Bandcamp, Inc. (“Bandcamp”) has subscribed to and will comply with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework (the “Frameworks”) as set forth by the U.S. Department of Commerce regarding the processing of Personal Information (as defined below) that is transferred from the European Economic Area (“EEA”) and Switzerland to the United States, respectively. Bandcamp has certified to the Department of Commerce that it adheres to the Privacy Shield Principles (the “Principles”). If there is any conflict between this Policy and the Principles, the Principles will govern. To learn more about the Frameworks, please visit www.privacyshield.gov.
We may be required to disclose Personal Information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
We use reasonable and appropriate measures to protect your Personal Information from loss, misuse, unauthorized access, disclosure, alteration, and destruction, taking into account the risks involved in the processing and the nature of the Personal Information.
We will give you an opportunity to choose whether your Personal Information may be used for a purpose that is materially different from the purposes for which it was originally collected or subsequently authorized by you, or if we intend to disclose it to a third party acting as a data controller that we have not previously disclosed to you. In such circumstances, we will notify you and offer you the opportunity to opt out of such uses and/or disclosures where non-sensitive Personal Information is involved, and to opt in where sensitive Personal Information is involved.
If you have any questions or concerns, please write to us at the address listed below. We will investigate and attempt to resolve any complaints and disputes regarding our use and disclosure of Personal Information in accordance with the Principles.
If an issue cannot be resolved through Bandcamp’s internal dispute resolution mechanism, you may submit a complaint, at no cost, to the Arbitration Rules and Procedures of Judicial Arbitration and Mediation Services, Inc. ("JAMS"), which serves as Bandcamp’s third-party alternative dispute resolution provider located in the United States. For claimed violations of the Principles not resolved by these mechanisms, you may be able to invoke binding arbitration as detailed in the Principles.
If you have questions, concerns, or complaints about this Privacy Shield Policy or Bandcamp’s privacy practices, please contact us by email at firstname.lastname@example.org.
This Policy may be changed from time to time, consistent with the requirements of the Frameworks. You can determine when this Policy was last revised by referring to the “Last Updated” legend at the bottom of this Policy. Any changes to this Policy will become effective when posted to our website.