Privacy Policy

Last updated: 2 October 2025

1. Who We Are (Controller)

DIANASTEPINA is the data controller for personal data processed in connection with our website and services.

Address: 443 Kingsland Road, London, England, E8 4AU • Company No. 16317064 • Email: info@dianastepina.com

2. Data We Collect

  • Contact data: name, email, social/profile links you provide in briefs.
  • Project data: references, notes, files you upload (e.g., vocals, stems).
  • Usage data: basic analytics (pages visited, device/browser info, IP region).
  • Transaction data: amounts, currency (GBP), and payment status from our payment provider (we do not store full card details).

3. How We Use Your Data

  • Provide and manage your orders, deliver files, and handle revisions.
  • Communicate regarding briefs, support, and updates to your project.
  • Operate, secure, and improve our website and services.
  • Comply with legal obligations (e.g., tax/financial record keeping).

4. Lawful Bases (UK GDPR)

  • Contract: to process your order and deliver services.
  • Legitimate interests: to improve services, prevent abuse, and protect our rights.
  • Consent: for optional communications or non-essential cookies (where used).
  • Legal obligation: for record-keeping and compliance.

5. Sharing

We may share data with trusted service providers who help us run the business (hosting, analytics, email, payments). They are bound by appropriate data protection terms. We may also share information if required by law or to protect our rights.

6. Cookies & Analytics

We may use essential cookies for site functionality and limited analytics to understand aggregated usage. Where required, we will request consent for non-essential cookies.

7. Payments

Payments are processed in GBP (£) by our selected payment provider. We receive transaction metadata (amount, status) but not full card numbers. Your payment is subject to the provider’s privacy notice as well.

8. Data Retention

We retain personal data only as long as necessary for the purposes above, including legal/financial record-keeping. Project files may be archived for a reasonable period to support revisions or redelivery upon request.

9. Security

We use reasonable technical and organisational measures to protect personal data. No method of transmission or storage is 100% secure.

10. International Data Transfers

Where data is transferred outside the UK, we rely on appropriate safeguards (e.g., adequacy decisions or standard contractual clauses).

11. Your Rights (UK GDPR)

  • Access, correction, deletion, and portability of your personal data.
  • Restriction or objection to certain processing.
  • Withdrawal of consent where processing relies on consent.
  • Right to complain to the ICO (UK Information Commissioner’s Office).

To exercise your rights, contact: info@dianastepina.com

12. Children

Our services are not directed at children under 13. If you believe a child provided personal data, please contact us to remove it.

13. Changes to This Policy

We may update this Policy from time to time. The “Last updated” date will reflect the latest version.

14. Contact

DIANASTEPINA
443 Kingsland Road, London, England, E8 4AU
Company No. 16317064
Email: info@dianastepina.com