Skip to main content

Privacy Policy

Last Updated: 14/01/26

This Privacy Policy explains how Mahne Creative Media Ltd, registered company 11116572 located at 254 Upper Shoreham Road, Shoreham-by-Sea BN43 6BF, operates its website https://mahne.com (hereinafter referred to as ‘we,’ ‘us,’ or ‘our’). We are committed to protecting your personal data in accordance with the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), ePrivacy Directive, and other applicable data privacy laws. This Privacy Policy outlines how we process your personal data, including the use of cookies, beacons, and tracking pixels.

1. Identity of the Data Controller

The data controller responsible for processing your data on this website is:
Christian Mahne
Address: Mahne Creative Media Ltd, 254 Upper Shoreham Road, Shoreham-by-Sea BN43 6BF

Email: office@mahne.com

Registered with the Information Commissioner’s Office ref:ZB676325

For any questions or concerns about your personal data, please contact us via email.

2. Types of Personal Data We Collect

When you visit, use, or interact with our website, we may collect the following categories of personal data:

Automatically Collected Data

  • Cookies: Small text files that store information on your device to support functionality, performance, and advertising purposes.
  • Beacons and Tracking Pixels: Small pieces of code embedded on our website that allow us or third-party providers to track user behavior. These may include services from [typekit.net] and [googletagmanager.com].
  • Device and Usage Data: IP address, browser type, operating system, referral URL, and website activity (e.g., pages visited, click behavior, and session length).

Data You Provide Directly

While navigating our website, you may choose to provide certain personal data, such as through forms or account creation. This may include:

  • Name
  • Email address
  • Any voluntary information submitted via forms or surveys.

3. Use of Cookies and Similar Technologies

We use cookies, beacons, and tracking pixels to enhance your browsing experience, ensure functionality, and provide relevant analytics. Below are the cookies and pixels we use:

Cookies

Please review the full details of our Cookie Policy for a breakdown of cookies and their purposes.

  • Strictly Necessary Cookies: These cookies are required for the functioning of the website and do not require consent. For example, cookies such as _GRECAPTCHA, laravel_session, and XSRF-TOKEN.
  • Performance Cookies: These measure how users interact with our website, like __cf_bm (Vimeo). Consent is required before these are set.
  • Functional Cookies: For added features and functionalities, such as _cfuvid (Vimeo). Consent is also required.

Beacons and Tracking Pixels

These technologies provide additional tracking functionality to improve website analytics and measure engagement. For example, we use:

  • Google Tag Manager
  • Adobe Typekit

Legal Basis for Processing Technology (GDPR):
We process strictly necessary cookies based on legitimate interests, while performance, functional, or targeting cookies require consent as outlined in Recital 32 of the GDPR.

4. Legal Basis for Processing

Under the GDPR, our legal basis for processing your personal data includes:

  • Consent: Explicit consent for analytics, performance, and targeting cookies or beacons (Article 6(1)(a)).
  • Legitimate Interests: The operation and security of our website through strictly necessary technologies (Article 6(1)(f)).
  • Contractual Obligation: Processing necessary for the performance of a contract if you voluntarily engage with certain website features (Article 6(1)(b)).

Under the CCPA, we process personal data as a ‘business’ and will not sell personal information unless explicitly disclosed and requested.

5. Third-Party Services and Data Sharing

We may share personal data with third parties to support the delivery and functionality of our website. These services include but are not limited to:

  • Google: For reCAPTCHA functionality that prevents spam and abuse.
  • FormRobin: For form-based session management.
  • Vimeo: For handling video streaming and associated cookies.
  • Adobe Typekit: For website font rendering.
  • Google Tag Manager: For website performance and analytics tracking.

Data is shared only for the purposes outlined herein. If necessary, data protection agreements are established with third-party providers to ensure compliance with GDPR and ePrivacy rules.

6. Data Retention Periods

We retain personal data only for as long as it is necessary to fulfill the purposes described in this policy. The retention periods for cookies and beacons are listed below:

Name Purpose Retention Period
_GRECAPTCHA Website security 180 days
laravel_session Session management 14 days
XSRF-TOKEN Cross-site request forgery protection 14 days
__cf_bm Performance tracking 30 minutes (0.02 days)
_cfuvid Functionality support during session Session (ends with browser)

For tracking pixels and beacons, data is retained as specified in respective cookie policies and contracts managed by the third-party providers.

7. International Data Transfers

Your personal data may be transferred to countries outside the European Economic Area (EEA), including to the United States, where some third-party providers are located.

When we transfer data to providers in countries that lack an adequacy decision from the European Commission, we ensure appropriate safeguards, such as Standard Contractual Clauses (SCCs), to protect your personal information.

8. User Rights

Under the GDPR, you have the following rights:

  • Right to Access: Request access to personal data we hold about you.
  • Right to Rectification: Request corrections to inaccurate personal data.
  • Right to Erasure: Request deletion of personal data under certain conditions (‘Right to be Forgotten’).
  • Right to Restrict Processing: Limit the processing of your personal data in certain conditions.
  • Right to Data Portability: Receive your data in a common, machine-readable format and transmit it elsewhere.
  • Right to Object: Object to data processing based on legitimate interests or for direct marketing purposes.
  • Right to Withdraw Consent: Withdraw consent for non-essential cookies or processing activities at any time.

Under the CCPA, California Residents have the following rights:

  • Right to Know: Request access to the categories and specific pieces of personal information collected about you.
  • Right to Delete: Request that personal information be deleted, subject to certain exceptions.
  • Right to Opt-Out: Opt-out of the sale of personal data (we do not sell personal data).
  • Right to Non-Discrimination: Exercising your privacy rights will not result in discriminatory treatment.

To exercise any of these rights, please contact us at [Insert Email].

9. Updates to the Policy

This draft policy may be subject to updates or modifications. Once finalized and approved, we will notify users of material changes appropriately through website updates or other communication channels.