Privacy Policy-Email

PRIVACY POLICY 1. ABOUT THIS PRIVACY POLICY
We are Iconix Brand Group, Inc., a group of companies that includes Iconix Brand UK Ltd (company number 08294383), Diamond Icon Ltd (company number 08319211) (each with registered office at 29-31 Dale Street, Manchester, M1 1EY, United Kingdom), Iconix Europe LLC (company number FC034782), Lee Cooper Brands (Management Services) Ltd (company number 07111576) (each with registered office at The Aircraft Factory, Floor 3.1, 100 Cambridge Grove, London, England, W6 0LE, United Kingdom) and such other entities as are in our group and processing the Personal Data of EEA Data Subjects from time to time ("we", "us", "our" and "ourselves").

We take the privacy of our licensees, partners and customers seriously. This privacy policy (“Privacy Policy”), which we may update from time to time, explains what personal information ("Personal Information") is collected from and about you, what we do with that information and how we protect it. It will also tell you about the rights you have in respect of the Personal Information we hold about you. We are the data controller and responsible for your Personal Information.
This policy was last updated on 25 May 2018.
You can contact us with any queries about this policy or how we use your Personal Information by writing to us at Data Protection Manager, c/o Iconix Brand UK Ltd, 29-31 Dale Street, Manchester, M1 1EY, United Kingdom or dataprotection@iconixbrand.com. You can also contact our data protection manager at dataprotection@iconixbrand.com.

When you provide your Personal Information to us (for example by contacting us to enquire about our brands or giving us your business card), we shall process your Personal Information only for the purposes and by the means set out in this Privacy Policy. You should ensure that you have read and understood this Privacy Policy before submitting your Personal Information to us.

2. INFORMATION COLLECTED
We collect Personal Information about you when:
Collection Method Personal Information Collected
You enter into a contract with us. Name, title, phone number (if provided), email address, business address and bank details (if provided).
You provide your contact details to us whether through your business card or otherwise. Name, title, phone number, email address, business address and online identifiers (as provided).
Every time you email us your details or correspond with us in other ways. Name, email address, address and any other Personal Information contained in such communication(s).
You should ensure that any Personal Information you provide to us is true, accurate, current and complete. Please let us know if any of your Personal Information changes by using the contact details above.

When you submit your Personal Information to us we will process and store your Personal Information in accordance with this Privacy Policy.

3. WHAT WE DO WITH YOUR PERSONAL INFORMATION
By disclosing your Personal Information to us, you confirm that you agree to the terms of this Privacy Policy. We may obtain, hold and use the Personal Information you provide to us (as set out above) for the following reasons (and have set out next to each reason our lawful basis for such processing):
Personal Data Purpose of Processing Lawful Basis
Name, title, phone number (if provided), email address and address. To communicate with you in respect of our business relationship. Our performance of our contract with you.
Name, title, phone number (if provided), email address and address. To register your Personal Details for an account with us and notify you when we update our privacy policy or terms and conditions. Our performance of our contract with you.
Name, email address, phone number and any other Personal Information contained in your enquiry/request. To deal with your enquiries and requests. Necessary for our legitimate interests of providing high quality service to you and dealing with your requests.
Name and email address. To send you our marketing updates by email. Necessary for our legitimate interests of communicating with you about our brands.
We only keep your Personal Information for as long as is necessary and you have the right (in certain circumstances) to request that we delete such information.

We will only use your Personal Information for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If we need to use your Personal Information for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so. Please note that we may process your Personal Information without your knowledge or consent where this is required or permitted by law.

4. MARKETING
As set out above, we may use your Personal Information to provide you with marketing information that you request or that we feel may interest you. We will do this by post, SMS, email or telephone as set out in this Privacy Policy.

We may contact you by email and/or SMS with information about products and services that are similar to those we have previously provided to you.

You may ask us at any time not to use your Personal Information for marketing purposes by contacting us at dataprotection@iconixbrand.com

If you wish to unsubscribe from emails and/or other communications sent by us, you may do so at any time by clicking on the "unsubscribe" link that appears in our email messages or by contacting us at dataprotection@iconixbrand.com.

5. DISCLOSURE OF YOUR PERSONAL INFORMATION
We may share or transfer your Personal Information and non-personally identifiable information to:
  1. Our group companies (and to our/their successors in title) who may be based overseas and who we need to share your Personal Information with in order to perform our contract to provide products/services to you and (in respect of aggregated data) to improve the business performance of our group;
  2. Our third party licensees who may be based overseas and who we need to share your Personal Information with in order to perform our contract to provide products/services to you;
  3. Third parties that provide services to us and/or who we engage to process Personal Information on our behalf (please see below for further details);
  4. Third parties if we buy or sell any company or assets;
  5. Our professional advisers including lawyers, bankers, auditors and insurers who provide professional services to us (or our group companies); and
  6. HM Revenue & Customs and other regulatory authorities (to the extent required by law or regulation).
We may share or transfer your Personal Information to the following categories of third party service providers/processors:
  1. Our IT service provider (who is based in the United States);
  2. Our email storage system/server provider (which is hosted in the United States);
  3. Our CMS application providers;
  4. Our payment processors;
  5. Our secure shredding providers; and
  6. Our marketing agencies.
We will not disclose your Personal Information to any other third parties except when:
  1. We believe in good faith that, amongst other things, disclosure is necessary to lessen or prevent:
    1. A serious and imminent threat to your life, health or safety; or
    2. A serious threat to public health or public safety; or
  2. Unlawful activity has been, is being or may be engaged in; in such circumstances we may use or disclose your Personal Information as a necessary part of our investigation of the matter or in reporting our concern to relevant persons or authorities; or
  3. Enforcing or applying our Website Terms or any other agreements or to protect our rights or the rights of a third party; or
  4. Required or authorised by or under law (including, without limitation, Sarbanes Oxley Act audits),
In each case, we shall only disclose such Personal Information as is necessary to satisfy the purpose of such disclosure.

We will not sell or rent your Personal Information to third parties without your consent. We require all third parties to respect the security of your Personal Information and to treat it in accordance with the law. We do not allow our third party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.

6. TRANSFERS OF YOUR PERSONAL INFORMATION OUTSIDE THE EUROPEAN ECONOMIC AREA
As we are a US led company, our group companies, licensees, representatives (including clubs, sports people, spokespersons and related parties) and other third parties (to the extent we have identified at section 5 above) we may transfer your Personal Information to in accordance with this Privacy Policy may be located in countries both inside and outside the European Economic Area (the “EEA”).

Although countries outside the EEA may not require the same level of protection of Personal Information as countries within the EEA, we always demand that our group companies, licensees, partners and other third parties adhere to the same procedures that we follow ourselves with respect to your Personal Information, including this Privacy Policy. We do this by ensuring at least one of the following safeguards is implemented:
  1. The country to which the Personal Information is being transferred has been deemed to provide an adequate level of protection for Personal Information by the European Commission.
  2. We may use specific contracts (or certification schemes) approved by the European Commission which give Personal Information the same protection it has in Europe.
  3. Where Personal Information is being transferred to the US, we may transfer Personal Information to them if they are part of the EU-U.S. Privacy Shield Framework, which requires them to provide similar protection to Personal Information shared between the EU and the US.
If you would like further information about the measures we take to protect your Personal Information when it is transferred outside of the EEA, please contact us using the details set out above.

7. COOKIES AND OTHER TRACKING TECHNOLOGIES
Our third party email service provider may use cookies and other, similar technologies from time to time, like web beacons, pixels (or “clear gifs”) and other tracking technologies. These are tiny graphics files that contain a unique identifier that enables them to recognise when someone has opened an e-mail that we have sent them or clicked certain links. This will record the receiver’s email address and the date and time the email was opened or the link was clicked in order to report how an email campaign worked and what actions were taken. Please note that while you may not have the ability to specifically reject or disable these tracking technologies, in many instances, these technologies are reliant on cookies to function properly; accordingly, in those instances, declining cookies will impair functioning of these technologies. For further information please see their cookie policy at (https://mailchimp.com/legal/cookies/).

8. SECURITY OF INFORMATION
We take reasonable steps to preserve the security of your Personal Information, both online and offline. All your Personal Information is stored on our secure servers (some of which are located outside of the EEA, please see section 6 above).

Once we have received your Personal Information we will use strict procedures and security features to try to prevent unauthorised access (including virus/spam/malware protection software, technical and physical security measures and confidential waste disposal). We also ensure that access to your Personal Information is limited only to those employees, agents, contractors, licensees and other partners who have a business need to know such information and they will only process your Personal Information on our instructions and subject to a duty of confidentiality.

We have put in place procedures to deal with any suspected Personal Information breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

9. RETENTION OF PERSONAL INFORMATION
We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting or reporting requirements.

To determine our retention periods, we have considered the amount, nature and sensitivity of your Personal Information, the potential risk of harm from unauthorised use or disclosure of your Personal Information, the purposes for which we process your Personal Information and whether we can achieve those purposes through other means, and the applicable legal requirements.

We keep basic Personal Information relating to a contract for seven years after the contract terminates.

Where you have provided your Personal Information to sign up for our newsletter, or create an account with us, we will retain your information for such time as you wish to continue receiving such newsletter/holding an account with us or, if earlier, you have not engaged with us for at least 2 years.

Where you have provided your Personal Information in the course of completing any market research, survey or competition, we will retain your Personal Information for 12 months.

Where you provide your Personal Information to us in the course of making an enquiry, we will retain such Personal Information for 12 months.

In some circumstances, you may be able to ask us to delete your Personal Information (please see section 15).

10. NOTIFICATION OF CHANGES TO OUR PRIVACY POLICY
This is our current Privacy Policy. It replaces any other Privacy Policy for the Website. We reserve the right to change this Privacy Policy by publishing the amended Privacy Policy on the Website without notifying you. Our rights to use your Personal Information will be based on the Privacy Policy in effect at the time the information is used. If the preceding sentence is deemed to violate applicable law, the Privacy Policy in effect at the time your Personal Information was collected will apply.

11. DATA PROTECTION INFORMATION AND YOUR LEGAL RIGHTS
In the UK, the General Data Protection Regulation and Data Protection Bill (along with any applicable e-privacy laws and regulations) provide the framework for the safety and security of personal data and the uses to which such personal data is put. The Information Commissioner is the UK's supervisory authority for data protection issues and was set up to protect personal information and provide information to individuals and organisations. Please see www.ico.gov.uk for more information.

You have the following rights in respect of your Personal Information:
  1. A right to request access to the Personal Information we are holding about you;
  2. A right to request that your Personal Information be rectified;
  3. A right (in certain circumstances) to object to the processing of your Personal Information;
  4. A right (in certain circumstances) to request deletion of your Personal Information;
  5. A right (in certain circumstances) to restrict our processing of your Personal Information;
  6. A right (in certain circumstances) to portability of your Personal Information; and
  7. A right to withdraw your consent to our processing of your Personal Information.
To exercise any of these rights, please contact us at Data Protection Manager, c/o Iconix Brand UK Ltd, 29-31 Dale Street, Manchester, M1 1EY, United Kingdom or dataprotection@iconixbrand.com. To enable us to comply with your request, we may require proof of your identity or additional information to confirm your right to make the request or to help us respond to your request more quickly. We try to respond to all legitimate requests within one month of receipt but occasionally it may take us longer if the request is particularly complex or involves a large volume of Personal Information.

If you believe the Personal Information we hold about you to be out of date or inaccurate or you have any comments or questions about this Privacy Policy, please email us at dataprotection@iconixbrand.com.

If you have a complaint about how we have used your Personal Information you have the right to complain to the Information Commissioner’s Office, although we request that you contact us first before escalating your complaint.

12. JURISDICTION
This Privacy Policy shall be construed in accordance with the laws of England and subject to the exclusive jurisdiction of the English courts.