WHAT IS THIS PRIVACY NOTICE FOR?
The policy sets out the different areas where user privacy is concerned and outlines the obligations & requirements of the users, the website and website owners. Furthermore, the way this website processes, stores and protects user data and information will also be detailed within this policy.
This website and its owners take a proactive approach to user privacy and ensure the necessary steps are taken to protect the privacy of its users throughout their visiting experience. This website complies to all UK national laws and requirements for user privacy.
Cookies are small files saved to the user’s computer hard drive that track, save and store information about the user’s interactions and usage of the website. This allows the website, through its server to provide the users with a tailored experience within this website.
Users are advised that if they wish to deny the use and saving of cookies from this website on to their computers hard drive they should take necessary steps within their web browsers security settings to block all cookies from this website and it’s external serving vendors.
This website uses tracking software to monitor its visitors to better understand how they use it.
Other cookies may be stored on your computer’s hard drive by external vendors when this website uses referral programs, sponsored links or adverts. Such cookies are used for conversion and referral tracking and typically expire after 30 days, though some may take longer. No personal information is stored, saved or collected.
The Six General Principles
- Lawfulness, fairness and transparency – Personal data must be processed lawfully, fairly and in a transparent manner;
- Purpose limitation – Personal data must be collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes (with exceptions for public interest, scientific, historical or statistical purposes);
- Data minimisation – Personal data must be adequate, relevant and limited to what is;
- Accuracy – Personal data must be accurate and, where necessary, kept up to date. Inaccurate personal data should be corrected or deleted;
- Retention – Personal data should be kept in an identifiable format for no longer than is necessary (with exceptions for public interest, scientific, historical or statistical purposes); and
- Integrity and confidentiality – Personal data should be kept secure.
EUROPEAN GENERAL DATA PROTECTION REGULATION (GDPR)
As per Article 30 for the GDPR this website and business are exempt from some the regulations surrounding the handling of private data.
However, this website will strive to ensure that where possible we comply with the stipulations laid out in GDPR.
All private data (email address, IP address, names, telephone etc) are stored on secure computers. No personal data will be given or sold without the express written permission of the user.
You may request to see copies of any personal information held and also request that that information is updated or removed in its entirety. You can do that using the form at the bottom of this page.
How your data is protected
We use a multi-layered approach to security –
‘Perimeter Security’ – All of our IT infrastructure is stored in a secure location.
‘Network Security’ – All of the IT is further secured using strong password protection, using a mixture of alphanumeric and symbols. I use WeTransfer as a cloud storage system for my documents and company files. WeTransfer IS GDPR compliant. Portable hard drives for use off-site and on location will not usually have personal information stored on them, and where they do they will have password protected encryption at the drive level. I ensure all my servers, routers, laptops, desktops, smartphones etc are kept up to date with the relevant security patches and updates by the manufacturer.
‘Privilege Based’ – Only those who need to access your information will be able to access it. In 99.9999% of cases that is just two persons – Peter & June Morris. I use multiple alphanumeric passwords for access to all of my IT infrastructure. Where access is given to another person (I may be ill, away etc) then an audit is carried out to ensure that only the required information is accessed and the passwords are changed.
CONTACT & COMMUNICATION
Users contacting this website and/or its owners do so at their own discretion and provide any such personal details requested at their own risk. Your personal information is kept private and stored securely until a time it is no longer required or has no use, as detailed in the Data Protection Act 1998. Every effort has been made to ensure a safe and secure form to email submission process but advises users using such form to email processes that they do so at their own risk.
This website and its owners use any information submitted to provide you with further information about the products/services they offer or to assist you in answering any questions or queries you may have submitted. This includes using your details to subscribe you to any email newsletter program the website operates but only if this was made clear to you and your express permission was granted when submitting any form to email process. Or whereby you the consumer have previously purchased from or enquired about purchasing from the company a product or service that the email newsletter relates to. This is by no means an entire list of your user rights in regard to receiving email marketing material. Your details are not passed on to any third parties.
PROCESSING & STORAGE OF DATA
Your personal information and any other data you provide, will be stored securely, for 24 months. After that time we will delete/destroy your data. You have a right to have your data removed within the 24 month timeframe. To do this, email email@example.com . Your data will be removed within 3 working days.
Although this website only looks to include quality, safe and relevant external links, users are advised adopt a policy of caution before clicking any external web links mentioned throughout this website. (External links are clickable text/banner/image links to other websites.)
The owners of this website cannot guarantee or verify the contents of any externally linked website despite their best efforts. Users should, therefore, note they click on external links at their own risk and this website and its owners cannot be held liable for any damages or implications caused by visiting any external links mentioned.
SOCIAL MEDIA PLATFORMS
Communication, engagement and actions taken through external social media platforms that this website and its owners participate on are customs to the terms and conditions as well as the privacy policies held with each social media platform respectively.
Users are advised to use social media platforms wisely and communicate/engage upon them with due care and caution in regard to their own privacy and personal details. This website nor its owners will ever ask for personal or sensitive information through social media platforms and encourage users wishing to discuss sensitive details to contact them through primary communication channels such as by telephone or email.
This website may use social sharing buttons which help share web content directly from web pages to the social media platform in question. Users are advised before using such social sharing buttons that they do so at their own discretion and note that the social media platform may track and save your request to share a web page respectively through your social media platform account.
SHORTENED LINKS IN SOCIAL MEDIA
This website and its owners through their social media platform accounts may share web links to relevant web pages. By default, some social media platforms shorten lengthy URLs [https://www.pjm-photography.co.uk/weddings] (this is an example: https://bit.ly/2s7rAAr).
Users are advised to take caution and good judgement before clicking any shortened URLs published on social media platforms by this website and its owners. Despite the best efforts to ensure only genuine URLs are published many social media platforms are prone to spam and hacking and therefore this website and its owners cannot be held liable for any damages or implications caused by visiting any shortened links.
RESOURCES & FURTHER INFORMATION
- Data Protection Act 1998
- Privacy and Electronic Communications Regulations 2003
- Privacy and Electronic Communications Regulations 2003 – The Guide
Request for information held
Send an email to:
Subject: Request for information
Providing your details for reference.