Privacy Policy

Effective Date: 24.03.2026

1. Introduction

At Let Spin, we respect your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, and protect personal data when you visit our website letspinband.com or interact with our services, including embedded services such as Bandcamp, Songkick, YouTube, and the Mailchimp newsletter form.

This policy complies with the EU General Data Protection Regulation (GDPR) and the UK Data Protection Act 2018 (UK GDPR).

2. Data Controller

The party responsible for the processing of data on this website (the "Controller") is:

Let Spin

Finlay Panter

Rykestr. 43, 10405 Berlin, Deutschland

Email: info@letspinband.com

3. Data We Collect

  • Server Log Files: When you access our website, our hosting provider (Netlify, Inc.) automatically collects and stores information in "server log files" that your browser transmits to us. This includes IP addresses, browser type/version, operating system, referrer URL, and the time of the server request.
  • Newsletter subscriptions (Mailchimp): First and last name, email address, IP address, and device/browser info.
  • Embedded services:
    • Bandcamp: IP-based approximate location and basic device info. Privacy Policy
    • Songkick: IP-based approximate location and basic device info. Privacy Policy
    • YouTube: Device/browser info, IP address, and interactions with videos. We use "Privacy-Enhanced Mode" where possible to limit tracking. Privacy Policy

4. Legal Basis for Processing

  • Consent (Art. 6(1)(a) GDPR): For newsletter subscriptions via Mailchimp and any non-essential cookies.
  • Legitimate Interest (Art. 6(1)(f) GDPR): For the technical operation of the website, security (server logs), and displaying third-party content (Bandcamp, Songkick) to provide users with music and tour information.

5. Data Storage, Hosting, and Transfers

Our website is hosted by Netlify, Inc., 2325 3rd Street, Suite 296, San Francisco, CA 94107, USA. A Data Processing Agreement (DPA) is in place with Netlify to ensure GDPR-compliant handling of personal data.

Personal data may be transferred to third-party services located outside the EU/UK (e.g., Bandcamp, YouTube, Mailchimp). Such transfers are conducted with appropriate safeguards, including Standard Contractual Clauses (SCCs) to ensure an adequate level of data protection.

Retention periods:

  • Newsletter data: Stored until you unsubscribe or request deletion.
  • Server logs: Automatically deleted by the host after a standard period (typically 30 days).

6. Sharing and Third-Party Services

We only share personal data with trusted third-party service providers. We do not sell your data.

  • Mailchimp: Newsletter management.
  • Bandcamp: Music/merchandise embeds.
  • Songkick: Concert listings.
  • YouTube: Video hosting.

7. Cookies and Tracking Technologies

Our website uses embedded content. These third-party services may set cookies (small text files) on your device to track interactions or provide functionality.

You can manage or withdraw consent for non-essential cookies at any time via your browser settings or our cookie consent tool. For more information, please see our Cookie Policy.

8. Your Rights

You have the following rights under GDPR/UK GDPR:

  • Access your data (Art. 15)
  • Correct inaccuracies (Art. 16)
  • Request deletion (Art. 17)
  • Restrict processing (Art. 18)
  • Data portability (Art. 20)
  • Object to processing (Art. 21)
  • Withdraw consent at any time (Art. 7(3))

You also have the right to lodge a complaint with a supervisory authority:

  • UK: Information Commissioner’s Office (ICO).
  • Germany: The respective State Data Protection Commissioner (e.g., Landesbeauftragte für Datenschutz).

9. Contact

For any questions regarding this Privacy Policy, contact us at: info@letspinband.com.