Effective date: 12 January 2026
Whispers in the Corridors (“Whispers in the Corridors”, “we”, “us”, or “our”) operates https://www.whispersinthecorridors.com/magazine/ (the “Site”) and the digital and print magazine editions (collectively, the “Services”). We respect your privacy and are committed to protecting personal data you share with us. This Privacy Policy explains what personal information we collect, why we collect it, how we use it, with whom we share it, and the rights you have regarding your personal data.
By using the Site or subscribing to our Services you accept the practices described in this policy. If you do not agree with any part of this policy, please do not use the Site or provide personal data to us.
The data controller for the Site is Whispers in the Corridors. For privacy-related questions, requests to exercise your rights, or other inquiries regarding this Privacy Policy, contact us at:
Email: contact@whispersinthecorridors.com
(If you are contacting us about a specific subscription, include subscription details such as the email address used and any order/reference number.)
We collect information you provide directly and information collected automatically when you use the Site or our Services.
Account and subscription details: name, email address, billing/shipping address, phone number, username and password, subscription plan, order history.
Payment information: payment card details or other payment account identifiers processed via third-party payment processors (we do not store full card numbers on our servers).
Communications: messages, support requests, survey responses, and other content you submit.
Newsletter preferences: subscription opt-ins and preferences.
Usage and technical data: IP address, device and browser type, operating system, pages viewed, referring/exit pages, search terms, and other telemetry collected through server logs.
Cookies and tracking data: identifiers placed on your device to remember preferences, support functionality, measure performance and personalize content (see Section 6).
Analytics: aggregated and pseudonymized data about Site usage collected for performance and improvement.
We use personal information for lawful business purposes, including to:
Provide and operate the Site and Services, process subscriptions, deliver magazine access (digital or print), and manage payments and refunds.
Communicate with you about your account, subscription status, transactional notices, support requests, and changes to policies or Services.
Send newsletters, promotional messages, and marketing communications when you have consented or when allowed under applicable law; allow you to opt out at any time.
Personalize content and recommendations and optimize the user experience.
Analyze usage of the Site and Services to improve functionality, content and security.
Detect, prevent, and respond to fraud, abuse, security incidents and other illegal activities.
Comply with legal obligations and respond to lawful requests by public authorities.
Where required by law (for example, the EU General Data Protection Regulation), we rely on one or more of the following legal bases for processing personal data:
Contract performance: to perform our contract with you (deliver subscriptions, process payments).
Consent: where you have given consent (e.g., newsletter subscriptions, cookies where required).
Legitimate interests: for analytics, fraud prevention, site improvement, and direct marketing (subject to balancing your rights).
Legal obligation: to comply with laws or respond to legal processes.
We may share personal information with:
Service providers and vendors who perform services on our behalf, such as payment processors, hosting providers, email and newsletter platforms, analytics providers, mailing and fulfillment houses, and customer support platforms.
Business partners for co-promotions or joint offerings when you opt in to such communications.
Legal and safety reasons: to comply with legal requirements, enforce our Terms of Use, protect our rights, safety or property, or respond to lawful requests from public authorities.
Business transfers: in connection with a merger, acquisition, reorganization or sale of assets, personal data may be transferred; we will require that any acquirer respects the privacy commitments in this policy.
We do not sell your personal information for monetary consideration. If laws in your jurisdiction define “sale” more broadly, we will comply with applicable notice and opt-out requirements.
We use cookies and similar technologies to operate the Site and provide features. Types of cookies include:
Strictly necessary cookies: required for core Site functions (account login, secure pages).
Performance and analytics cookies: measure Site usage and performance.
Preference cookies: remember language and display preferences.
Marketing and advertising cookies: for content personalization and third-party advertising where applicable.
Most browsers allow you to control cookie settings or delete cookies. Disabling certain cookies may reduce Site functionality. For marketing opt-outs, you may follow unsubscribe links in marketing emails or use browser-based or industry opt-out tools.
The Site may contain links, embeds or integrations with third-party sites and services (for example social networks, payment providers, and analytics services). Those third parties have their own privacy practices and controls. We encourage you to review privacy notices of those third parties before providing personal data. We are not responsible for third-party practices or content.
We and our service providers may use analytics tools to collect and analyze usage data (for example, Google Analytics or similar technologies). These tools may use cookies and other tracking technologies. Where required, we obtain user consent for analytics and advertising tracking.
We implement reasonable administrative, technical and physical security measures intended to protect personal information against unauthorized access, disclosure, alteration, and destruction. No method of transmission or storage is 100% secure; we cannot guarantee absolute security. If a security incident affects personal data, we will follow applicable legal requirements for notification.
We retain personal information as necessary to provide Services, fulfill the purposes described in this Privacy Policy, comply with legal obligations, resolve disputes and enforce agreements. Retention periods vary by data type; for example:
Account and transaction records: retained for as long as your account is active and thereafter for a commercially reasonable period to maintain records (typically several years) for legal and tax compliance.
Marketing preferences: retained until you unsubscribe or withdraw consent.
Log and analytics data: retained in aggregated or pseudonymized form and for operational or statistical purposes for a period consistent with legitimate business needs.
If you request deletion of your account, we will deactivate or remove personal data in accordance with applicable law and our retention obligations.
Our Services operate internationally. Personal data collected in your country may be transferred and processed in countries with different data protection laws. When transfers occur, we take steps to provide appropriate protections (for example contractual safeguards and, where required, standard contractual clauses). By using the Site, you consent to such transfers.
The Site and Services are not intended for children under the age of 13 (or older minimum age as required by local law). We do not knowingly collect personal information from children. If you believe we have collected personal data from a child in violation of this policy, please contact us to request deletion.
Subject to local law, you may have the right to:
Access the personal data we hold about you.
Correct or update inaccurate or incomplete data.
Delete your personal data (subject to retention obligations and certain exceptions).
Object to or restrict processing of your data.
Request portability of your personal data in a structured, commonly used and machine-readable format.
Withdraw consent where processing is based on consent.
Opt out of sale or sharing of personal information where applicable.
To exercise your rights, contact us at contact@whispersinthecorridors.com. We may require verification before fulfilling requests. We will respond to requests in accordance with applicable law.
If you are a California resident, you may have additional privacy rights under the California Consumer Privacy Act and related laws, such as the right to request disclosure of categories of personal information collected, sold, or disclosed; the right to deletion; and the right to opt out of the sale of personal information. To submit a request, contact us at contact@whispersinthecorridors.com and specify that your request is made under California privacy law. We will respond consistent with applicable law.
If you are located in the European Economic Area, United Kingdom or Switzerland, you have the rights described in Section 13. The lawful bases for our processing are set out in Section 4. You may lodge a complaint with your local data protection authority if you believe your rights have been violated.
We may update this policy to reflect legal, operational or technical changes. When we make material changes, we will post the updated policy on the Site with the revised effective date. Continued use of the Site after changes indicates acceptance of the updated policy.
For privacy inquiries, to exercise your rights, to unsubscribe from marketing communications, or to report concerns, contact:
Email: contact@whispersinthecorridors.com
When contacting us, include sufficient detail to enable us to process your request (for example the email address associated with your account). We will respond in accordance with applicable law.
