Your privacy matters.
Effective Date August 02, 2023
“You” or “your” refers to the individual who uses our websites, products, features, and services, or accesses available information, or engages with us directly via email or other media outlets.
Whose information does Lights Media Collective collect?
Lights Media Collective collects information from these types of individuals:
Our "visitors" are individuals who visit one of our websites or contact us directly about our products, features, and services or about obtaining other information. Our "former students" are individuals who enrolled in Lights Film School before it closed. Our "customers" include our former students, but also include people who have purchased other products and/or services from Lights Media Collective without enrolling in Lights Film School. Finally, visitors, former students, and customers are all considered a "consumer".
An overview of the sources of personal data
Lights Media Collective obtains information about people in these main ways:
- When you visit one of our websites or contact us directly;
- When you purchase or use a product, feature, or service; and
- When you’re a service provider to Lights Media Collective.
What information does Lights Media Collective collect?
Depending on how you use our websites, products, features, and services – and depending on your direct interactions with us – we collect two types of information: personal information and non-personal information.
Let's break down what this means:
Personal information is information that identifies you or may be used in conjunction with other pieces of information to identify you. So for example, your name, email address, or billing and credit card information collected via an industry-standard payment gateway.
Personal information that does not identify you, but potentially could be combined with other information in a way that enables you to be identified, can include things like an Internet Protocol (IP) address and general current location.
Non-personal information is information that cannot be used or combined with other information to identify or contact you. For example, some statistical website data.
When does Lights Media Collective use information from third parties?
Lights Media Collective collects only the information necessary to run our websites and provide our products, features, and services successfully. Some of this information comes from or otherwise involves a careful selection of third parties, all of which are GDPR compliant.
We do not sell your personal information.
What third parties does Lights Media Collective involve, why, and how?
Since Lights Film School has closed, the list of third parties Lights Media Collective involves has simplified considerably. Most every third party relating to Lights Film School is now functioning in an administrative and archival capacity. Below is a list in alphabetical order of the third parties who process your information, depending on how you use(d) Lights Media Collective’s websites, products, features, and services, and depending on your direct interactions with us.
AirTable stores and maintains internal documents; for example, a database with relevant former student details. Such a centralized reference helps us keep organized and deliver individualized customer service more quickly and effectively.
Airtable uses industry-leading Amazon Web Services (AWS) hosting infrastructure. Servers are located in data centers that are SOC 1, SOC 2, and ISO 27001 certified. Data is encrypted both when it is sent to and from their servers and at rest. Airtable uses 256-bit SSL/TLS encryption.
Dropbox hosts content for former students; for example, a rudimentary archive of Lights Film School's curriculum and custom videos. Dropbox tracks each file’s viewing history. The data associated with each view is anonymous, so former students appear in the viewing history as “Guests”.
Files are protected in transit between Dropbox’s apps and servers, and at rest. Each file is split into discrete blocks, which are encrypted using a strong cipher.
Help Scout serves as help desk software. It enables Lights Media Collective to create, host, and manage the "Support Center" - a self-service knowledge base (located at faqs.lightsfilmschool.com) - as well as manage contacts and correspondence. Everything is centralized, making it easier to deliver individualized customer service more quickly and effectively. Various reports help gauge the effectiveness of these efforts. Help Scout also enables us to receive messages, live chat with website visitors, and make onsite announcements all through the Help Scout beacon, where and when active.
All of Help Scout’s application and data infrastructure is hosted in Amazon Web Services (AWS), which provides extensive security control and privacy features. TLS encryption is supported on all inbound and outbound correspondence. Help Scout is PCI Level I compliant.
HEY for Domains is used to manage direct emails associated with the lightsmediacollective.com and lightsfilmschool.com domains as well as emails initiated through a contact form. In the case of the latter, messages are logged and delivered through Typeform.
HEY for Domains requires two-factor authentication. It uses the industry standard TOTP protocol and also supports WebAuthn. Data is encrypted at-rest, at-work, and in-transit, using the industry standard TLS encryption when sending emails to recipients. HEY for Domains performs external security audits on a regular basis.
Leadpages is used to create and host websites and landing pages located at lightsmediacollective.com and lightsfilmschool.com. Built-in analytics help to track page views anonymously.
All pages on Leadpages’ servers are secured by default, and fully support SSL and HTTPS protocols.
Mailchimp is Lights Media Collective's marketing automation platform and email marketing service, intended to help maintain and grow an email list and thus stay in touch with our wider community. A visitor can opt into Lights Media Collective's email marketing directly through Mailchimp as well as via signup forms hosted by Leadpages, when available. At present, Mailchimp is not actively in use.
The entire Mailchimp application is encrypted with TLS. Mailchimp performs annual SOC II audits.
Slack, a messaging platform for teams, was used for internal communications and also to power optional community features included with Lights Film School’s Premium Membership. In the case of the latter, Slack facilitated interactions similar to those on a traditional social media website. Slack is no longer in use, but an archive remains for administrative purposes.
Slack is hosted in Amazon Web Services (AWS), which provides extensive security control and privacy features. Data in Slack is encrypted in transit and at rest. Slack Technologies, Inc. has earned various compliance certifications and regulations, including the Federal Risk and Authorization Management Program, NIST 800-171, SOC 2, SOC 3, ISO 27001, ISO 27017, and ISO 27018.
Lights Media Collective uses Stripe to process and manage customer payments. Stripe is an industry-standard payment gateway; consequently, Lights Media Collective does not touch, store, or transmit your payment method details.
Stripe is delivered on Amazon Web Services, which provides extensive security control and privacy features. Stripe forces HTTPS for all services using TLS, and all card numbers are encrypted at rest with AES-256. Stripe, Inc. is certified to PCI Service Provider Level I.
Teachable, a leading online course development platform and service, was used to host and power our students-only membership website. Now it acts as an archive for administrative purposes.
Typeform is used to collect and store data provided directly by a consumer. For example, Typeform powers Lights Media Collective's contact form experience. The information provided delivers to Typeform, which triggers an email to HEY for Domains. In addition to powering contact forms, Typeform is used for collecting a customer's name and/or business name as well as address in advance of rendering a service, so that an accurate invoice can be created and issued as appropriate.
Typeform is hosted in Amazon Web Services (AWS), which provides extensive security control and privacy features. Information is encrypted in-transit, end-to-end, using secure TLS cryptographic protocols. The Advanced Encryption Standard (AES) is used with a 256-bit key to encrypt data at rest.
Where and when is information collected?
Lights Media Collective will collect the personal information that you submit to us. We also may receive information about you from third parties, as described in detail above.
Cookies and web beacons
For reference, a cookie is a small data file that can be placed on your computer or mobile device in order to identify your browser and website activity. Know that you do not have to accept cookies in order to interact with Lights Media Collective’s websites, products, features, and services, although this may lead to a degraded experience. While many browsers are configured to accept cookies out of the box, it is possible to change your browser settings to notify you when you receive a cookie or even to reject cookies generally. To learn more about how you can control privacy settings and cookie management, click the link below pertaining to your web browser:
Lights Media Collective also uses “web beacons”, a web technology used to help track website or email usage information, that can be embedded on web pages and in emails. For example, web beacons in our Help Scout-powered customer service correspondence enable open tracking, which helps in managing conversations with former students. Such beacons can be blocked if you or your email client chooses not to display images.
Log files and other usage statistics
We track some usage statistics, as described in our list of third parties above. We’ve done our best to describe where, when, why, and how information is collected, so that you’re not in the dark.
Does Lights Media Collective collect information from children?
We are committed to protecting the privacy of children. Lights Media Collective’s websites, products, features, and services are not designed for or directed to anyone under the age of 18, including Lights Film School's online educational programs. If a parent or guardian becomes aware that their child has provided us with information without their consent, then he or she should contact us via the Support Center.
What does Lights Media Collective do with the information it collects from you?
In general, we use the information collected (1) to provide you with the best possible experience interacting with us and when using Lights Media Collective’s websites, products, features, and services; (2) to help understand who engages with us; (3) in the past, to enable our advertising in some cases, including using your email to send information to you about Lights Media Collective if you have opted into our marketing emails; (4) to contact customers for customer service, billing, and essential account operation purposes; and (5) for internal administration and operations.
Again, for more details about what we do with information, please take a look at our discussion of third parties above. We’ve done our very best to paint a clear and complete picture.
Laws and legal rights
Lights Media Collective cooperates with government and law enforcement officials. We may disclose your information if we believe in good faith that we are required to do so in order to facilitate valid legal processes, protect our property and rights, protect the safety of the public or any person, or to prevent or stop activity we may consider to be illegal or unethical or at risk of becoming so.
Does Lights Media Collective disclose information to other third parties?
Could my information be sent to other countries?
Lights Media Collective is an eenmanszaak formed in The Netherlands. Information collected via our websites, products, features, and services, or through direct interactions with you, may be transferred from time to time to authorized individuals, or to third parties, located throughout the world, and may be viewed anywhere in the world, including countries that may not have laws of general applicability regulating the use and transfer of such data. To the fullest extent allowed by applicable law, by using any of our websites, products, features, and services, you voluntarily consent to the trans-border transfer of such information. For more information about transfers in relation to third party services we use, please see their Privacy Policies, linked above.
Is the information Lights Media Collective collects secure?
We go to great lengths to ensure that your information is safe and secure. For example, SSL is included on all of our websites. Strong passwords are in place with our third party accounts, as is two-step verification in many cases. These third parties go to great lengths to ensure security themselves, as suggested in our discussion of them above. To top it all off, we conduct routine manual reviews of all of our user management systems to ensure no unauthorized access. Moreover, Lights Media Collective does not touch, store, or transmit your payment method details.
However, neither people nor security systems are foolproof, including encryption systems – this is the internet, after all. While we’re zealous about security and use reasonable efforts to protect your information, we cannot guarantee its absolute security. We will make any legally-required disclosures of any breach of the security, confidentiality, or integrity of your sensitive information via email and/or conspicuous posting on our website(s), as expediently as possible and without unreasonable delay.
What choices do I have with regards to the use of personal information?
You’re welcome to contact us in order to (1) update, correct, or obtain your personal information; (2) change your Lights Media Collective communication preferences; or (3) delete your personally identifiable information from our systems. Except where otherwise described, personal information in our systems does not expire so as to ensure a stellar customer service experience.
Should you contact us to update, correct, obtain, change, or delete your personal information, we will make commercially reasonable efforts to honor your request. Of course, promptly after receiving your request, all personal information stored in databases we actively use, and other readily searchable media will be updated, corrected, exported and delivered to you, changed, or deleted as appropriate, as soon as and to the extent reasonably and technically practicable.
Who can I contact with privacy questions and requests?
Lights Media Collective has done its very best to explain our commitment and approach to privacy here, but should you have any comments, questions, concerns, or requests at all, we’re here for you. Please go ahead and contact us via our Support Center – the best and fastest way to get in touch – or by post: Lights Media Collective | Zuidplaslaan 575 | 2743KD Waddinxveen | The Netherlands