Sir Dominic Scott - Last updated June 2025
This Privacy Policy explains what personal information Sir Dominic Scott collects when you use The Vault+, The Cult of Sir, and all associated platforms and websites (together, the "Services"). It covers how we use that information, who we share it with, and what rights you have over it.
The Services include content produced under the Get Worse™ framework (UK Registered Trade Mark No. UK00004091922). References to the Services throughout this Policy include all content and features delivered under that framework.
By using the Services, you're confirming you've read and understood this Policy. If something isn't clear, please get in touch.
When you create an account, make a purchase, or contact us, you may share: name and email address; postal address (for merchandise orders); Discord username and user ID; account login credentials; and any other information you choose to send us.
All payment processing is handled by Stripe. We don't store your card number, CVV, or other sensitive payment details on our systems. Stripe may pass us limited transaction data - like the last four digits of your card and billing address - for record-keeping and fraud prevention. Stripe operates to PCI-DSS Level 1 standards, the highest level of certification in the payments industry.
When you use our Services, we automatically receive some basic technical information: IP address and approximate location; browser type and version; device type and operating system; pages visited, navigation paths, and timestamps; and referring URLs.
We run internal monitoring tools to understand how the platform is used. These collect anonymised, aggregated data - things like content accessed, listening duration, and feature engagement. No personally identifiable information is linked to these data points. They're used purely for improving the service.
Our Services are for adults aged 18 and over only. By using them, you confirm you meet this requirement. We may ask for age verification at account creation or at any point during your use of the Services.
We use your information to create and manage your account, process purchases, deliver content, ship merchandise, handle support requests, and send you important service updates.
We analyse anonymised usage patterns to improve content, fix bugs, build new features, and make the platform faster and more enjoyable to use.
We'll always send transactional emails - things like order confirmations and account notifications. Where you've opted in, we may also send marketing emails about new content, releases, or products. You can unsubscribe from marketing emails at any time using the link in any email, or by contacting us directly.
We use data to detect and prevent fraud, enforce our Terms and Conditions, and protect the security of our platform and community.
Your personal information is never sold, rented, traded, or transferred to any third party for marketing or commercial purposes. This is a firm commitment, not a qualified one.
Sir Dominic Scott operates as an independent, sole-proprietor business. We have no parent company, subsidiaries, or commercial partners who receive user data.
We work with a small number of trusted third-party services to operate the platform. Each provider receives only the data they need for their specific role, and all are contractually required to protect your information.
Stripe - Payment processing (PCI-DSS Level 1 certified)
Loops - Transactional and marketing email delivery
Discord - Community access verification via Discord ID
We may be required to share your information if compelled by law, court order, or regulatory authority, or if we genuinely believe it's necessary to protect someone's safety, defend our legal rights, or prevent illegal activity.
Your data is stored on private, GDPR-compliant servers in Helsinki, Finland, within the European Union.
We apply industry-standard security measures including: TLS/SSL encryption for all data in transit; AES-256 encryption for sensitive data at rest; access controls limiting data to essential use only; secure authentication and strong password requirements; regular software updates and security patching; and encrypted off-site backups.
We keep your data for as long as your account is active or as needed to provide the Services. Some data may be retained longer to meet legal obligations, resolve disputes, or prevent fraud. When data is no longer needed, it's securely deleted or anonymised.
No internet-connected system is completely immune to risk. We apply all reasonable measures to protect your data, but we can't guarantee absolute security. If a serious incident ever occurred that affected your data, we would notify you promptly.
We use only essential cookies - those strictly necessary to operate the Services. This includes cookies that keep you logged in, maintain your session securely, and remember basic preferences. Because these cookies are required for the site to function, they do not require your consent under UK PECR.
We do not use analytics cookies, advertising cookies, tracking pixels, or any third-party cookies. No cookie consent banner is required or displayed, because none of the cookies we use fall into categories that require one.
We run our own internal monitoring within The Vault+ to understand platform usage - things like content accessed and listening time. This system operates entirely server-side and independently of any browser cookies. All data is anonymised and aggregated. No personal identifiers are attached.
We don't use third-party analytics services, tracking pixels, retargeting technologies, or cross-site tracking of any kind. We don't serve advertising or participate in ad networks.
You can manage or block cookies through your browser settings. Blocking essential cookies will affect how the Services function, including your ability to stay logged in.
You can view and update your account information directly through your account settings. For help accessing or correcting other data we hold, contact us and we'll assist.
You can request deletion of your personal data at any time by emailing [email protected]. Once we've verified your identity, we'll process the deletion within 30 days. Deleting your data means your account will be closed and your access to the Services will end. Some data may be retained where legally required or for fraud-prevention purposes.
We're not currently able to provide data exports due to the nature of our proprietary systems. We recognise this is a limitation and may revisit it in the future.
You can opt out of marketing emails at any time using the unsubscribe link in any email, or by contacting us directly. Opting out doesn't stop service messages like receipts or account alerts.
Most browsers let you manage or block cookies through their settings. Blocking essential cookies will affect how the Services function.
If you're based in the UK or EU and believe we've handled your data improperly, you have the right to lodge a complaint with your local data protection authority. In the UK, that's the Information Commissioner's Office (ICO) at ico.org.uk.
Sir Dominic Scott is operated from the United Kingdom with data stored in the EU. If you're accessing the Services from outside these regions, your information will be processed here, where data protection laws may differ from your own. By using the Services, you consent to this.
Our Services are strictly for adults aged 18 and over. We don't knowingly collect data from anyone under 18. If we discover we've accidentally done so, we'll delete it immediately. If you believe we may have collected data from a minor, please contact us right away.
We may update this Policy from time to time to reflect changes in how we operate, legal requirements, or new services we introduce. When we make meaningful changes, we'll post the updated Policy with a new "Last Updated" date. Continuing to use the Services after changes are posted means you accept the updated Policy.
For any questions, concerns, or requests relating to this Policy or your data:
Email: [email protected]
Response time: We aim to reply within 14 days.
Data Controller: Sir Dominic Scott (Sole Proprietor), Glasgow, Scotland, UK