Who we are
Our website address is: https://capitalwineschool.com.
What personal data we collect and why we collect it
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
Your data is collected and stored on our server only when you complete a contact form on our website. This data will not be shared with anyone and will only be used to respond directly to an inquiry via personal email. You can request that this data be deleted at any time using the “Delete Data Request” form below.
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Delete Data Request Form
Please complete the form below to request to have your data deleted from the website database.
Export Data Request Form
Please complete the form below to request to have your data exported from the website database.
Where we send your data
Visitor comments may be checked through an automated spam detection service.
If you should have any questions/concerns regarding your data and the protection of your data please contact us at firstname.lastname@example.org.
How we protect your data
What data breach procedures we have in place
In the event of a discovered or suspected Security Event, Capital Wine School (CWS) shall provide notice without undue delay to user’s technical and account contacts using those means established for routine account-related communications. Our notice shall include the following information to the extent it is reasonably available to CWS at the time of the notice, and CWS shall update its notice as additional information becomes reasonably available:
(i) the dates and times of the Security Event;
(ii) the facts that underlie the discovery of the Security Event, or the decision to begin an investigation into a suspected Security Event, as applicable;
(iii) a description of the Personal Data involved in the Security Event, either specifically, or by reference to the data set(s), and
(iv) the measures planned or underway to remedy or mitigate the vulnerability giving rise to the Security Event.
We will take those measures available, including measures reasonably requested by you, to address a vulnerability giving rise to a successful Security Event, both to mitigate the harm resulting from the Security Event and to prevent similar occurrences in the future. We will cooperate with your reasonable requests in connection with the investigation and analysis of the Security Event, including a request to use a third-party investigation and forensics service. CWS shall retain all information that could constitute evidence in a legal action arising from the Security Event and shall provide the information to you upon your request. Except to the extent required by law in the written and reasonable opinion of CWS’s legal counsel, or as reasonably required by our investigation of the Security Event or our other contractual obligations, we will not disclose to any third party the existence of a Security Event or suspected Security Event or any related investigation without user’s prior written consent.
Third parties we receive data from
We will not disclose your personal data to third parties except as follows:
- when we believe disclosure is reasonably required to comply with any law or legal request;
- to enforce our legal and contractual rights, or to protect the rights and safety of others;
- to third parties who help us provide any part of the Site or the Services, to the limited extent required for such help, and on condition that they may not further disclose your data or use it for any other purpose; or
- as part of a sale of our assets or a merger of our company.
Industry regulatory disclosure requirements
Event Registration Data
We collect information about you during event registration. This information may include but is not limited to:
- Your names
- Billing address
- Mailing address
- Email address
- Phone number
- Date of Birth
- Location and traffic data (including partial IP address and browser type)
- Any other details that might be requested from you for the purpose of processing your registration or ticket purchase
Handling this data also allows us to:
- Send you important account/purchase/service information.
- Respond to your queries, refund requests, or complaints.
- Process payments and prevent fraudulent transactions. We do this on the basis of our legitimate business interests.
- Set up and administer your account, provide technical and customer support, and to verify your identity.
In order to process payments, we collect billing information on-site. Sensitive billing information is not stored on our server, but may be handled while in-transit to the payment processing server.
Masked billing information may be stored on our servers (eg only the last 4 digits of credit card numbers are stored: **** **** **** 1234).
Site administrators may keep a log of communications with the payment processors in order to verify payments are being processed correctly. These logs are automatically deleted after a week.
Event Registration Cookies
When you begin registering for an event and select a ticket quantity, a cookie will be used to track your registration. This cookie lasts 1 hour.
Email History Data
We keep a record of the emails sent to you. This is to ensure communication is successfully sent and its information is accurate.
Event Check-In Record
When you attend an event, an event manager may record the time you check in or out of the event.
Event Registration Data Retention
Personal data is stored at least until the date of the event, and may be kept indefinitely in case of future registrations.
Event Registration Data Erasure and Export
You have the right to request your personal data be sent to you electronically, and the right to request your registration data be erased after the event. To do so, please contact the event manager or site administrator.