Introduction and General Terms
This policy explains the following:
~ what information I may collect about you;
~ how I might use information I collect about you;
~ whether I will disclose your details to anyone else;
~ your choices regarding the personal information you provide to me;
~ my data security measures;
~ website ‘Cookies’ and usage data.
My website(s) may contain hyperlinks to websites owned and operated by third parties. These third party websites have their own privacy policies and so you should probably review them. They will govern the use of personal information you submit when visiting these websites. I do not accept any responsibility or liability for the privacy practices of such third party websites and your use of such websites is at your own risk.
Owner and data controller
Tricia Anne Photography is the owner and controller of data that passes through this website and/or via email. This data is kept private between me and the few other carefully selected data processors, which I have set out below.
Because a lot of the work I do is in the field my Registered Office is my home address. Because I don’t want to splurge that all over the internet I’m not going to list it here. But anyone can request it directly from me at any time and I will not reasonably withhold this information. At this point in time my business is a Sole Proprietorship so I don’t have a company registration number. You can contact me; the Data controller, by telephone at +39 389 471 11192, by email on firstname.lastname@example.org, or by the contact form on my website www.triciaannephotography.com.
When we refer to “I” or “we” or “our” or “TAP” I am referring to Tricia Anne Photography.
DATA WHICH I RETAIN
When you visit my website(s) and provide contact information to me via electronic forms on the website(s), or contact me by phone, SMS, email, and other correspondence, I capture your names, phone numbers, email address and information about you, your family and other information that you may deem personal to respond to the enquiry.
Once your event has passed, I take and store photographs from your event on encrypted hard drives and third party online storage accounts in order to provide the photographic services that you have hired me for. I will keep your photographs for as long as the hard disks that they are stored on are functional in order to provide copies should you ever lose your photographs. This service is provided as a legitimate interest.
If you would like me to remove your photographs from my hard disks and backups after I have delivered your full gallery, I will do so, if you send me an email confirming your request.
I may also post photos on my website, blog, social media accounts and marketing materials, which is done for legitimate interest. Should you or any member in the photograph(s) wish not to be included in this, please let me know by email.
Your privacy is of the highest importance to me, and we will never release or transfer your personal details to any outside my company for their mailing or marketing purposes without your prior and direct written consent.
You will always have the right to withdraw your consent to me holding this data and using it to communicate with you.
In order to protect your privacy, I take appropriate security measures in the storage and disclosure of personal information so as to prevent unauthorised access by third parties. In some cases, your Data may be accessible to certain types of persons in charge, involved with the operation of our business (administration, sales, marketing, legal, system administration) or external parties (such as third-party technical service providers, mail carriers, hosting providers, IT companies, communications agencies) appointed, if necessary, as Data Processors by me. I will only choose to work with third party data processors that we are confident share the same approach to data security, privacy and GDPR. I will do everything we reasonably can to ensure your data remains safe with them. An updated list of these parties may be requested from me, the Data Controller, at any time.
However, do remember the Internet is not a totally secure medium and you acknowledge and agree that I shall not be responsible for any unauthorised use, distribution, damage or destruction of personal data, except to the extent I am required to accept such responsibility by data protection laws.
Over on the Information Commissioner’s Office website, they explain that the new General Data Protection Regulations (GDPR) are currently a working document and therefore subject to change, so I commit to doing my best to keep up.
Cookies are small files that a site or its service provider transfers to your computer’s hard drive through your web browser that enables sites or service providers to recognise your browser and to capture and remember certain information.
This website uses Google Analytics to help analyse how users use the site. Google Analytics uses ‘cookies’ to collect standard Internet log information and visitor behaviour information in an anonymous form. The information generated by the cookie about your use of the website (including your IP address if you have not opted out) is transmitted to Google. This information is then used to evaluate visitors’ use of the website and to compile statistical reports on website activity for our internal use.
I will never use the statistical analytics tool to track or to collect any Personally Identifiable Information of visitors to our site. Google will not associate your IP address with any other data held by Google. Neither we nor Google will link, or seek to link, an IP address with the identity of a computer user. You can read the Google Analytics Terms of Service here. Place of data processing: United States
My website uses a Content Management System which anonymously tracks the user’s movement around the site to allow us to improve the overall user experience. No personal information is stored. Showit is a web design and hosting service provided by Showit Inc, they host this website on Amazon Web Services. Amazon servers are fully secure and ready to beat GDPR requirements. You can read their Terms of Service here. Place of data processing: United States.
My website is also designed using WordPress. They are also fully secure and ready to beat GDPR requirements. You can read their Terms of Service here. Place of data processing: United States.
If you are concerned about any information I hold about you, please get in touch, phone, write or email me directly. I will comply with any legal and ethical request.
Contact: Patricia Scarlino
Additonal information available upon request