Privacy Policy
Last updated: April 2026
Marginalia (“we”, “our”, “us”) is committed to protecting your personal data. This policy explains what information we collect, why we collect it, how long we keep it, and what rights you have under the General Data Protection Regulation (GDPR).
1. What data we collect
- Email address and name — collected via the demo submission form, the newsletter sign-up form, and the general contact form.
- Demo audio links — SoundCloud, Dropbox, or other streaming links you voluntarily submit through the demo form.
- Message content — the body of any message you send through the contact or services enquiry form.
- IP address and browser information — collected automatically by our hosting infrastructure for security and performance purposes; not stored beyond standard server log retention periods.
2. Why we collect it
- Newsletter delivery — to send you news, release updates, and event announcements you subscribed to (legal basis: consent, Art. 6(1)(a) GDPR).
- Demo review — to listen to and respond to demo submissions (legal basis: legitimate interests, Art. 6(1)(f) GDPR).
- Management and booking enquiries — to respond to artist management or event-booking requests (legal basis: pre-contractual steps, Art. 6(1)(b) GDPR).
- General correspondence — to respond to press and general enquiries (legal basis: legitimate interests, Art. 6(1)(f) GDPR).
3. How long we keep it
We retain personal data for a maximum of 12 months from the date of submission, unless you request earlier deletion or we have a legitimate ongoing business relationship that requires retention. Newsletter subscribers remain on our list until they unsubscribe or request removal.
4. Third-party processors
We use the following sub-processors to operate our services. All are GDPR-compliant and operate with EU data residency options:
- Resend — transactional email delivery (form submission confirmations and notifications). EU data residency available.
- Brevo (formerly Sendinblue)— newsletter list management and broadcast emails. EU data residency. Brevo's privacy policy: brevo.com/legal/privacypolicy
- Neon (PostgreSQL) — our database hosting provider. Data is stored in the EU region.
5. Your rights under GDPR
Under GDPR Articles 15–22, you have the following rights regarding your personal data:
- Right of access (Art. 15) — request a copy of the personal data we hold about you.
- Right to rectification (Art. 16) — ask us to correct inaccurate or incomplete data.
- Right to erasure (Art. 17)— request that we delete your personal data (“right to be forgotten”).
- Right to restriction (Art. 18) — ask us to limit how we process your data in certain circumstances.
- Right to data portability (Art. 20) — receive your data in a structured, machine-readable format.
- Right to object (Art. 21) — object to processing based on legitimate interests or for direct marketing purposes.
- Right to withdraw consent (Art. 7(3)) — where processing is based on your consent, you may withdraw it at any time.
You also have the right to lodge a complaint with your national data protection authority. For users in Turkey, the relevant authority is the KVKK.
6. Contact
For any privacy questions, to exercise your rights, or to request deletion of your data, please email us at press@marginalialabel.com. We will respond within 30 days.
