GDPR compliance

Effective Date: February 2026

Tailor-Made Arrangements (“we,” “our,” or “us”) is committed to protecting your personal data and complying with the General Data Protection Regulation (GDPR). Tailor-Made Arrangements acts as the data controller for your personal information. This policy explains how we collect, use, and safeguard your data and your rights as a user.

1. Data We Collect

We may collect the following personal information:

Identity & Contact Information: Name, email address, billing address, and payment details when purchasing music arrangements.
Account Information: Username and encrypted authentication credentials, along with order history.
Website Usage Data: Pages visited, downloads, and interactions with our website.
Cookies & Tracking: Data collected through cookies and similar technologies to improve website experience.

2. How We Use Your Data

We use your personal information to:

Process your orders and deliver music arrangements.
Provide customer support and respond to inquiries.
Improve our website, services, and content.
Send marketing communications if you have opted in.
Ensure website security and prevent unauthorised access.

3. Legal Basis for Processing

We process your personal data based on one of the following legal grounds:

Contractual Necessity: To fulfil your orders and provide our services.
Consent: Where you have opted in for marketing communications.
Legal Obligations: To comply with applicable laws.
Legitimate Interests: To improve our services, website security, and user experience.

4. Your GDPR Rights

You have the right to:

Access: Request a copy of your personal data.
Rectification: Correct inaccurate or incomplete information.
Erasure: Request deletion of your personal data, subject to legal obligations.
Restriction: Limit how your data is processed in certain circumstances.
Data Portability: Receive your data in a structured, machine-readable format.
Objection: Object to processing based on legitimate interests or marketing.
Withdraw Consent: Opt out of marketing communications at any time.

To exercise your rights, contact us at [Insert Contact Email].

5. Data Sharing

We do not sell or rent your personal data. We may share your information only with:

Service Providers: Trusted partners who assist with payments, hosting, or order fulfilment.
Legal Requirements: When required by law.
Business Transfers: In the event of a merger, acquisition, or sale of assets.

6. Data Retention

We retain your personal data only for as long as necessary for the purposes described in this policy, unless a longer retention period is required by law. Once no longer needed, your data is securely deleted or anonymised.

7. Cookies and Tracking

We use cookies and similar technologies to improve website functionality, track usage, and personalise content. You can manage or disable cookies through your browser settings, but some website features may not function without them.

8. Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or misuse. Payment information is handled securely via Stripe and PayPal, and we do not store full card details on our servers.

9. Third-Party Links

Our website may contain links to external websites. We are not responsible for their data protection practices, and we encourage you to review their privacy policies.

10. Changes to This GDPR Policy

We may update this GDPR Compliance Policy from time to time. Updates will be posted on this page with a revised effective date. Please check periodically to stay informed.

11. Contact Us

If you have questions about GDPR or how your data is processed, contact us at:

Email: [Insert Contact Email]
Address: [Insert Business Address]

Tailor-Made Arrangements is committed to protecting your data and ensuring a safe, compliant, and transparent online experience for all musicians, educators, and performers.