PRIVACY POLICY
This privacy policy sets out how Florence Finburgh Photography uses and protects any information that you give Florence Finburgh Photography when you use this website and how it is kept secure. By using this website or engaging with Florence Finburgh Photography to provide any photographic services, you are agreeing to be bound by this policy.
Florence Finburgh Photography is committed to ensuring that your privacy is protected. Should we ask you to provide certain information by which you can be identified when using this website, then you can be assured that it will only be used in accordance with this privacy statement.
Florence Finburgh Photography may change this policy from time to time by updating this page. You should check this page to ensure that you are happy with any changes. This policy is effective from 23rd May 2018. If you have any questions please don't hesitate to contact me by email [email protected].
Data collection and processing
Florence Finburgh is the controller of data that passes through this website or via email.
Definitions
The data protection declaration of Florence Finburgh Photography is based on the terms used by the European legislator for the adoption of the General Data Protection Regulation (GDPR). Our data protection declaration should be legible and understandable for the general public, as well as our customers and business partners. To ensure this, we would like to first explain the terminology used.
In this data protection declaration, we use, inter alia, the following terms:
- a) Personal data
Personal data means any information relating to an identified or identifiable natural person (“data subject”). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. - b) Data subject
Data subject is any identified or identifiable natural person, whose personal data is processed by the controller responsible for the processing. - c) Processing
Processing is any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction. - d) Restriction of processing
Restriction of processing is the marking of stored personal data with the aim of limiting their processing in the future. - e) Profiling
Profiling means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or movements. - f) Pseudonymisation
Pseudonymisation is the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not attributed to an identified or identifiable natural person. - g) Controller or controller responsible for the processing
Controller or controller responsible for the processing is the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law. - h) Processor
Processor is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller. - i) Recipient
Recipient is a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing. - j) Third party
Third party is a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data. - k) Consent
Consent of the data subject is any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
What we collect
We may collect the following information:
- name
- contact information including email addresses, phone numbers, date of birth
- demographic information such as postcode
- photo shoot information including names, date, time, location
What we do with the information we gather
We use personal data, provided directly and voluntarily to us by clients to carry out my contractual obligations.
In order to provide photographic services to you, we take and store photographs from your event. These photographs are stored for as long as the hard disks are functional in order to provide copies should you lose your photographs. This service is provided as a legitimate interest.
Should you wish Florence Finburgh Photography to remove your photographs from our hard disks and backups after we have delivered your photographs, we will do so if you provide us with an email confirming your request. Please email us at [email protected].
Controlling your personal information
We only engage in email marketing with people who have opted in to continue to receive our newsletter and to people who have expressed by writing their wish to subscribe to our newsletter. If you have previously agreed to us using your personal information for direct marketing purposes, you may change your mind at any time by writing to or emailing us at [email protected] or by unsubscribing at the bottom of each newsletter email.
We will not sell, distribute or lease your personal information to third parties unless we are required by law to do so.
We also capture website visitor names, phone numbers and email addresses when visitors make contact via my website to enquire about our services.
We never capture credit or debit card numbers. These are all handled via our card processing service.
If you believe that any information we are holding on you is incorrect or incomplete, please email us as soon as possible, at the above address. We will promptly correct any information found to be incorrect.
Security
We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online.
How we use cookies
A cookie is a small file which asks permission to be placed on your computer's hard drive. Once you agree, the file is added and the cookie helps analyse web traffic or lets you know when you visit a particular site. Cookies allow web applications to respond to you as an individual. The web application can tailor its operations to your needs, likes and dislikes by gathering and remembering information about your preferences.
We use traffic log cookies to identify which pages are being used. This helps us analyse data about web page traffic and improve our website in order to tailor it to customer needs. We only use this information for statistical analysis purposes and then the data is removed from the system.
Overall, cookies help us provide you with a better website, by enabling us to monitor which pages you find useful and which you do not. A cookie in no way gives us access to your computer or any information about you, other than the data you choose to share with us.
You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of the website.
Google Analytics
We use Google Analytics to capture anoymous data about visitors to our website, including the pages visitors look at while on the website. Google Analytics stores a small text file on your computer, called a Cookie, to track the pages on this site that you view. Many websites use Google Analytics and no personal data is stored.
Order fullfilments
We work with third parties to fulfil orders for products and services. We may share your personal data with select third parties strictly only to fulfil your order who will all comply with the General Data Protection Regulation (GDPR).
Links to other websites
Our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.
Contact
Email address: [email protected]
Mobile number: +44 (0) 7854 895 292