Bug Hunt Privacy Policy
BUG HUNT PRIVACY POLICY
Hello!
We are Aardman Animations Limited, and we are really pleased that you've chosen to explore with our friends from Lloyd of the Files. You can play with them on mobile phones or tablets by using our app (our “Services”).
This Privacy Policy explains how we collect and use personal information about you when you use our Services, including your name, your location, and any other information you give to us. This Privacy Policy is important because the law says we are only allowed to use your information in certain ways, to make sure that your information is kept safe. Because of this, before you use our Services you should make sure that you have read and understood the important information in this Privacy Policy.
If you are under 18 years old then you should ask your parent or guardian to read this Privacy Policy with you. This is because some of the words in this Privacy Policy can be difficult for children to understand, so if you are a child it is important that an adult helps you with this Privacy Policy so they can say if it’s OK for you to use our Services. If they don't, you won’t be able to join in with the fun.
Background
At Aardman we respect your privacy and we are committed to keeping all your personal information secure. This Privacy Policy governs the handling of personal data by us in the course of carrying on our commercial activities.
Contents
2 Information we may collect from you
3 Information we may receive from other sources
4 Special categories of personal data
5 Lawful processing of your personal data
6 Uses made of your personal data
7 Disclosure of your information
8 Where we transfer and store your personal data
9 How we safeguard your information
11 How long we keep your personal data
12 Your rights
14 Contact
15 Changes to our Privacy Policy
1. Introduction
This ‘The Bug Hunt AR Viewer’ mobile software application (“App”) is operated by Aardman Animations Limited (“we”, “us” or “Aardman”). We are a company registered in the UK with company number 02050843 and with our registered office at Gas Ferry Road, Bristol, BS1 6UN.
References to “you” in this Privacy Policy are to the person using the App. If a child is using the app then, depending on the context below, “you” refers either to that child, or to the parent or guardian of that child who should review this Privacy Poilcy on the child’s behalf, or to both the child and their parent or guardian together.
For the purposes of applicable data protection laws, including the UK GDPR (as defined by section 3(1) of the Data Protection Act 2018), Aardman is a “controller”. This means that we retain control over, and are responsible for, all of the Personal Data that is collected on this App and must ensure that we use that Personal Data in compliance with data protection laws
In this Privacy Policy, “personal data” or “personal information” means any data which relates to a living individual who can be identified either from that data alone, or from that data when it is combined with other information which is in the possession of, or is likely to come into the possession of, us (or our representatives or service providers). In addition to factual information, it may also include digital or online identifiers like IP addresses, any expression of opinion about an individual and any indication of our intentions or the intentions of any other person in respect of an individual.
This Privacy Policy sets out the basis on which any personal data we collect from you, or that you provide to us, will be collected, stored and processed by us. Please read it carefully to understand our views and practices regarding your personal data and how we will treat it. By using the App, you are accepting and consenting to the practices described in this Privacy Policy
This Privacy Policy, together with our End User Licence Agreement (EULA) for the App, are available at https://lloydoftheflies.tv/ apply to:
- your use of the App once you have downloaded the App onto your mobile or tablet device; and
- any of the services accessed through the App (unless stated otherwise).
2. Information we may collect from you
We may collect and process the following data from you during your use of the App:
- personal data you provide when reporting a problem with the App or requesting technical support;
- personal data you provide to us if you contact us for any other reason;
- technical details of your use of the App including traffic data, location data, analytics data and other communications data and the resources that you access; and
- information about your device type, operating system, screen resolution and time zone setting.
As well as the information listed above, the App may request access to additional technologies and software (including ‘Application Programming Interfaces’ or ‘APIs’) within your device and use data collected through these technologies to enhance your experience when using the App. This may include:
- the TrueDepth API (on iOS devices) or the ARCore API (on Android devices), which allows the App to access your device’s camera and uses the camera data for the App’s augmented reality features.
Please note that we do not see any data that is processed by the APIs besides aggregated, anonymised data around users’ behaviour. No individual users are identifiable from this behaviour data.
3. Information we may receive from other sources
Occasionally we may receive information about you (including personal data) from other sources. For example:
- from other websites and applications that contain links to this App, including our branded websites (such as https://lloydoftheflies.tv/, and other third-party websites or social media channels that link to the App.
4. Special categories of personal data
We do not collect any special categories of personal data about you; those would include details of a person’s race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, health information, genetic and biometric data and information about criminal convictions and offences (“Special Category Data”). In the event we do identify Special Category Data from you it will not be processes once identified and shall be deleted.
5. Lawful processing of your personal data
However we use you personal data, we make sure that our use complies with lawful bases for using or processing your personal data. We may rely on one or more of these bases when we process your personal data. The bases include where:
- we need to process your personal data in order to perform our contractual obligations to you;
- we have obtained your consent – please note that, if we need your consent for a particular purpose of processing and you do not give us consent (or if you give it but then withdraw it), then we will not process (or continue to process) your personal data for that purpose;
- we need to process your personal data in order to discharge our legal and regulatory obligations;
- we need to process your personal data in order to establish, exercise or defend our legal rights or for the purpose of legal proceedings; or
- the use of your personal data as described is necessary for our legitimate business interests, such as:
- allowing us to manage and administer the operation of our business effectively and efficiently;
- maintaining compliance with internal policies and procedures;
- monitoring the use of our copyrighted materials;
- enabling quick and easy access to information on our products and services;
- offering up-to-date security solutions for mobile devices and IT systems; and
- obtaining further knowledge of current threats to network security in order to update our security solutions and provide these to the market.
If we are processing your personal data because this is necessary for our legitimate interests, then we may continue to do so unless you have a right to object to this (please see “Your rights”” at section 12 below).
Please note that, if we need to process your personal data in order to operate the App and you object or (if we require consent) you do not consent to our processing your personal data, then the App may not be available to you
6. Uses made of THE INFORMATION
Your personal data may be stored and processed by us for the purposes listed below and in accordance with the lawful bases listed below.
Please note that we may process your personal data for more than one lawful basis, depending on the specific purpose for which we are using your data. Please contact us if you need details about the specific lawful bases we are relying on to process your personal data where more than one ground has been set out below.
Purpose/activity |
Lawful bases for processing |
To provide the App and to ensure that content from the App is presented in an effective and user-friendly manner for you and for your device. |
Necessary for our legitimate interests (for running the App, to keep the App updated and relevant, customer interaction and customer relations and the provision of administration and IT services). |
To investigate and address any comments, queries or complaints, or to fix any problems, notified to us by you or other users of the site. |
(a) Necessary for our legitimate interests (customer interaction and customer relations, provision of IT support, technical administration and maintenance). (b) Consent (in respect of special categories of personal data only, and only if you have provided this to us, see section 4 above). |
To encourage and allow you to participate in interactive features on our App, when you choose to do so. |
(a) Performance of a contract with you. (b) Necessary for our legitimate interests (to study how people use the App and interactive features, to help us develop those and to address any issues people experience in using those, and for the promotion and popularity of the App and brands). (c) Consent (in respect of special categories of personal data only, and only if you have provided this to us, see section 4 above). |
For ongoing review and improvement of our site and its security, including technical analysis and statistical monitoring to detect and prevent any potential disruptions, system failures, cyber-attacks or malicious data from affecting our IT systems or any data held by us. |
Necessary for our legitimate interests (for running our site, analysis of site and business performance, the provision of administration and IT services, network security and the protection of our site, systems and data). |
To conduct research, statistical analysis and behavioural analysis on our site users and their behaviour (including anonymizing data for those purposes), and to create and share insights based on aggregated, anonymous data collected through such research and analysis (provided that individual users are not identifiable from such insights). |
Necessary for our legitimate interests (to study how people use our site and interactive features and to create and share anonymised insights with business partners and third parties). |
For the management and administration of our business. |
(a) Necessary for our legitimate interests (for running our business, provision of administration and IT services, network security, to prevent fraud and in the context of any business reorganisation or group restructuring exercise). |
To disclose your information to specified third parties as permitted by this Privacy Policy (see section 7 below). |
(a) Performance of a contract with you. (b) Necessary for our legitimate interests (for running our business, provision of services and detection and prevention of issues affecting our business). |
In order to comply with and/or assess compliance with applicable laws, rules and regulations, and our internal policies and procedures, which includes processing personal data as reasonably required in order to establish, exercise or defend legal claims or for the purpose of legal proceedings. |
(a) Necessary to comply with our legal obligations. (b) Necessary to establish, exercise or defend legal claims or for the purpose of legal proceedings. (c) Necessary for our legitimate interests (to comply with our internal policies and procedures). |
For other purposes that we may notify to you from time to time in separate privacy notices (and we will provide such notices to you at or before the time when we collect personal data from you). |
Such lawful base(s) as we may notify to you in applicable privacy notices. |
Change of purpose
We shall only use your personal data for the purposes for which we collected the data, unless we reasonably consider that we need to use such data for another reason and that reason is compatible with the original purpose. If you would like to get an explanation of how the processing for the new purpose is compatible with the original purpose, please contact us.
If we need to use your personal data for an unrelated purpose, we shall notify you and we will explain the legal basis on which we intend to rely.
Please note that we may process your personal data without your knowledge or consent, in compliance with the above rules, if and to the extent that this is required or permitted by law.
7. DISCLOSURE OF YOUR INFORMATION
Except for the disclosures set out below, or any other disclosures that we may notify to you in separate privacy notices from time to time, we will take steps to ensure that the personal data is accessed and processed only by personnel of Aardman that have a need to do so for the purposes described in this Privacy Policy.
We may share your personal data with any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 1159 of the UK Companies Act 2006.
We may also share your personal data with third parties as further described below:
- if we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets (or their representatives and advisers) for due diligence purposes.
- if Aardman or substantially all of its assets are acquired by a third party, in which case personal data held by it about its customers will be one of the transferred assets.
- with third party agents and contractors for the purposes of providing services to us or on our behalf (for example, our accountants, professional advisors and IT and communications providers), in which case these third parties will be subject to appropriate data protection obligations and they will only use your personal data for the purposes described in this Privacy Policy.
- to the extent required by law (for example if we are under a duty to disclose or share your personal data in order to comply with any legal or regulatory obligation), or in order to enforce or apply the terms of any other agreements, or to protect the rights, property, or safety of Aardman, our customers, or others, including exchanging personal data with other companies and organisations for the purposes of fraud protection and credit risk reduction.
- We may share information collected through cookies and similar technologies as set out in the cookie policy section below.
8. transfer and storage of your personal data
The personal data that we collect from you may be transferred to, and stored at, a destination outside the United Kingdom (“UK”). It may also be processed by staff operating outside the UK who work for us or for one of our suppliers. Such staff maybe engaged in, among other things, the provision of support services to us (or you) in relation to our interactions with you.
Where we transfer your personal data to another country outside the UK, we will take all steps reasonably necessary to ensure that your personal data is treated securely and in a manner consistent with legal requirements and this privacy policy. In relation to data being transferred outside the UK, for example, this may be done in one of the following ways:
- the country to which we send the data might be approved by the UK government as offering an adequate level of protection for personal data;
- the recipient might have signed up to a contract based on “standard data protection clauses” or an international data transfer agreement approved by the UK government, obliging them to protect your personal data in accordance with standards of protection that apply within the UK; or
- in other circumstances the law may otherwise permit us to transfer your personal data outside the UK.
You can obtain more details of the protection given to your personal data when transferred outside the UK by contacting us using the contact details provided below.
9. How we safeguard your information
We have extensive controls in place to maintain the security of our information and information systems. Files are protected with safeguards according to the sensitivity of the relevant information, including hasing or data encryption where appropriate. Appropriate controls (such as restricted access) are placed on our computer systems. Physical access to areas where Personal Data is gathered, processed or stored is limited to authorised employees and independent contractors
As a condition of employment or engagement, our employees and independent contractors are required to follow all applicable laws and regulations, including in relation to data protection law. Unauthorised use or disclosure of confidential information (including personal data) by an employee of Aardman is prohibited and may result in disciplinary measures.
If you contact us about your information, you may be asked for some personal data for identification purposes. This type of safeguard is designed to ensure that only you, or someone authorised by you, has access to your information.
10. Internet risks
Despite the safeguards set out in this Privacy Policy, unfortunately the transmission of information by online or mobile means is not completely secure. Aardman cannot guarantee the security of information transmitted to or through this App, and for that reason any transmission you make is at your own risk. We recommend that you use anti-virus, firewall and/or other security protections according to your own analysis of your security requirements. Once we have received your personal data we will use the procedures and security features set out in this Privacy Policy to try to prevent unauthorised access to, or loss or destruction of, your personal data.
11. How long we keep your personal data
How long we will hold your personal data for will vary and will be determined by the following criteria:
- the purpose for which we are using it (as further described in this Privacy Policy) – we will need to keep the data for as long as is necessary for that purpose; and
- legal obligations – laws or regulations may set a minimum period for which we have to keep your personal data.
In some circumstances we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes, in which case we may use this information indefinitely without further notice to you.
12. Your rights
Where we collect, use or store your personal data under this Privacy Policy, you may, depending on your circumstances, have the following rights:
- the right to obtain information regarding the processing of your personal data (including whether or not we are holding and/or processing your personal data, the extent of the personal data we are holding and the purposes and extent of the processing) and access to the personal data that we hold about you, if any;
- where we are relying on consent for a particular purpose, the right at any time to withdraw your consent to the processing of your personal data for such purpose;
- in some circumstances, the right to receive some personal data in a structured, commonly used and machine-readable format and/or request that we transmit those data to a third party where this is technically feasible – which is sometimes known as the right to “data portability”, and please note that (a) this right only applies to personal data which you have provided directly to Aardman and which we are processing either on the basis of consent or because the processing is necessary in order for us to perform our contractual obligations to you and (b) if you request the right to data portability and it is not available to you, we will let you know;
- the right to request that we rectify your personal information if it is inaccurate or incomplete;
- the right to request that we erase your personal data in certain circumstances – please note that there may be circumstances where you ask us to erase your personal data but we are legally entitled to retain it, in which case we will let you know;
- the right to object to, or request that we restrict, our processing of your personal data in certain circumstances – again, there may be circumstances where you object to, or ask us to restrict, our processing of your personal data but we are legally entitled to refuse that request and, if so, we will let you know;
- the right to object to decisions based solely on automated processing, including profiling, which produce legal effects or otherwise significantly affect you (for example, where a computer algorithm, rather than a person, makes decisions that affect your contractual or other rights) – please note that we do not currently carry out any such automated decision-making processes;
- the right to lodge a complaint with the relevant data protection regulator if you think that any of your rights have been infringed by us, and please note that:
- the data protection regulator for the UK is the Information Commissioner’s Office (“ICO”);
- you can submit complaints through the ICO helpline by calling 0303 123 1113; and
- further information on reporting concerns is available at https://ico.org.uk/concerns/.
To find out more about your legal rights, please see the ICO’s website (www.ico.org.uk).
You can exercise your rights above at any time by contacting us at Aardman Animations Limited, Gas Ferry Road, Bristol, BS1 6UN or privacy@aardman.com, giving us enough information to identify you and to respond to your request.
You will not have to pay a fee to access your personal data (or to exercise any of the other rights). We may, however, charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in those circumstances.
We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we shall notify you and keep you updated.
13. Other websites
If you follow a link to another website, app or service (including any other website or app operated by Aardman), different privacy policies may apply. You should read these policies before you submit any personal data to those other websites or apps and please note that use of your personal data by those websites will be subject to those privacy policies.
14. Contact
Questions, comments and requests regarding this Privacy Policy or the handling of your personal data are welcomed and should be addressed to:
- Aardman Animations Limited, Gas Ferry Road, Bristol BS1 6UN; or
- privacy@aardman.com.
If you are not satisfied with the response you receive, you may escalate concerns to the applicable privacy regulator in your jurisdiction, which for the UK is the ICO (see section 12 above for their contact details).
15. Changes to our Privacy Policy
Any changes we may make to our Privacy Policy in the future will be posted on this page and, where appropriate, notified to you by e-mail.
Please check back frequently to see any updates or changes to our Privacy Policy.
Last modified: 20 July 2023