//
The Moon Show/Privacy Policy

Privacy Policy

Privacy Policy

ARTICLE 1: INTRODUCTION AND PURPOSE

1.1 Overview

a) The protection of personal data is of paramount importance to TheMoonShow.com (hereinafter referred to as the “Company,” “we,” “us,” or “our”). This Privacy Policy (hereinafter the “Policy”) has been established to inform you, as a visitor or user of our website located at https://www.TheMoonShow.com (hereinafter the “Website”), about the ways in which we collect, process, store, disclose, and safeguard your personal data.

b) The Company is fully dedicated to ensuring that personal data is handled in a lawful, fair, and transparent manner in accordance with applicable data protection laws, including but not limited to the General Data Protection Regulation (EU) 2016/679 (GDPR) and other relevant national or international data protection and privacy regulations. We recognize the significant trust you place in us when you provide your personal data and are committed to maintaining strong data protection and privacy standards.

1.2 Purpose of the Policy

a) This Policy outlines the broad principles and practices for the processing of personal data on the Website. By offering a clear explanation of our data handling activities, including but not limited to collection methods, legal bases, data sharing, security measures, and user rights, we aim to give you complete transparency and control over how your information is utilized.

b) This Policy is intended to complement and not supersede any other notices or statements we may issue about specific data collection endeavors or services offered on the Website. In the event of any conflict, the terms most specific to the particular service or feature will prevail.

ARTICLE 2: DEFINITIONS

a) “Personal Data” means any information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is one who can be identified, directly or indirectly, such as by reference to an identifier like a name, an identification number, location data, or an online identifier.

b) “Processing” means any operation or set of operations performed on Personal Data or on sets of Personal Data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation, retrieval, consultation, use, disclosure, dissemination, restriction, erasure, or destruction.

c) “Data Controller” means the natural or legal person, public authority, agency, or other body that, alone or jointly with others, determines the purposes and means of the processing of Personal Data. For the purposes of this Policy, the Company is the Data Controller.

d) “Data Processor” means a natural or legal person, public authority, agency, or other body that processes Personal Data on behalf of the Data Controller.

e) “Cookies” means small text files that are placed on your device by websites you visit. They are widely used to make websites work or to enable certain functionalities, efficiency, or analytics.

ARTICLE 3: SCOPE AND APPLICABILITY

3.1 Territorial Scope

This Policy applies to all visitors, registered users, and any other individuals who access or use the Website, irrespective of their geographical location. However, it is primarily intended to fulfill the stringent requirements set forth by the GDPR for the processing of personal data.

3.2 Material Scope

This Policy applies to all processing activities (whether automated or manual) carried out by the Company regarding Personal Data collected through the Website’s various functionalities, including subscription forms, contact forms, user registrations, or analytics tools.

3.3 Exclusion from Scope

Any external sites linked from the Website (including but not limited to social media links or third-party resources) are governed by separate and distinct privacy policies. The Company assumes no liability for the privacy practices or content of such third-party sites.

ARTICLE 4: LEGAL BASIS FOR DATA PROCESSING (GDPR COMPLIANCE)

4.1 Overview of Legal Grounds

The GDPR enumerates specific lawful bases under which Personal Data may be processed. The Company endeavors to process Personal Data only where at least one lawful basis under Article 6 of the GDPR applies, which may include:

a) Consent: Where you have given clear and specific consent.

b) Contractual necessity: Where processing is required for the performance of a contract with you or to take pre-contractual steps at your request.

c) Legal obligation: Where processing is necessary for compliance with a legal obligation to which the Company is subject.

d) Legitimate interests: Where processing is necessary for the purposes of the Company’s legitimate interests, except where such interests are overridden by your fundamental rights and freedoms requiring personal data protection.

4.2 Consent Withdrawal – Where processing is based on consent, you retain the right to withdraw your consent at any time, without affecting the lawfulness of processing carried out prior to such withdrawal.

ARTICLE 5: PRINCIPLES OF DATA PROTECTION

5.1 Lawfulness, Fairness, and Transparency

The Company commits to processing your Personal Data in a lawful, fair, and transparent manner. We will not collect or process data in ways that are misleading, undisclosed, or that deviate from the original intent provided to you.

5.2 Purpose Limitation

We will only collect Personal Data for specified, explicit, and legitimate purposes. We will not further process Personal Data in a manner that is incompatible with these purposes unless required by applicable law or as authorized by you.

5.3 Data Minimization

We undertake to process only the minimum amount of Personal Data that is necessary to fulfill the stated purposes. Where possible, anonymization, pseudonymization, or other privacy-enhancing techniques will be employed to safeguard users’ identities.

5.4 Accuracy

We will make reasonable efforts to ensure that your Personal Data is accurate, complete, and kept up to date. You are encouraged to notify us of any changes or corrections to your Personal Data.

5.5 Storage Limitation

Personal Data will be kept only for as long as necessary to fulfill the purposes outlined in this Policy, unless a longer retention period is required by law or justified by legitimate interest.

5.6 Integrity and Confidentiality

We implement appropriate technical and organizational measures to protect Personal Data against unauthorized or unlawful processing and against accidental loss, destruction, or damage.

ARTICLE 6: CATEGORIES OF PERSONAL DATA COLLECTED

6.1 Information You Provide Directly

a) Name: We may collect your first and last name when you fill out forms, sign up for newsletters, register for accounts, or otherwise interact with certain parts of the Website.

b) Email Address: Collected to facilitate account creation, subscription to newsletters, response to inquiries, or to provide updates about your interactions with the Website.

c) Phone Number: Provided optionally in certain contexts, or required in others (e.g., for two-factor authentication or direct contact). This number will be used solely for the stated purpose, such as delivering updates, verifying identity, or offering customer support.

d) Other Voluntary Information: You may choose to provide additional data—such as professional background, preferences, feedback, or demographic details—through surveys, questionnaires, or interactions with support personnel.

6.2 Information Collected Automatically

a) IP Address: Logged when you visit the Website to help us diagnose server and connectivity issues, as well as for security and analytics purposes.

b) Device and Browser Information: Including operating system, browser type, version, and installed plug-ins or system locale settings. These details help us tailor the Website’s performance and user experience.

c) Log Files: The Company maintains server logs that record various events when you access the Website, such as pages viewed, date and time of visits, and referring URLs.

d) Cookies and Tracking Technologies: Detailed in ARTICLE 10, these small data files and related technologies permit us to recognize repeat users, understand browsing behaviors, and improve the Website’s performance.

ARTICLE 7: PURPOSES AND USES OF PERSONAL DATA

7.1 Provision of Services

a) Personal Data is utilized to authenticate you when accessing secured features of the Website, to ensure you receive content relevant to your preferences, and to address any technical problems you may encounter.

b) Communication and Customer Support

We may use your email address or phone number to communicate important notices, respond to inquiries, provide support, or to deliver newsletters and promotional materials (where legally permissible and subject to your marketing preferences).

7.3 Business Optimization and Analytics

Collected data helps us understand Website usage patterns, identify areas for improvement, and refine our content offerings. Aggregated data derived from Personal Data may be used for developing marketing strategies, forecasting, and internal reporting.

7.4 Compliance and Legal Obligations

We may process Personal Data to comply with legal obligations under applicable law, such as responding to lawful data access requests, fulfilling tax or accounting requirements, or cooperating with law enforcement or regulatory agencies.

7.5 Legitimate Interests

The Company may process Personal Data for legitimate business interests including, but not limited to, fraud prevention, system security, and business continuity, provided those interests are not outweighed by your fundamental rights.

ARTICLE 8: CONSENT MECHANISMS AND USER CHOICES

8.1 Obtaining Consent

Where processing relies on consent, we will request it through clear and explicit mechanisms, such as dedicated checkboxes or pop-up notices. Consent requests will detail the type of Personal Data collected and the specific purpose of processing.

8.2 Withdrawal of Consent

You have the right to withdraw consent at any time by contacting us via the information provided in ARTICLE 21. Withdrawal of consent shall not affect the lawfulness of any processing conducted prior to the withdrawal.

8.3 Consequences of Non-Consent

In some instances, certain features or services of the Website may be inaccessible if you do not provide or subsequently withdraw your consent, particularly where such processing is strictly necessary to provide the requested service.

ARTICLE 9: DATA RETENTION PERIODS

9.1 Criteria for Determining Retention Periods

The Company will consider multiple factors to determine the appropriate retention period, including but not limited to:

a) Nature and sensitivity of the data;

b) The risk of harm from unauthorized use or disclosure;

c) The purposes for which the data is processed;

d) Legal requirements for recordkeeping;

e) Existence of any dispute or litigation that necessitates preservation of records.

9.2 Secure Disposal

Upon reaching the expiry of a retention period, Personal Data will be irreversibly anonymized, securely deleted, or otherwise destroyed in a manner consistent with recognized industry standards. The Company will take reasonable measures to ensure data is not inadvertently retained beyond the necessary timeframe.

ARTICLE 10: COOKIES, TRACKING TECHNOLOGIES, AND GOOGLE ANALYTICS

10.1 Use of Cookies and Related Technologies

The Website employs Cookies, web beacons, pixel tags, and other tracking technologies to enhance user experience, analyze traffic patterns, customize content, and serve relevant advertisements. By continuing to browse the Website, you consent to our use of such technologies unless you have disabled them through your browser or device settings.

10.2 Types of Cookies

a) Essential Cookies: Necessary for the Website’s core functionality, allowing you to navigate and utilize features like page transitions or secure areas.

b) Performance Cookies: Collect information about how you use the Website (e.g., pages visited, time spent). Data gathered is aggregated and used to improve Website operation.

c) Functional Cookies: Enable the Website to recall your preferences (e.g., language or region settings) and offer enhanced or more personalized features.

d) Targeting or Advertising Cookies: Used to deliver advertisements relevant to your interests, limit the frequency of displayed ads, and measure ad campaign effectiveness.

10.3 Cookie Management

Most web browsers allow you to accept or reject Cookies through their settings. You may also configure your browser to notify you before a Cookie is placed or remove existing Cookies. Disabling certain Cookies may result in diminished functionality or inability to access certain parts of the Website.

10.4 Google Analytics

We use Google Analytics, a web analytics service provided by Google, Inc. (“Google”). Google Analytics employs Cookies to help analyze how users interact with the Website.

10.4.2 The information generated by these Cookies (including your IP address) will be transmitted to and stored by Google on servers in the United States. Google uses this information on our behalf to evaluate Website usage, compile reports on Website activity, and provide other services relating to Website activity and internet usage.

10.4.3 You may opt out of Google Analytics by installing the Google Analytics opt-out browser add-on, or by adjusting your browser settings to reject Cookies. Additional information on Google’s privacy practices can be found at https://policies.google.com/privacy.

ARTICLE 11: MARKETING AND ADVERTISING PRACTICES

11.1 Marketing Communications

Where permitted by applicable laws, we may send you promotional communications, newsletters, or updates regarding our products, services, or special offers. These communications may be disseminated via email, SMS, or other channels, consistent with the preferences you have communicated to us.

11.2 Opt-Out Mechanism

You have the right to opt out of receiving marketing communications at any time. This can typically be done by following the “unsubscribe” link provided in the messages or by contacting us via the information detailed in ARTICLE 21. Opting out will not affect the lawfulness of processing prior to withdrawal.

11.3 Third-Party Advertising

We may partner with third-party ad networks to manage our advertising across various platforms. These ad networks may utilize Cookies, web beacons, or similar tracking technologies to gather information about your interactions on the Website and elsewhere on the internet to serve targeted ads. We do not share your name,

email address, or phone number with these third-party advertisers but may share a unique identifier or aggregated usage data.

ARTICLE 12: DISCLOSURE AND SHARING OF PERSONAL DATA

12.1 Service Providers (Data Processors)

We may engage trusted third-party companies, consultants, or contractors (“Service Providers”) to provide services on our behalf, such as hosting, data analytics, marketing, payment processing, or technical support. When these Service Providers require access to Personal Data to fulfill their duties, they do so under strict contractual obligations, which include compliance with data protection laws and a commitment to confidentiality.

12.2 Compliance with Legal Obligations

We may share Personal Data if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency). Such disclosures will be carried out only where necessary to comply with a legal obligation or to protect our rights, safety, or property.

12.3 Business Transactions

Should the Company undergo a merger, acquisition, corporate restructuring, or asset sale, Personal Data may be transferred as part of the transaction. We will ensure that any acquiring organization continues to adhere to terms at least as protective as those in this Policy.

12.4 Protection of Rights

Where necessary, we may disclose Personal Data in the event of claims, disputes, or legal proceedings to protect our rights or the rights of other users. This may include disclosing data to our professional advisers or insurers, subject to binding confidentiality obligations.

ARTICLE 13: INTERNATIONAL DATA TRANSFERS

13.1 Notice and Consent

Where no adequacy decision or other valid transfer mechanism exists, we will seek your explicit consent for cross-border transfers of Personal Data or otherwise ensure that a valid derogation under GDPR applies.

13.2 Ongoing Monitoring

We periodically review the privacy practices of third parties receiving Personal Data to confirm compliance with the applicable safeguards. If we find any gaps, we will take immediate remedial actions or suspend the transfer until adequate measures are in place.

ARTICLE 14: DATA SECURITY MEASURES

14.1 Technical and Organizational Measures

The Company has adopted stringent technical and organizational measures to secure Personal Data against unauthorized or unlawful processing. Such measures may include, but are not limited to, encryption, firewalls, access controls, and intrusion detection systems.

14.2 Data Breach Management

In the event of a suspected or confirmed data breach that presents a risk to individuals’ rights and freedoms, we will promptly investigate, take remedial action, and where required, notify the relevant supervisory authority within 72 hours of becoming aware. Where the breach is likely to result in a high risk to your rights and freedoms, we will also communicate the breach to you without undue delay.

14.3 Confidentiality Obligations

Our personnel, contractors, and Service Providers are all subject to binding confidentiality agreements and additional data protection training to ensure proper handling of Personal Data. Only those individuals who have a legitimate business need are granted access to Personal Data, and such access is restricted to what is strictly necessary for their specific roles.

ARTICLE 15: DATA SUBJECT RIGHTS UNDER GDPR

15.1 Right to Information and Access (Art. 15 GDPR)

You have the right to obtain confirmation from the Company as to whether your Personal Data is being processed, and if so, the right to request access to that data, including the categories of data processed, the purposes of processing, and the recipients or categories of recipients to whom the data is disclosed.

15.2 Right to Rectification (Art. 16 GDPR)

You have the right to request the rectification of any inaccurate or incomplete Personal Data we hold about you. We will endeavor to rectify such data without undue delay.

15.3 Right to Erasure (Art. 17 GDPR)

Under certain circumstances, you may request the erasure of your Personal Data, such as where it is no longer needed for the purposes for which it was collected, or you have withdrawn consent, and no other legal ground for processing exists.

15.4 Right to Restriction of Processing (Art. 18 GDPR)

You may request a temporary restriction on the processing of your Personal Data if you contest its accuracy, if the processing is unlawful, or if you require the data for the establishment, exercise, or defense of legal claims despite our no longer needing it for processing purposes.

15.5 Right to Data Portability (Art. 20 GDPR)

Where technically feasible and where processing is based on consent or contractual necessity, you have the right to receive a copy of your Personal Data in a structured, commonly used, and machine-readable format and to have it transmitted to another data controller.

15.6 Right to Object (Art. 21 GDPR)

You may object to the processing of your Personal Data on grounds relating to your particular situation if processing is carried out on the basis of legitimate interests or is for direct marketing purposes.

ARTICLE 16: EXERCISING YOUR RIGHTS

16.1 Submitting Requests

To exercise any of the rights enumerated in ARTICLE 15, please send your request in writing, along with sufficient documentation to confirm your identity, to the contact details provided in ARTICLE 21. We may request additional information to verify your identity and fulfill your request effectively.

16.2 Response Time

We strive to respond to all valid requests within one month of receipt. In cases where the request is complex or numerous requests are pending; this timeframe may be extended by up to two further months. If we anticipate an extension, we will inform you about it along with the reasons for the delay.

16.3 Potential Limitations

In certain instances, we may refuse to comply with your request if it is manifestly unfounded or excessive, or if compliance would infringe upon the rights of others or violate any legal obligations. In such cases, we will provide specific reasons for our refusal.

ARTICLE 17: MINORS AND CHILDREN’S PRIVACY

17.1 General Rule

The Website is not directed to individuals under the age of 18, and we do not knowingly collect or solicit Personal Data from minors. If you are under 18, please refrain from providing any information on this Website.

17.2 Parental Consent

If, despite this prohibition, a minor has provided us with Personal Data without verifiable parental or guardian consent, the parent or guardian may contact us using the details provided in ARTICLE 21 to request the removal of the data.

17.3 Protective Measures

In the event we discover that Personal Data from a minor has been collected, we will promptly take steps to delete that information unless legally obliged to retain it.

ARTICLE 18: THIRD-PARTY LINKS AND EXTERNAL SITES

18.1 Links to External Websites

The Website may include hyperlinks or references to external websites, social media platforms, or other online resources. These external sites operate under their respective terms and privacy policies. We do not endorse, monitor, or have any control over the content or practices of such external entities.

18.2 No Liability for Third-Party Practices

We do not assume any liability for the data collection, privacy, or other practices of any third-party website or entity. You are encouraged to review the privacy statements and user agreements of each third-party site you visit, as this Policy does not extend to them.

ARTICLE 19: CHANGES AND UPDATES TO THIS PRIVACY POLICY

19.1 Periodic Revisions

We may modify this Policy from time to time to reflect new regulatory requirements, technological advances, or changes in our business operations. Any revisions will be posted on this same page with an updated “Last Updated” date.

19.2 Material Changes

In the event of significant or material changes that affect your rights or the manner in which we process Personal Data, we will endeavor to provide prominent notice (e.g., via email or a banner notice on the Website) prior to or upon the change becoming effective.

19.3 Your Continued Use

Your continued use of the Website following the posting or notice of any changes to this Policy constitutes acceptance of those changes, to the extent permitted by applicable law.

ARTICLE 20: GOVERNING LAW AND DISPUTE RESOLUTION

20.1 Governing Law

This Policy shall be governed by and construed in accordance with the laws of the jurisdiction in which the Company maintains its principal place of business, without regard to any conflict-of-law provisions that would mandate the application of the laws of another jurisdiction.

20.2 Dispute Resolution

Any dispute arising from or in connection with this Policy or the Company’s handling of Personal Data shall first be attempted to be resolved amicably through good-faith negotiations. If such negotiations fail, disputes may be submitted to the courts of the relevant jurisdiction or to an alternative dispute resolution mechanism, as agreed upon by both parties.

ARTICLE 21: CONTACT INFORMATION

21.1 Data Controller

For the purposes of this Policy and under the GDPR, the Company acts as the Data Controller. Any queries, requests, or concerns about this Policy or our data processing practices can be directed to: marketing@themoonshow.com

21.2 Supervisory Authority Complaints

If you believe your data protection rights have been infringed, you have the right to lodge a complaint with a relevant supervisory authority. We encourage you to contact us first to address any concerns, so we may endeavor to resolve them to your satisfaction.