This policy will explain areas of this website that may affect your privacy and personal details, how we process, collect, manage and store those details and how your rights under the GDPR and DPA are adhered to.
This website complies with the DAP (data protection act 1998) and the DDPR (general data protection regulation)
CONTACTING SARAH CRITCHLOW PHOTOGRAPHY
This website, www.critchlowphotography.co.uk, collects private user data using the contact form found on this website https://critchlowphotography.co.uk , which generates emails sent to: firstname.lastname@example.org
By completing our contact forms, you agree to Sarah Critchlow contacting you about Sarah Critchlow Photography services.
FINANCE ACCOUNTING SOFTWARE
Once Sarah Critchlow Photography enters into a contract for an assignment, your details will be entered onto a finance software accounting package namely Xero www.xero.com to process your booking and payments. This information may be shared with our bookkeeper and our accountant who has access to my accounts and subsequently the HMI. If you require any further details please email email@example.com
Sarah Critchlow Photography does not engage in email marketing specific to our services. Your personal details will not be used for any such marketing purposes nor will they be passed onto any third parties.
To visit a Sarah Critchlow Photography client gallery you will be required to enter personal data which will be shared with yourselves direct by Sarah Critchlow and will not be given to any other person.
It will only be used as detailed above, will not be used for any other marketing purposes and will not be passed onto any third parties. Smugmug’s technical support team will have the means to access to your personal data but will never access or share this data other than by request from Sarah Critchlow Photography
If you wish to request for your personal data (log in details) to be deleted from Sarah Critchlow Photography servers, please email firstname.lastname@example.org
EXTERNAL WEBSITE LIKS AND 3RD PARTIES
Although we only look to include quality, safe and relevant external links, users are advised to adopt a policy of caution before clicking any external web links mentioned throughout this website.
We can not guarantee or verify the contents of any externally linked website despite our best efforts. Users should therefore note that they click on external links at their own risk and we cannot be held liable for any damages or implications caused by visiting any external links mentioned.
CLIENT DATA HELD ON FILE
We take care over the processes around looking after your personal data stored on our physical systems. Sarah Critchlow photography holds the following personal data of clients:
3. phone numbers
4. email addresses
Within soft copy and sometimes hard copy contracts as well as soft copy wedding client ‘wedding information form’ and ‘wedding questionnaire’ documents. soft copy contracts and wedding information and questionnaire forms are safely stored within our password protected computers, iphone & ipad and backed up to external hard drives.
Client photos are safely stored within our password protected computers and backed up to external hard drives. The external hard drives are securely stored in locked cabinets.
CLIENTS AND WEDDING GUESTS CAPTURED IN PHOTOS
In terms of explicit GDPR compliance, wedding clients and guests are photographed within the parameters of gdpr legislation on the basis of ‘legitimate interests’. The taking of photographs of wedding guests when viewed as a form of processing personal data is necessary for the legitimate interests of Sarah Critchlow Photography as a photography business unless there is a good reason to protect a given individual’s personal data which overrides those legitimate interests.
SOCIAL MEDIA POLICY AND USAGE
We adopt a safe and responsible social media policy. While we may have official profiles on social media platforms users are advised to verify the authenticity of such profiles before engaging with, or sharing information with such profiles. We will never ask for personal details on social media platforms. Users are advised to conduct themselves appropriately when engaging with us on social media.
DISPLAY OF IMAGES
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
EMBEDDED CONTENT FROM OTHER WEBSITES
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
RIGHTS TO YOUR DATA
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Visitor comments may be checked through an automated spam detection service.