Privacy Notice

The Film Distributors’ Association is committed to respecting your privacy. This notice explains how we use any personal information we collect about you and your rights in relation to it. Please read it carefully.

Who we are

We are: The Film Distributors’ Association (FDA) and our subsidiary, The Film Content Protection Agency (FCPA).

The Film Distributors’ Association Ltd (FDA) is the trade body for film distributors in the UK. Our aim is to promote their generic (non-commercial) interests. We work on a not-for-profit basis.

The Film Content Protection Agency Ltd is a wholly-owned subsidiary of FDA. Its aim is to safeguard films in their UK cinema release, reducing copyright theft and infringement.

This Privacy Policy applies to both companies and their shared website filmdistributorsassociation.com. It does not apply to any third-party organisation.

Registered address:

2 Newburgh Street,
London W1F 7RD, UK.

FDA’s company number is 00142378.

What personal data we collect and why we collect it

Contact forms

We keep contact form submissions for a certain period for customer service purposes, but we do not use the information submitted through them for marketing purposes.

Forms are sent via email and their content is encrypted in transit.

No personal data from these forms is stored in the website database unless otherwise stated here.

Cookies

Our website, like most, uses cookies. You can prevent their use through your browser settings, but you will then not be able to use all the functionality of our website.

We provide more information about the cookies we use in our Cookies page.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Embedded content from other websites

Pages on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

The website uses web fonts provided by Google but these are hosted locally so no personal data is collected by Google’s content delivery network.

We use Twitter, Instagram and FaceBook feed plugins to display social media content on our website. As a result, our website makes requests to these service providers’ servers in order to display posts, images and videos.

Twitter’s data privacy policy: twitter.com/en/privacy#update
Instagram data policy: https://help.instagram.com/519522125107875
Facebook data policy: https://en-gb.facebook.com/policy.php

We also embed video content from Vimeo and YouTube:

Vimeo privacy policy: vimeo.com/privacy
YouTube (Google) privacy policy: policies.google.com/privacy.

Security measures

No personal details are stored in the website database by our security plugins.

Some data (including username, IP address, hostname, location) is temporarily stored in security logs on the server and/or sent via email to alert the website administrator of critical problems or suspicious activities on the site.

We have implemented reCAPTCHA v3 on our site as spam protection and your use of reCAPTCHA v3 is subject to the Google Privacy Policy and Terms of Use.

Analytics

We use Google Analytics to track how our site is being used: how users find our website, how they move around on it, how long they stay for.

No personal data is sent to Google Analytics. No Remarketing or Advertising features are set and IP addresses are anonymised while tracking. We enable support for user opt-out and exclude tracking for users sending Do Not Track header.

See also ‘Third-party Cookies’ on Cookies page.

Who we share your data with

Except as set out here, we do not share, or sell, or disclose to a third party, any information collected through our website.

How long we retain your data

For users that are registered on our website (including Members), we store the personal information they provide in their user profile indefinitely. All users can see, edit, or delete their own personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

The website is hosted at SiteGround in datacentres located in London (UK). It is protected by 256-bit encryption. SSL certificate provided by Let’s Encrypt from the Internet Security Research Group (ISRG).

Siteground security details: siteground.com/datacenters/
Let’s Encrypt privacy policy: letsencrypt.org/privacy/

Emails sent to FDA from the website contact forms reside in the data centres of Giacom, which adhere to GDPR: cloudmarket.com/about/privacy-policy

Website administrator emails reside in the data centres of Zoho.com, which adhere to GDPR: www.zoho.com/mail/help/zoho-mail-gdpr-compliance.html

Website database backups are encrypted and stored at Amazon S3 – server located in London – and at Microsoft’s OnDrive – data centres located in GB – for up to 1 year.

AWS data privacy statements: aws.amazon.com/compliance/data-privacy/
Microsoft’s privacy commitment: microsoft.com/en-gb/trust-center/privacy

Contact information

If you have any privacy-specific concerns, please contact the FDA.

Additional information

How we protect your data

We have various measures in place to protect the website from malicious attack, including firewall protection, malware scanning, bot/spam blocking and encryption.

What data breach procedures we have in place

The website has internal reporting systems and contact mechanisms to alert us to any malicious activity on the site.

Last updated: 2 March 2022

Cookie	Duration	Description
_GRECAPTCHA	5 months 27 days	This cookie is set by the Google recaptcha service to identify bots to protect the website against malicious spam attacks.
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
PHPSESSID	session	This cookie is native to PHP applications. The cookie is used to store and identify a users' unique session ID for the purpose of managing user session on the website. The cookie is a session cookies and is deleted when all the browser windows are closed.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_ga_F8QSHJFEBQ	2 years	This cookie is installed by Google Analytics.
_gat_gtag_UA_2803072_11	1 minute	Set by Google to distinguish users.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
CONSENT	2 years	YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.
vuid	2 years	Vimeo installs this cookie to collect tracking information by setting a unique ID to embed videos to the website.

Cookie	Duration	Description
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt.innertube::nextId	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.