising Cookies. Retargeting/Advertising Cookies collect data about your online activity and identify your interests so that we can provide advertising that we believe is relevant to you.

​

​

You can decide whether or not to accept Cookies. One way you can do this is through your internet browser’s settings. Most browsers have an option for turning off the Cookie feature, which will prevent your browser from accepting new Cookies, as well as (depending on the sophistication of your browser software) allow you to decide on acceptance of each new Cookie in a variety of ways. You can also delete all Cookies that are already on your computer. If you do this, however, you may have to manually adjust some preferences every time you visit a site and some Services and functionalities may not work.


To explore what Cookie settings are available to you, look in the “preferences” or “options” section of your browser’s menu. To find our more information about Cookies, including information about how to manage and delete Cookies, please visit https://ico.org.uk/for-the-public/online/cookies/ or https://www.allaboutcookies.org/.

 

​

Right to Lodge a complaint

Please let us know if you are unhappy with how we have used your personal information. You also have the right to complain to the Information Commissioner’s Office.

bottom of page