This policy describes how we use your personal data when you use our website:

About this policy

We have provided this policy to ensure that you understand what personal data we may collect and hold about you and what we may use it for. This policy also provides some important information regarding your legal rights to access the personal data that we hold about you and to control how we use it. You can read or print this policy in full or click on the links below to find specific information:

Who we are

We are The Theseus Agency Limited a company registered in England and Wales under Number 07492292, with a separate trading entity called Step Inside Productions.

Our registered address is:

Regina House
124 Finchley Road
We are registered with the Information Commissioner’s Office, registration number ZA550519

How to contact us

You can contact us in writing at
Data Protection
2 Bloomsbury Place
or by emailing us at

How we use your personal data

Personal data collected through your use of our website is used to:
administer our website, including for security and troubleshooting purposes
report on how visitors interact with our website
improve the way we present our products and services
measure the effectiveness of our marketing and advertising activity
for legitimate business purposes

Personal data we collect about you

We may collect personal information from you in the course of our business, including through your use of our website, when you contact or request information from us, when you engage our services or as a result of your relationship with one or more of our staff and clients.

The personal information that we process includes:

Basic information, such as your name (including name prefix or title), the company you work for, your title or position and your relationship to a person

Contact information, such as your postal address, email address and phone number(s)

Financial information, such as payment-related information

Technical information, such as information from your visits to our website or applications or in relation to materials and communications we send to you electronically

Information you provide to us for the purposes of attending meetings and events, including access and dietary requirements

Identification and background information provided by you or collected as part of our business acceptance processes

Personal information provided to us by or on behalf of our clients or generated by us in the course or providing services to them, which may include special categories of data

Any other information relating to you which you may provide to us

Personal data we collect through your use of our website

This is usually technical information and includes things like your IP address, device identifier(s), device type, browser type and version, time zone, operating system as well as information on you interactions with our website, including how you navigated to our site, what pages you viewed and for how long and when you left. Alongside this data we may also hold some information related to the performance of our website such as for example page response times, errors and timeouts.


Revoke Cookies

By using the Service, you consent to the use of cookies.

Cookies are small pieces of text sent by your web browser by a website you visit. A cookie file is
stored in your web browser and allows the Service or a third­party to recognize you and make your
next visit easier and the Service more useful to you.

Cookies can be “persistent” or “session” cookies.

When you use and access the Service, we may place a number of cookies files in your web

We use cookies for the following purposes: to enable certain functions of the Service, to provide
analytics, to provide content via 3rd party embedds.

We use both session and persistent cookies on the Service and we use different types of cookies to
run the Service:
­Essential cookies. We may use essential cookies to authenticate users and prevent fraudulent use
of user accounts.

Third­party cookies

Thirdparty cookies might be used for statistics of the Service, and for content players.

Purposes for processing

In the day to day running of our business we will used your personal data because:
we are entering into and carrying out our obligations under a contract with you
we need to use your personal data for our own legitimate purposes and our doing so will not interfere with your rights

– for example, in the administration and management of our business and the improvement if our products and services
we are required to comply with our legal obligations

– for example, for accounting and tax purposes
you have given us your consent to do so

In exceptional circumstances, we may want to use your personal data for a different purpose which does require your consent. When this is the case, we will contact you to ask for your consent which you are not required to give. If you do give us your consent, you may withdraw it at any time.
Personal data you are legally obliged to provide
You are not under obligation to provide us with any of your personal data but please note that if you choose not to provide us with your personal data, we may be unable to provide some of our products and services to you.

Your rights

You have the right to access any personal information we hold about you. You can exercise this right by sending a written request at any time. Please mark your request Subject Access Request and send to the contact details provided in this policy.

You also have the rights to:

Ask us to correct or erase any inaccurate data

Restrict the ways in which your personal data is used

Object to us using your personal data in ways that are likely to cause you damage or distress

Ask us to delete your personal data

Request that we provide you, or anyone that you nominate, with a copy of any personal data you have given us in a structured electronic form.

Object to decisions being made about you by automated means (please note that we do not currently make use of automated decision making)

If we receive a request from you to exercise any of the above rights, we may ask you to verify your identity before acting on the request; this is to ensure that your data is protected and kept secure.

Sharing and Disclosing Your Personal Information

We use third parties to provide some business functions on our behalf such as sending marketing emails and hosting and managing our website. All processors acting on our behalf only process your data in accordance with instructions from us.

We may share your personal information on a one-off basis if:

we sell or buy any business or assets (including our own), in which case we will disclose your personal data to the prospective seller or buyer of such business or assets

we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our website terms of use and other agreements; or to protect the rights, property, or safety of our customers, ourselves or others.

We may also share your personal information with certain trusted third parties in accordance with contractual arrangements in place with them, including:

Our professional advisers and auditors

Suppliers to whom we outsource certain services including IT service providers and other support services

Where necessary, or for the reasons set out in this policy, personal information may also be shared with regulatory authorities. While it is unlikely, we may be required to disclose your information to comply with legal or regulatory requirements. We will use reasonable endeavours to notify you before we do this, unless we are legally restricted from doing so.

Keeping your data safe

We take care to ensure your personal data is kept secure and we take steps to ensure that our providers do the same. Unfortunately, sending information via the internet is never completely secure and although we will do our best to protect your personal data, we cannot guarantee the security of personal data sent over the internet.

If you become aware that your personal data may have been compromised in any way, please contact us immediately using the contract details [link] provided in this policy.

When we will send your personal data to other counties

Your personal data may be transferred to, or stored in, countries outside the European Economic Area by us or one of our suppliers. Where we, or our processors, transfer data outside of the EEA we take steps to ensure that your data is treated securely and in accordance with this policy.

This includes, for example, using suppliers which are certified under the EU-US Privacy Shield framework or ensuring the adequate contractual clauses approved by the European Commission are in place.

How long we keep your personal data

We only keep your personal data for as long as we actually need it for the purpose it was originally collected for. At the end of that retention period, your data will either be deleted completely or anonymised. In practice, this means, for example, that we will keep your personal data on our marketing file, until you withdraw your consent (please note however that we may be required to keep a copy of your email address for suppression purposes).

How you can make a complaint

If you are unhappy with the way we have used your personal data please contact us to discuss this using the contact details provided in this policy.

You can also have the right to make a compliant to the Information Commissioner’s Office. Whilst you are not required to do so, we encourage you to contact us directly to discuss your concerns in the first instance and to give us an opportunity to address these. If would you like to make a complaint to the ICO, you can do so by visiting
Keeping this policy up to date

We will update this policy from time to time to reflect any changes to our internal procedures or to reflect a change in the law. The easiest way to check for updates, is to visit our website or you can contact us and ask us to send you the latest copy.

This policy was last update: 26 February 2020

Revoke consent