PRIVACY POLICY
We totally respect your personal information and will only ask you for what information we really need from you. We will look after it in the same way we would want our own looking after, keeping it secure. We will only share it with others where we need their help to deliver our service to you. Be assured that we will never share your information in any other circumstances, nor will we sell it on elsewhere.
Introduction
Claire Walder Photography takes your privacy very seriously. This privacy policy has been prepared in line with the EU’s General Data Protection Regulation (GDPR), which promotes fairness and transparency for all individuals in respect of their personal data. This privacy policy applies to all data we process, and by using Claire Walder Photography you consent to our collection and use of such data. If you would like to get in touch about anything in this policy or about your personal data then please contact Claire Walder at info@clairewalderphotography.co.uk, 01932 599764 or 162 Hersham Road, Walton on Thames, Surrey, KT12 5QH
1. The Data we collect
As the data ‘Controller’ Claire Walder Photography (referred to as ‘we’, ‘us’ or ‘our’ in this Privacy Policy) collect and process a variety of personal data in order to deliver our services to you and we will manage your personal data transparently, fairly and securely.
We may ask you to provide us with the following data – first and last names, address, postcode, telephone numbers, email addresses and estimated due dates. Some of this data may be collected during your initial enquiry via either the website, email or telephone conversation and some data may be collected when booking.
We will also record a date of birth for all persons we photograph under the age of 13 and require the parent or a legal guardian to consent to photography.
Obviously being a photographic business, we also create and manage images as per our contractual agreement(s).
We use the above data to deliver our service to you, to personalise your experience and for marketing purposes (to grow our business).
We collect this data on the following lawful basis: Consent, to fulfil a contract and to meet a legal obligation other than a contract.
We also collect cookies to better the user’s experience while visiting the website. Cookies are small files saved to the user’s computer’s hard drive that track, save and store information about the user’s interactions and usage of the website. This allows the website, through its server to provide the users with a tailored experience within this website.
If you wish to deny the use and saving of cookies from this website on to your computer’s hard drive you should take necessary steps within your web browsers security settings to block all cookies from this website. Don’t worry this will not prevent you from using this website.
2. Which third parties do we share Personal Data with?
We may share personal data with the following third parties: Light Blue (CRM provider service), Siteground (Website host and email provider) and printing and framing labs. Data shared with these parties is not transferred outside of the European Economic Area. We also share personal data with the following third parties, where the data shared is transferred outside of the European Economic Area to United States under the protection of EU/US Privacy Shield: Mailchimp (Newsletter provider service), Shootproof (Image Gallery software provider service).
There are also certain situations in which we may share access to your personal data without your explicit consent; for example, if required by law, to protect the life of an individual, or to comply with any valid legal process, government request, rule or regulation.
3. Why do we share your Personal Data with the above?
We share your data in order to deliver our service to you, to provide a better customer service, for marketing purposes and to personalise your experience.
We may transfer personal data to a country outside of the European Economic Area (EEA) if necessary e.g. if a third party we utilise has servers located outside of the EEA. If this is the case, we will either obtain your consent or otherwise ensure that the transfer is legal and your data is secure by following EU guidelines. You can see above where we send data outside of the EEA and on what basis we do so.
4. How do we keep your personal data secure?
We keep your data secure by following internal policies of best practice, encryption and by using Secure Socket Layer (SSL) technology when information is submitted to us online.
In the unlikely event of a criminal breach of our security we will inform the relevant regulatory body within 72 hours and, if your personal data were involved in the breach, we will also inform you.
5. Changes to our privacy policy and control
We may change this privacy policy from time to time. When we do, we will let you know by changing the date on this policy, notifying customers of only significant changes. By continuing to access or use our services after those changes become effective, you agree to be bound by the revised privacy policy.
6. You have the following rights –
– the right to be informed about the collection and use of your personal data
– the right of access to your personal data and any supplementary information
– the right to have any errors in your personal data rectified
– the right to have your personal data erased
– the right to block or suppress the processing of your personal data
– the right to move, copy or transfer your personal data from one IT environment to another
– the right to object to processing of your personal data in certain circumstances, and
– rights related to automated decision-making (i.e. where no humans are involved) and profiling (i.e. where certain personal data is processed to evaluate an individual).
We also give you the option to manage your data via email, telephone or writing to us.
7. Data Retention
While we do not hold personal data any longer than we need to. The duration will depend on your relationship with us, and whether it is ongoing. We may keep some of your personal data for up to 7 years after our working contract with you has finished for Tax legislation purposes. After this time, we will archive your photographs indefinitely along with your relevant details and consent forms. This is due to requests for replacement images being made several years after being taken.
8. Third Party Links
This website may contain links to third parties that we think may be useful to you. Our privacy policy does not cover these websites (they will have their own) and users should therefore note that clicking on external links is at their own risk.
9. Website Visitor Tracking
This website uses tracking software to monitor its visitors to better understand how they use it. The software will save a cookie to your computer’s hard drive in order to track and monitor your engagement and usage of the website, but will not store, save or collect personal information.
