The purpose of this statement is to explain to you what personal information we collect and how we may use it.
This website and all other websites listed here is owned and operated by D C Thomson & Co Ltd., a company registered in Scotland no. SC005830, having its registered offices at Courier Buildings, Albert Square, Dundee DD1 9QJ.
DC Thomson is committed to protecting your privacy and maintaining the security of any personal information received from you. We strictly adhere to the requirements of the data protection legislation in the UK, including the General Data Protection Regulation 2016 and the Data Protection Act 2018 and we are registered on the Data Protection Public Register number Z5748964.
Unless the context otherwise requires, in this Agreement the following expressions shall have the meanings set out below:-
“Affiliate” means organisations which we partner, work or associate with;
“Group Companies” or “Group Company” means any and all entities controlling or controlled by or under common control with Us. “Control” means ownership, directly or indirectly, of at least fifty percent (50%) of the voting rights in such entity, and ‘controlling’ and ‘controlled’ shall have the corresponding meaning.
Due to the type of data we collect and the nature of our business we currently have no legal requirement to have a DPO at DC Thomson. However, our information security manager will be happy to deal with any queries or requests regarding the data we hold about you. They can be contacted by email at email@example.com or by post to Information Security Manager, D C Thomson & Co Ltd., Courier Buildings, Albert Square, Dundee DD1 9QJ.
When you register on our website, take part in a competition or place an order, we may collect your personal details which may include name, address, email address, phone number and other personal information that we will use to identify you, your order details and payment information. This allows us to process and manage your registration and administer competitions as well as process your order and provide you with the goods or service chosen
We do not collect sensitive information (also known as special categories of information) about you except when you specifically knowingly provide it and have consented to this. Examples are allergies in a situation where food maybe provided or a disability so we can ensure a venue can facilitate access.
We do collect some information from cookies and similar software which allows us to understand how you arrive on our websites, and use and navigate round them so we can improve the sites. We obtain some information from google analytics which is anonymous and other social media platforms for example Facebook. The social media information provided is limited and only that which you have previously agreed with them that they can share.
We will use your personal information for a number of purposes including
We use your personal information to update you about new products/services by post, email and SMS text message. We will only contact you with your consent. You will provide this either when you fill in a form to provide your data, by signing up for a newsletter, selecting your preferences in your online account or when you call us.
We may personalise the message content based on information you provide us with, purchases you make and your use of DC Thomson websites.
We may use information which we hold about you to show you relevant advertising on third party sites (e.g. Facebook, Google, Instagram, Snapchat and Twitter). This could involve showing you an advertising message where we know you have a DC Thomson account and/or have used our products and services. If you don’t want to be shown targeted advertising messages from us, some third party sites allow you to request not to see messages from specific advertisers on that site in future. If you want to stop personalised services from DC Thomson, including targeted advertising messages on third party sites you can do so by amending your preferences in the DCT Passport or email firstname.lastname@example.org.
You are entitled to withhold this consent and opt out from receiving such communications at any time by not giving your consent on the form (paper or web) that collects your details or telling the operator when you call. You can also update these options by logging into your account (if you have one) and adjusting your preferences, contacting us by email at email@example.com or by post to Information Security Manager, D C Thomson & Co Ltd., Courier Buildings, Albert Square, Dundee DD1 9QJ. We will always provide you with a way of opting out of receiving future marketing messages from us, each time we send them to you.
There are a number of ground we process your data under. These are
DCT Passport is an account management service for the DCT media online brands. This allows you to manage personal information, email subscription/preferences and access Pagesuite paid for content. It currently covers the newspapers and mature magazine titles, our travel sites and the online shops.
Other online accounts that are for a single brand (not part of the DCT passport) will only allow you to impact your interactions with that one brand.
As a Beano enthusiast you may have signed up for a Beano comic subscription or to the Beano website or both. The comic is produced by DC Thomson media (our publishing arm) and the website along with other online and offline activities are run by the DC Thomson company known as Beano Studios. To provide you with a seamless experience it may be necessary to share your personal information between these two organisations. We will only share the information needed to provide you with the services you are using and will not routinely share all the data we hold on you.
We may from time to time provide your personal information to third parties for the purposes of providing you with competition prizes or our goods and services. These third party providers include payment processors, providers of card validation services, credit referencing providers, third party sales processor (includes fulfilment services) and service providers who assist us with hosting our marketing campaigns. They do not decide what is done with your data and only process it on our behalf. These third parties may be located outside the European Economic Area; however we only use providers that provide adequate protection for your information at all times.
When transferring any personal information outwith the EEA we only do so under one of the legally recognised transfer mechanisms for ensuring the data is safeguarded. These are:
We will not provide your data to other third parties for marketing purposes unless you have specifically consented to this when you first provided your data to us. You are entitled to withhold this consent and opt out from receiving such third party communications at any time by not giving your consent on the form (paper or web) that collects your details or telling the operator when you call. You can also update these options by logging into your account and adjusting your preferences, contacting us by email at firstname.lastname@example.org or by post to Information Security Manager, D C Thomson & Co Ltd., Courier Buildings, Albert Square, Dundee DD1 9QJ.
Currently we do not have the ability to react to do not track being set in the browser, if you wish to opt out of tracking we suggest downloading an ad blocking technology such as Ghostery.
Many of our websites are not aimed at under 16’s.
Where a website is aimed at under 16s and we are asking for personal information such as to register an account you may need to provide your date of birth. We will need to obtain consent from your parent/guardian before you can use some of our services. If we don’t receive consent from your parent/guardian in the time indicated we will delete your information.
For all other websites if you are under the age of 16, please get your parent/guardian’s permission before you provide any personal information to DC Thomson as these websites are not aimed at under 16’s. A full list of websites covered by this policy can be found here with those appropriate to under 16’s listed separately.
We follow strict security procedures in the storage, use and disclosure of information which you have given us, to prevent unauthorised access to, and loss, misuse or alteration of your personal information in accordance with the UK data protection legislation. These include access control, firewalls and virus checking procedures.
You are responsible for keeping any confidential passwords or other login or access details which you select or which we allocate to you secret. Whilst we take steps to ensure the security of your information, there is a risk that any information transmitted over the Internet and stored on a computer may be intercepted or accessed by an unauthorised party. If you think that someone has accessed your information held by us without your permission or gained unauthorised access to your login details, you must notify us at email@example.com.
We also recommend that if you use a shared computer or a computer in a public place such as a library that you close your browser when you have finished you session
Some of the information you provide to us is necessary to carry out repeated tasks, such as verifying your identity when signing in to use an account or providing our goods and services to you or you using an online checkout. We will keep this information for as long as you remain a registered user of any of our sites or an active customer plus a reasonable time (approximately 18 months) beyond this to deal with queries or issues.
Some information may be required for longer periods such as financial information for HMRC purposes, usually a maximum of 7 years.
Competition entrant and winner (including runner up) information. Entrant details are generally deleted/destroyed up to 1 month after the winner is drawn. This is in case we need to redraw a winner for some reason. In rare circumstances this can be up to 90 days. The winners’ details are retained for up to 6 months to allow us to comply with a regulatory audit, if one were to be required.
DC Thomson do not retain you payment card information. It is keyed directly into the payment processor’s system when you provide it.
We may retain anonymised information for analytical purposes.
Under the Data Protection law you have a number of rights with respect to your personal information which are:
You are entitled to have your personal information updated to ensure it is up-to-date and accurate. This can be done by following the instructions below.
You have the right to withdraw your consent to any processing that is currently being done under your consent e.g. marketing. Consent can be withdrawn for some processing by updating your preferences in your online account/DCT passport. You can also follow the process below.
You are entitled to receive a copy of the personal information we hold about you.
You can request that we delete personal information in certain circumstances. These will be specific to each case.
You are entitled to have us transfer to another controller the personal information that you have provided us with.
You can request a restriction on the processing of your data in some limited circumstances. Examples are concerns over data accuracy or we no longer require to hold your data but you have requested its retention by us to aid you in a legal matter.
You are entitled to request that we stop processing your data for marketing purposes and in other limited circumstances such as asking us not to process your data by wholly automated means or not to analyse your information for targeted content etc. (also known as profiling).
You can action any of these rights by contacting your normal customer service department or by contacting us by email at firstname.lastname@example.org or by post to Information Security Manager, D C Thomson & Co Ltd., Courier Buildings, Albert Square, Dundee DD1 9QJ.
Should all or part of the DC Thomson business be sold to or taken over by another organisation, your personal information may move to that other organisation as part of the sale or takeover agreement.
The data protection laws in the UK are regulated and enforced by the Information Commissioner’s Office (ICO). Each individual has the right to raise a concern/complaint to the ICO if they have any concerns about how their personal information and/or privacy is treated. You can do this via\
We may update this Policy at any time without notice. We will tell you that we have updated the policy by emailing you at the email address you have provided to us and/or by posting an announcement on the website. By continuing to use the website after we have emailed you or posted a notice informing you of an update, you accept the changes to this Policy.
If you have any questions about privacy, or wish to update your details or action any of your other data rights at any time, please contact us using email@example.com.
Privacy statement updated August 8th 2018