Privacy Policy

At the Institute for Vocal Advancement, we take your privacy very seriously. But in order to improve your experience with our website and enable you to purchase our products or use our services, we may collect personal information from you. We do so strictly according to the applicable laws.

If you don’t want to provide the required personal information to us, you won’t be able to use certain features of this website. As such, your experience in using this website will be diminished, and you won’t be able to purchase our products or use our services.

Who we are

We who run this website are Institute for Vocal Advancement, LLC. We are the controller of the personal data collected from you and are responsible for it. You can reach us at the following:

Institute for Vocal Advancement, LLC 
848 N. Rainbow Blvd
Unit #8263
Las Vegas, NV 89107
USA

[email protected]

Since our company is based outside the European Union, we are required to have a representative according to Art 27 GDPR within the European Union. His contact information is as follows: 

Tom Bathgate

c/o [email protected]

Purposes for which we will process your personal data

We will process your personal data for the following purposes:

  • running this website and improving its functionality
  • providing our products and services to you
  • performing a contract that we entered into
  • marketing activities as far as they are permitted by the applicable laws and improving our marketing strategies
  • complying with legal and/or regulatory obligations and to defend or enforce our rights in legal proceedings

For details on the purposes for which we collect your data, please take a look at the section "What data we collect and when we collect it." 

What data we collect and how we collect it

We collect your personal data either through your actions on our website or through automated technologies that don’t require any action on your end. In the following, we will provide you more details about it. 

Contacting us

When you contact us through a contact form or via email, we collect and process your first name, second name, email address, your message (including all personal data it might contain), and date and time of your message. We are allowed to do so according to Art 6 sec 1 lit f GDPR because we have a legitimate interest in doing so in order to be able to reply to your request. 

If you contact us because you want to receive information on our products and services or are already one of our customers, we are allowed to process and collect the data mentioned above according to Art 6 sec 1 lit b GDPR because it is necessary for the performance of a contract or to take steps prior to entering into a contract.

In order to be able to provide a website to you and, with it, a contact form, we use the hosting services of DigitalOcean, LLC. Their servers process the data you enter into the form in order to create an email notification to us. The service may also collect and process other data that can be linked to the personal data you send us. For more details on the collected data and the processing, please take a look at their Privacy Policy.

When we use DigitalOcean, LLC’s service, your personal data is transferred and processed outside the European Union in the United States of America. This data transfer is permissible according to Art 46 sec 1 GDPR, since DigitalOcean, LLC participates in the Privacy Shield Framework. 

Any request to us, whether made via contact form or directly via email, is processed by our email provider, Microsoft. Thus all personal data you send to us is also processed by the Microsoft email services we use. The services may also collect and process other data that can be linked to the personal data you send us. For more details on the collected data and the processing, please take a look at their Privacy Policy.

When we use Microsoft’s services, your personal data is transferred and processed outside the European Union in the United States of America. This data transfer is permissible according to Art 46 sec 1 GDPR, since Microsoft participates in the Privacy Shield Framework.

Registering for IVACON

When you register for IVACON, we collect and process your first name, second name, address email address, all details about your IVACON registration (thus what package you select, if you also purchase Private Lessons, catering preferences, etc.), the payment plan you select, an additional message you sent us (including all personal data it might contain), payment information, and date and time of your booking. We are allowed to process and collect the data mentioned above according to Art 6 sec 1 lit b GDPR because it is necessary for the performance of a contract or to take steps prior to entering into a contract.

In order to store the registration data for IVACON, we use Microsoft as a processor of your personal data, in particular its services Excel and OneDrive. The services may also collect and process other data that can be linked to the personal data you send us. For more details on the collected data and the processing, please take a look at their Privacy Policy

When we use Microsoft’s services, your personal data may be transferred and processed outside the European Union in the United States of America. This data transfer is permissible according to Art 46 sec 2 lit c GDPR, since Microsoft uses standard data protection clauses (EU Model Clauses).

In order to issue the invoices for your registration, we use Xero as a processor of your personal data. The services may also collect and process other data that can be linked to the personal data you send us. For more details on the collected data and the processing, please take a look at their Privacy Policy.

When we use Xero’s services, your personal data may be transferred and processed outside the European Union. This data transfer is permissible according to Art 46 sec 2 lit c GDPR, since Xero uses standard data protection clauses (EU Model Clauses).

Cookies

Our website partly uses so-called cookies. Cookies do not cause any harm to your device and do not contain any viruses. Cookies serve the purpose of making our service more user-friendly, more effective, and safer. Cookies are small text files that are stored on your device and in your browser.

Most of the cookies we use are so-called session cookies. After the end of the session, these cookies will be deleted automatically. The session cookies are used in order to associate successive page requests with the individual users, who at the same time access our website. Other cookies will be stored on your device until you delete them. These cookies enable us to recognize your browser during your next visit. 

You can adjust your browser to notify you before you receive a cookie, to decide whether to accept cookies on a case-by-case basis, to completely or partly exclude all incoming cookies, and to activate the deletion of cookies automatically when the browser is closed. 

We would like to inform you that the usage of our website is more convenient by using cookies, and not using cookies will limit that convenience.

If you allow us to use cookies, your personal data is processed according to Art 6 sec 1 lit f GDPR because we have the legitimate interest in quality assurance of our service.

Newsletter

When you subscribe to our newsletter, we collect and process your first name and email address. We also keep a record of the fact that you have agreed to receive our newsletter and have agreed to this privacy policy. 

After you subscribe, we send an email to the email address provided to us in which we ask you to confirm your subscription. This is called a "Double Opt-In." We use this procedure to make sure that other people can’t subscribe to our newsletter with your email address without your consent. 

You can unsubscribe from our newsletter at any time. In order to do so, you can either send an email to [email protected] or simply click on the unsubscribe link in the footer of our newsletter.

When we send out a newsletter, we may also collect data concerning the date and time when the message was viewed by you, as well as when you interacted with it, such as by clicking on links included in the message.

We are allowed to collect and process the data you provide when subscribing to our newsletter according to Art 6 sec 1 lit a GDPR because you give us your consent to do so. For the same reason, we are also allowed to send you our newsletter. Furthermore, we are allowed to collect and process data about the fact that you agreed to receive our newsletter and to this privacy policy according to Art 6 sec 1 lit f GDPR because we have a legitimate interest to be able to prove that we only send our newsletter to people who gave us consent to do so. We are also allowed to collect data concerning the date and time when our newsletter was viewed by you, as well as when you interacted with it according to Art 6 sec 1 lit f GDPR because we have a legitimate interest in improving our marketing strategy and the product and service range of our website.

In order to manage the personal data retrieved when you subscribe to our newsletter and to send out the newsletter, we use MailChimp as a processor of your personal data. It is an email address management and message sending service provided by The Rocket Science Group, LLC. These services may also collect and process other data that can be linked to the personal data you send us. For more details on the collected data and the processing, please take a look at their Privacy Policy.

When we use The Rocket Science Group, LLC’s service, your personal data is transferred and processed outside the European Union in the United States of America. This data transfer is permissible according to Art 46 sec 2 lit c GDPR, since The Rocket Science Group, LLC uses standard data protection clauses (EU Model Clauses).

Interaction with external social media platforms

We use services that allow interaction with social networks or other external platforms directly from the pages of this website. The interaction and information obtained through this website are always subject to your privacy settings for each social network. This type of service might still collect traffic data for the pages where the service is installed, even when you do not use it. We are allowed to collect and process this data according to Art 6 sec 1 lit f GDPR because we have a legitimate interest in marketing our website’s content, products, and services through social networks.

In the following, please find more detailed information on the services we use as processors of your personal data for interaction with external social media platforms on this website.

Facebook Like button and social widgets (Facebook, Inc.)

The Facebook Like button and social widgets are services allowing interaction with the Facebook social network provided by Facebook, Inc. The personal data it collects and processes are:

  • cookies and
  • further information about you and how you use our website, which can include the IP addresses or domain names of the computers utilized by the Users who use this Application, the URI addresses (Uniform Resource Identifier), the time of the request, the method utilized to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server's answer (successful outcome, error, etc.), the country of origin, the features of the browser and the operating system utilized by the User, the various time details per visit (e.g., the time spent on each page within the Application) and the details about the path followed within the Application with special reference to the sequence of pages visited, and other parameters about the device operating system and/or the User's IT environment (hereinafter referred to as "Usage Data"). 

For more details on the collected data and the processing, please take a look at Facebook Inc.’s Privacy Policy.

When we use Facebook Inc.’s service, your personal data is transferred and processed outside the European Union in the United States of America. This data transfer is permissible according to Art 45 sec 1 because of adequacy decisions and Art 46 sec 2 lit c GDPR, since Facebook Inc. uses standard data protection clauses (EU Model Clauses).

Instagram Like button and social widgets (Facebook, Inc.)

The Instagram Like button and social widgets are services allowing interaction with the Instagram social network provided by Facebook, Inc. The Personal Data it collects and processes are Cookies and Usage Data.

For more details on the collected data and the processing, please take a look at Instagram's, Privacy Policy.

When we use Facebook Inc.'s service, your personal data is transferred and processed outside the European Union in the United States of America. This data transfer is permissible according to Art 45 sec 1 because of adequacy decisions and Art 46 sec 2 lit c GDPR, since Facebook Inc. uses standard data protection clauses (EU Model Clauses).

Twitter Tweet button and social widgets (Twitter, Inc.)

The Twitter Tweet button and social widgets are services allowing interaction with the Twitter social network provided by Twitter, Inc. The Personal Data it collects and processes are Cookies and Usage Data. 

For more details on the collected data and the processing, please take a look at Twitter, Inc.’s Privacy Policy.

When we use Twitter Inc’s service your personal data is transferred and processed outside the European Union in the United States of America. This data transfer is permissible according to Art 46 sec 2 lit c GDPR, since Twitter Inc uses standard data protection clauses (EU Model Clauses). 

Pinterest "Pin it" button and social widgets (Pinterest)

The Pinterest "Pin it" button and social widgets are services allowing interaction with the Pinterest platform provided by Pinterest Inc. The Personal Data it collects and processes are Cookies and Usage Data.

For more details on the collected data and the processing, please take a look at Pinterest’s Privacy Policy.

When we use Pinterest’s service, your personal data may be transferred and processed outside the European Union. This data transfer is permissible according to Art 46 sec 2 lit c GDPR, since Pinterest uses standard data protection clauses (EU Model Clauses). 

Google Analytics (Google LLC)

Google Analytics is a web analysis service provided by Google LLC ("Google"). It enables us to monitor and analyze web traffic and can be used to keep track of your behavior in connection to our website. The service places Cookies on your computer and is therefore able to collect data about your usage of your website. Google utilizes the personal data collected to track and examine the use of this website, to prepare reports on its activities and share them with other Google services. Google may use the Data collected to contextualize and personalize the ads of its own advertising network.

Adjusting the settings of your browser Platform can prevent the use of Cookies. In this case, it may be possible that the functions of the service offered here cannot be used in its entirety. Furthermore, it is possible to prevent the acquisition and processing of data generated by the Cookies in relation to the use of this website, by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en .

We point out that automated decision-making ("profiling") can take place when integrating Google and an existing Google account. You can opt-out from this profiling activity under the following link: https://adssettings.google.com/authenticated .

If you allow us to use cookies, we are allowed to collect and process the data necessary for Google Analytics according to Art 6 sec 1 lit f GDPR because we have a legitimate interest in monitoring and analyzing web traffic and keeping track of your behavior in connection to our website in order to improve our services and marketing strategies.

For more details on the collected data and the processing, please take a look at Google LLC’s Privacy Policy.

When we use Google LLC’s service, your personal data is transferred and processed outside the European Union in the United States of America. This data transfer is permissible according to Art 46 sec 2 lit c GDPR, since Google LLC uses standard data protection clauses (EU Model Clauses).

Who we share your personal data with

We will share your data with only relevant parties where required, such as our staff members, authorized contractors, services used on our website, etc., where necessary to provide you with a service or information.

In the section "What data we collect and how we collect it," you will find more information about what personal data we share with third-party service providers.

How long we store the data

We will store your personal data for as long as necessary:

  • to fulfill the purposes we collected it for or
  • to comply with any legal, accounting, or reporting requirements.

The following are guidelines for how long information is stored:

  • Contact Forms or email messages – stored for at least 36 months
  • Any data that has to do with your orders – kept for at least 7 years
  • Newsletter subscription information is kept as long as you continue to be a subscriber to our newsletters, except for the data that we use to prove that you gave us consent to receive our newsletter. Such information is kept as long as we have an interest in proving that you gave us consent to receive our newsletter. Usually this means the data is stored till the end of the period of limitation for claims against us because of sending you our newsletter.
  • Website tracking information – stored for 38 months

It is possible that the processors we use store (part of) your data for different time periods that we can’t influence. Please read their Privacy Policies, which you will find links to in the section "What data we collect and how we collect it" for more details.

Your Rights

If your personal data is subject to the regulations of the GDPR, you may exercise certain rights regarding your personal data processed by us. 

In particular, you have the right to do the following:

  • Withdraw your consent at any time. You have the right to withdraw consent where you have previously given your consent to the processing of your personal data.
  • Object to processing of your personal data. You have the right to object to the processing of your personal data if the processing is carried out on a legal basis other than consent. Further details are provided in the dedicated section below.
  • Access your personal data. You have the right to learn whether personal data is being processed by us, obtain disclosure regarding certain aspects of the processing, and obtain a copy of the personal data undergoing processing.
  • Verify and seek rectification. You have the right to verify the accuracy of your personal data and ask for it to be updated or corrected.
  • Restrict the processing of your data. You have the right, under certain circumstances, to restrict the processing of your data. In this case, we will not process your personal data for any purpose other than storing it.
  • Have your personal data deleted or otherwise removed. You have the right, under certain circumstances, to obtain the erasure of your personal data from us.
  • Receive your data and have it transferred to another controller. You have the right to receive your personal data in a structured, commonly used and machine-readable format and, if technically feasible, to have it transmitted to another controller without any hindrance. This provision is applicable provided that the personal data is processed by automated means and that the processing is based on your consent, on a contract which you are part of or on pre-contractual obligations thereof.
  • Lodge a complaint. You have the right to bring a claim before your competent data protection authority. An overview of the Data Protection Authorities may be found here: http://ec.europa.eu/newsroom/article29/item-detail.cfm?item_id=612080 .

Details about the right to object to processing

Where personal data is processed for a public interest, in the exercise of an official authority vested in us or for the purposes of the legitimate interests pursued by us, you may object to such processing by providing a ground related to your particular situation to justify the objection.

Should your personal data be processed for direct marketing purposes, you can object to that processing at any time without providing any justification. To learn whether we are processing personal data for direct marketing purposes, please go to the section "Purposes for which we will process your personal data."

How to exercise these rights

Any requests to exercise your rights can be directed to us through the contact details provided in this document. These requests can be exercised free of charge and will be addressed by us as early as possible and always within one month.

However, we may charge a reasonable fee if your request is clearly unfounded, repetitive, or excessive. Alternatively, we may refuse to comply with your request in these circumstances.

Transfer of your data outside the European Union

We use the services of data processors located outside the European Union for the purposes named in this Privacy Policy. When doing so, we make sure that the data protection standards applicable in the EU are ensured. For more details, please review the section "What data we collect and how we collect it."

A list of the data processors processing data outside the EU and corresponding information is also available by request via email to [email protected]. 

Data Security

To secure your data, we implement appropriate technical and organizational measures according to Art 23 GDPR. 

In particular, for the best possible security of your data, our service through the website is provided via a secured SSL connection between your server and the browser. This means that the data shall be transferred in encrypted form. However, please note that when data is transferred over the internet, the possibility of security breaches cannot be entirely excluded. Complete protection of your data from access by unauthorized parties is therefore technically impossible.

Profiling and automated decision-making

You have the right not to be subject to a decision based solely on automated processing, including profiling, which has legal effect on you or substantially impairs you in a similar manner.

Profiling means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular, to analyze or predict aspects concerning that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements.

We do not use automated decision-making, including profiling, when processing data. However, our third-party providers may carry out such profiling in individual cases. We will inform you about such facts if possible. 

Questions?

For further information, you may contact us any time via email at [email protected] .