This policy will explain areas of this website that may affect your privacy and personal details, how we process, collect, manage and store those details and how your rights under the GDPR and DPA are adhered to.
THE DPA & GDPR MAY 2018
This website complies with the DPA (Data Protection Act 1998) and the GDPR (General Data Protection Regulation), effective from May 2018.
This website, www.neilmarshment.co.uk, collects private user data using the following form: ‘Say Hello’ contact form – https://neilmarshment.co.uk/say-hello/ which generates emails sent to: email@example.com
The data from these forms is emailed to the address listed above and also stored on the website server, in most cases dating back to when each form was created. The website server is accessible by the business owner for www.neilmarshment.co.uk,
Neil Marshment Photography does not engage in email marketing.
EXTERNAL WEBSITE LINKS & THIRD PARTIES
Although we only look to include quality, safe and relevant external links, users are advised to adopt a policy of caution before clicking any external web links mentioned throughout this website.
We cannot guarantee or verify the contents of any externally linked website despite our best efforts. Users should therefore note that they click on external links at their own risk and we cannot be held liable for any damages or implications caused by visiting any external links mentioned.
CLIENT DATA HELD ON FILE
We take care over the processes around looking after personal data stored on our physical systems. Neil Marshment Photography holds the following personal data of clients:
Neil Marshment Photography uses a client management system provided by Zoho to store the above contact details collected at www.neilmarshment.co.uk, this data is only used in order to respond to your enquiry for Neil Marshment Photography to provide photography services, and is accessed through 2 workstations, both heavily password protected.
If you decide to book the photography services of Neil Marshment Photography, these details are held within soft copy and sometimes hard copy contracts, as well photographic requirement documentation. Soft copy contracts and day plans are safely stored within my password protected office iMac, and backed up to encrypted external hard drives and Microsoft OneDrive cloud services.
Client photos are safely stored within my password protected office iMac and backed up to an encrypted external hard drive. An additional cloud copy of all edited images is stored on GDPR compliant Microsoft OneDrive folder.
INDIVIDUALS CAPTURED IN PHOTOS
In terms of explicit GDPR compliance, event clients and attendees/guests are photographed within the parameters of GDPR legislation on the basis of ‘legitimate interests’. The taking of photographs of attendees/guests when viewed as a form of processing personal data is necessary for the legitimate interests of Neil Marshment Photography as a photography business unless there is a good reason to protect a given individual’s personal data which overrides those legitimate interests.
WITHDRAWL OF CONSENT
Anyone photographed by Neil Marshment Photography, whether a client or guest, and whether past or current may withdraw consent for a photograph in which they appear to be displayed. The process for this is to email Neil Marshment Photography at firstname.lastname@example.org specifying the photo in question. Persuant to the request, Neil Marshment Photography will then remove the photo from online and printed display wheresoever it appears within 30 days of request.
SOCIAL MEDIA POLICY & USAGE
Neil Marshment Photography adopt a safe and responsible Social Media Policy. While we may have official profiles on social media platforms, users are advised to verify the authenticity of such profiles before engaging with, or sharing information with such profiles. We will never ask for personal details on social media platforms. Users are advised to conduct themselves appropriately when engaging with us on social media.
DISPLAY OF IMAGES