Privacy Policy
Last updated the current version
This Privacy Policy explains how London Screenwriters' Festival ("we", "us") collects, uses, shares, and protects personal data when you use LSFConnect (the "Service"). We are the controller of your personal data.
This policy is written to meet the UK and EU General Data Protection Regulation (GDPR) and the California Consumer Privacy Act as amended by the CPRA, and it took effect on the date shown at the top of this page.
1. What we collect
Account and profile data (such as your name or handle, email address, and anything you add to your profile); content you create or upload; purchase and billing data for paid courses (handled by our payment processors, who share limited transaction data with us); communications you send us; and technical data (such as IP address, device and browser information, and usage logs) collected automatically, including via cookies.
2. Why we use it, and our lawful bases
To provide the Service and your account, and to fulfil paid courses — on the basis of performing our contract with you. To secure the Service, prevent abuse, understand usage, and improve what we offer — on the basis of our legitimate interests, balanced against your rights. To send service messages — contract or legitimate interests; to send optional marketing — on the basis of your consent, which you can withdraw at any time. To meet legal, tax, and accounting obligations — on the basis of legal obligation.
3. Sharing and sub-processors
We share personal data with service providers who process it on our behalf under contract — including hosting, email delivery, and payment processing. Our Sub-processors document lists the categories we use. We may also disclose data where the law requires it, to establish or defend legal claims, or as part of a business transfer. We do not sell your personal data.
4. International transfers
Some providers are located outside your country, including outside the UK/EEA. Where we transfer personal data internationally we rely on an adequacy decision or on appropriate safeguards such as the UK International Data Transfer Agreement or the EU Standard Contractual Clauses.
5. How long we keep it
We keep personal data for as long as your account is active and for a reasonable period afterwards, then delete or anonymise it — except where we must keep certain records longer to meet legal, tax, or accounting obligations, or to resolve disputes.
6. Your rights
Depending on where you live, you may have the right to access your personal data; to correct or delete it; to restrict or object to processing; to data portability; and to withdraw consent. Under the GDPR you also have the right to lodge a complaint with a supervisory authority. Under the CCPA/CPRA, California residents may request access, deletion, and correction, may opt out of "sharing" for cross-context advertising (which we do not do), and will not be discriminated against for exercising these rights.
To exercise any right, contact hello@lsfconnect.com. We will verify your request and respond within the time the law allows.
7. Cookies
We use cookies and similar technologies as described in our Cookie Policy, which explains the categories we use and how to control them.
8. Children
The Service is not directed to children under 12, and we do not knowingly collect their personal data. If you believe a child has given us personal data, contact hello@lsfconnect.com and we will delete it.
9. Security
We use technical and organisational measures appropriate to the risk, including encryption in transit, hashed passwords, and access controls. No method of transmission or storage is completely secure, but we work to protect your data and to notify you and any regulator of a breach where the law requires.
10. Complaints and contact
You can reach our data-protection contact at hello@lsfconnect.com. If you are in the UK and are not satisfied with our response, you may complain to the Information Commissioner's Office (ico.org.uk); if you are in the EEA, you may complain to your local supervisory authority.