The DPA & GDPR May 2018
This website complies with the DPA (Data Protection Act 1998) and the GDPR (General Data Protection Regulation), effective from May 2018.
This website, www.sonyasmithphotography.com, collects private user data using the following contact form –www.sonyasmithphotography.com/contact/- which generates emails sent to firstname.lastname@example.org. The data from these forms is emailed to the address listed above and also stored on the website server, in most cases dating back to when each form was created. The website server is accessible by the website administrators for www.sonyasmithphotography.com at StudioSmith. StudioSmith never accesses or shares this data other than by request from Sonya Smith. By completing the contact form you agree to Sonya Smith contacting you about Sonya Smith Photography Ltd’s photography services.
Only Sonya Smith will have access to your personal data (email address) stored on Pixieset’s system on behalf of Sonya Smith Photography Ltd. It will only be used as detailed above, will not be used for any other marketing purposes and will not be passed onto any third parties. Pixieset’s technical support team will have the means to access to your personal data (email address) but will never access or share this data other than by request from Sonya Smith. If you wish to request for your personal data (email address) to be deleted from Pixieset’s servers, please email email@example.com
External Website Links & Third Parties
Although we only look to include quality, safe and relevant external links, users are advised to adopt a policy of caution before clicking any external web links mentioned throughout this website. We cannot guarantee or verify the contents of any externally linked website despite our best efforts. Users should therefore note that they click on external links at their own risk and we cannot be held liable for any damages or implications caused by visiting any external links mentioned.
Client Data Held On File
We take care over the processes around looking after personal data stored on our physical systems. Sonya Smith Photography holds the following personal data of clients:
- Addresses (including email addresses)
- Phone numbers
within soft copy and sometimes hard copy contracts as well as soft copy client ‘shoot plan’ documents. Soft copy contracts and day plans are safely stored within my password protected home office iMac and backed up to two encrypted external hard drives. Hard copy contracts are filed in my secure home office. Client photos are safely stored within my password protected home office iMac and backed up to two encrypted external hard drives. An additional cloud copy of all images is stored on GDPR compliant Dropbox.
Clients Captured In Photos
In terms of explicit GDPR compliance, clients and guests/attendees are photographed within the parameters of GDPR legislation on the basis of ‘legitimate interests’. The taking of photographs of guests/attendees when viewed as a form of processing personal data is necessary for the legitimate interests of Sonya Smith Photography as a photography business unless there is a good reason to protect a given individual’s personal data which overrides those legitimate interests.
Social Media Policy & Usage
We adopt a safe and responsible social media policy. While we may have official profiles on social media platforms, users are advised to verify the authenticity of such profiles before engaging with, or sharing information with, such profiles. We will never ask for personal details on social media platforms. Users are advised to conduct themselves appropriately when engaging with us on social media.
Display Of Images