This policy describes how we use your personal data when you use our website: theseus.agency
About this policy
We have provided this policy to ensure that you understand what personal data we may collect and hold about you and what we may use it for. This policy also provides some important information regarding your legal rights to access the personal data that we hold about you and to control how we use it. You can read or print this policy in full or click on the links below to find specific information:
Who we are
We are The Theseus Agency Limited a company registered in England and Wales under Number 07492292, with a separate trading entity called Step Inside Productions.
Our registered address is:
124 Finchley Road
We are registered with the Information Commissioner’s Office, registration number ZA550519
How to contact us
You can contact us in writing at
2 Bloomsbury Place
or by emailing us at
How we use your personal data
Personal data collected through your use of our website is used to:
administer our website, including for security and troubleshooting purposes
report on how visitors interact with our website
improve the way we present our products and services
measure the effectiveness of our marketing and advertising activity
for legitimate business purposes
Personal data we collect about you
We may collect personal information from you in the course of our business, including through your use of our website, when you contact or request information from us, when you engage our services or as a result of your relationship with one or more of our staff and clients.
The personal information that we process includes:
Basic information, such as your name (including name prefix or title), the company you work for, your title or position and your relationship to a person
Contact information, such as your postal address, email address and phone number(s)
Financial information, such as payment-related information
Technical information, such as information from your visits to our website or applications or in relation to materials and communications we send to you electronically
Information you provide to us for the purposes of attending meetings and events, including access and dietary requirements
Identification and background information provided by you or collected as part of our business acceptance processes
Personal information provided to us by or on behalf of our clients or generated by us in the course or providing services to them, which may include special categories of data
Any other information relating to you which you may provide to us
Personal data we collect through your use of our website
This is usually technical information and includes things like your IP address, device identifier(s), device type, browser type and version, time zone, operating system as well as information on you interactions with our website, including how you navigated to our site, what pages you viewed and for how long and when you left. Alongside this data we may also hold some information related to the performance of our website such as for example page response times, errors and timeouts.
Cookies are small pieces of text sent by your web browser by a website you visit. A cookie file is
stored in your web browser and allows the Service or a thirdparty to recognize you and make your
next visit easier and the Service more useful to you.
Cookies can be “persistent” or “session” cookies.
When you use and access the Service, we may place a number of cookies files in your web
analytics, to provide content via 3rd party embedds.
We use both session and persistent cookies on the Service and we use different types of cookies to
run the Service:
Essential cookies. We may use essential cookies to authenticate users and prevent fraudulent use
of user accounts.
Thirdparty cookies might be used for statistics of the Service, and for content players.
Purposes for processing
In the day to day running of our business we will used your personal data because:
we are entering into and carrying out our obligations under a contract with you
we need to use your personal data for our own legitimate purposes and our doing so will not interfere with your rights
– for example, in the administration and management of our business and the improvement if our products and services
we are required to comply with our legal obligations
– for example, for accounting and tax purposes
you have given us your consent to do so
In exceptional circumstances, we may want to use your personal data for a different purpose which does require your consent. When this is the case, we will contact you to ask for your consent which you are not required to give. If you do give us your consent, you may withdraw it at any time.
Personal data you are legally obliged to provide
You are not under obligation to provide us with any of your personal data but please note that if you choose not to provide us with your personal data, we may be unable to provide some of our products and services to you.
You have the right to access any personal information we hold about you. You can exercise this right by sending a written request at any time. Please mark your request Subject Access Request and send to the contact details provided in this policy.
You also have the rights to:
Ask us to correct or erase any inaccurate data
Restrict the ways in which your personal data is used
Object to us using your personal data in ways that are likely to cause you damage or distress
Ask us to delete your personal data
Request that we provide you, or anyone that you nominate, with a copy of any personal data you have given us in a structured electronic form.
Object to decisions being made about you by automated means (please note that we do not currently make use of automated decision making)
If we receive a request from you to exercise any of the above rights, we may ask you to verify your identity before acting on the request; this is to ensure that your data is protected and kept secure.
Sharing and Disclosing Your Personal Information
We use third parties to provide some business functions on our behalf such as sending marketing emails and hosting and managing our website. All processors acting on our behalf only process your data in accordance with instructions from us.
We may share your personal information on a one-off basis if:
we sell or buy any business or assets (including our own), in which case we will disclose your personal data to the prospective seller or buyer of such business or assets
We may also share your personal information with certain trusted third parties in accordance with contractual arrangements in place with them, including:
Our professional advisers and auditors
Suppliers to whom we outsource certain services including IT service providers and other support services
Where necessary, or for the reasons set out in this policy, personal information may also be shared with regulatory authorities. While it is unlikely, we may be required to disclose your information to comply with legal or regulatory requirements. We will use reasonable endeavours to notify you before we do this, unless we are legally restricted from doing so.
Keeping your data safe
We take care to ensure your personal data is kept secure and we take steps to ensure that our providers do the same. Unfortunately, sending information via the internet is never completely secure and although we will do our best to protect your personal data, we cannot guarantee the security of personal data sent over the internet.
If you become aware that your personal data may have been compromised in any way, please contact us immediately using the contract details [link] provided in this policy.
When we will send your personal data to other counties
Your personal data may be transferred to, or stored in, countries outside the European Economic Area by us or one of our suppliers. Where we, or our processors, transfer data outside of the EEA we take steps to ensure that your data is treated securely and in accordance with this policy.
This includes, for example, using suppliers which are certified under the EU-US Privacy Shield framework or ensuring the adequate contractual clauses approved by the European Commission are in place.
How long we keep your personal data
We only keep your personal data for as long as we actually need it for the purpose it was originally collected for. At the end of that retention period, your data will either be deleted completely or anonymised. In practice, this means, for example, that we will keep your personal data on our marketing file, until you withdraw your consent (please note however that we may be required to keep a copy of your email address for suppression purposes).
How you can make a complaint
If you are unhappy with the way we have used your personal data please contact us to discuss this using the contact details provided in this policy.
You can also have the right to make a compliant to the Information Commissioner’s Office. Whilst you are not required to do so, we encourage you to contact us directly to discuss your concerns in the first instance and to give us an opportunity to address these. If would you like to make a complaint to the ICO, you can do so by visiting www.ico.org.uk
Keeping this policy up to date
We will update this policy from time to time to reflect any changes to our internal procedures or to reflect a change in the law. The easiest way to check for updates, is to visit our website or you can contact us and ask us to send you the latest copy.
This policy was last update: 26 February 2020