PRIVACY POLICY – SOPHIE BARLOC PHOTOGRAPHY
The policy: This privacy policy is for this website – www.sophiebarloc.co.uk – and governs the privacy of its visitors. It explains how we comply with the EU’s GDPR (General Data Protection Regulation) legislation and the DPA (Data Protection Act) [pre GDPR enforcement] and the PECR (Privacy and Electronic Communications Regulations).
This policy will explain areas of this website that may affect your privacy and personal details, how I (Sophie Barloc Photography / Sofia Barlocco) process, collects, manages and stores those details and how your rights under the GDPR and DPA are adhered to.
THE DPA & GDPR MAY 2018
This website complies with the DPA (Data Protection Act 1998) and the GDPR (General Data Protection Regulation), effective from May 2018.
CONTACT AND COMMUNICATION
This website, www.sophiebarloc.co.uk, collects the personal data using the following contact form – https://www.sophiebarloc.co.uk/contact which generates emails sent to sophiebarloc@gmail.com. The data from these forms is emailed to the address listed above and also stored on the website server, in most cases dating back to when each form was created. The website server is accessible by the website administrators for www.sophiebarloc.co.uk at FORMAT, the company which provides hosting for this website. FORMAT never access or share this data.
By completing this contact form you agree to me contacting you about my photography services. Your contact information and the personal data you provide in order will be recorded and retained in a customer management system (PIXIESET) and kept securely online in accordance with their privacy policy. You will not be added to any mailing lists and will only be contacted by me personally in relation to your enquiry. Your personal details will not be used for any marketing purposes nor will they be passed onto any third parties. If you wish to request for any email(s) containing your personal information to be deleted, please email sophiebarloc@gmail.com.
CLIENT DATA HELD ON FILE
I take care over the processes for looking after personal data stored on my physical systems. All personal data you provide is at your own discretion and risk, but rest assured I will store it safely until it is no longer required. I hold the following personal data of clients:
1) Names
2) Addresses (including email addresses)
3) Phone numbers
4) Social Media Handles
within soft copy and sometimes hard copy contracts, as well as soft copy planning documents and shoot plans. Soft copy contracts, questionnaires, planning documents and shoot plans are safely stored within two password protected computers and backed up to password protected cloud storage. Client photos are safely stored in two password protected computers and backed up to external hard drives in my secure home office. I may share a shoot plan containing your personal data (name, mobile number) with a second photographer in order for us both to carry out our jobs for you during a shoot. Online contracts containing the names and address (including email addresses) of clients are stored in the GDPR compliant service PIXIESET. Only I will have access to your personal data as stored on Pixieset’s system, and it will only be used as detailed above, will not be used for any other marketing purposes and will not be passed onto any third parties. You can view Pixieset’s Privacy Policy here.
CLIENT GALLERIES
I create an online gallery for each client to whom photos are delivered as part of the services contracted. My client galleries are externally hosted by PIXIESET. You can view Pixieset’s Privacy Policy here. To download any image from my client galleries you will be required to enter your email address. This is necessary to log in, and will allow you to create favourite lists, share images and order prints. Your personal data (email address) will be stored within Pixieset’s system, on their servers and will be used to email you only with information relevant to the client gallery you have accessed.
Only I will have access to your personal data (email address) stored on Pixieset’s system on behalf of Sophie Barloc Photography (Sofia Barlocco). It will only be used as detailed above, will not be used for any other marketing purposes and will not be passed onto any third parties. Pixieset’s technical support team will have the means to access to your personal data (email address) but will never access or share this data other than by request from Sophie Barloc Photography. If you wish to request for your personal data (email address) to be deleted from Pixieset’s servers, please email sophiebarloc@gmail.com.
CLIENTS CAPTURED IN PHOTOS
Under GDPR legislation, a photograph may in some instances constitute a form of personal data where they can be processed to allow “the unique identification or authentication of a natural person”. I will never photograph an individual as a means of unique identification or authentication unless consensually contracted to do so. Guests/attendees at events appear in photos taken by me / Sophie Barloc Photography as a part of the visual recording of the event in photos. Guests/attendees captured in portraits or in group photos do so as part of the event and their rights are protected by Sophie Barloc Photography as detailed in this privacy policy.
In terms of explicit GDPR compliance, clients and guests/attendees are photographed within the parameters of GDPR legislation on the basis of ‘legitimate interests’. The taking of photographs of guests/attendees when viewed as a form of processing personal data is necessary for the legitimate interests of Sophie Barloc Photography as a photography business unless there is a good reason to protect a given individual’s personal data which overrides those legitimate interests.
Operating within the parameters of legitimate interests as laid out in GDPR legislation, the disproportionate effort involved in providing privacy policy information to all event guests at the event and the degree to which it would distract Sophie Barloc Photography from performing our job. Clients are therefore requested to direct their guests/attendees to read this privacy policy in advance of the event and to advise them to contact us in advance with any concerns around the processing of their personal data, namely being photographed.
SOCIAL MEDIA POLICY & USAGE
I adopt a safe and responsible social media policy. While I may have official profiles on social media platforms, users are advised to verify the authenticity of such profiles before engaging with, or sharing information with, such profiles. I will never ask for user passwords or personal details on social media platforms. Users are advised to conduct themselves appropriately when engaging with us on social media.
There may be instances where our website features social sharing buttons, which help share web content directly from web pages to the respective social media platforms. You use social sharing buttons at your own discretion and accept that doing so may publish content to your social media profile feed or page.
DISPLAY OF IMAGES
We may display any photographs to promote Sophie Barloc Photography on the Sophie Barloc Photography website, on social media, on 3rd party blogs, on photography related websites, in exhibitions, in advertising, brochures, magazine articles and other such material, unless a confidential clause has been signed by the involved parties, providing that the images used are used lawfully and without damage to Sophie Barloc Photography’s client(s). The rights of the people captured in these photographs are protected by Sophie Barloc Photography as detailed in this privacy policy.
EXTERNAL WEBSITE LINKS & THIRD PARTIES
Although I only look to include quality, safe and relevant external links, users are advised to adopt a policy of caution before clicking any external web links mentioned throughout this website. I cannot guarantee or verify the contents of any externally linked website despite our best efforts. Users should therefore note that they click on external links at their own risk and we cannot be held liable for any damages or implications caused by visiting any external links mentioned.
USE OF COOKIES
This website uses cookies to better the user’s experience while visiting the website. As required by legislation, where applicable this website uses a cookie control system, allowing the user to give explicit permission or to deny the use of / saving of cookies on their computer / device.
What are cookies? Cookies are small files saved to the user computer’s hard drive that track, save and store information about the user’s interactions with the website. This allows the website, through its server to provide the users with a tailored experience within this website.
Users are advised that if they wish to deny the use and saving of cookies from this website on to their computers hard drive they should take necessary steps within their web browsers security settings to block all cookies from this website and its external serving vendors or use the cookie control system if available upon their first visit.
WEBSITE VISITOR TRACKING
This website uses tracking software to monitor its visitors to better understand how they use it. The software will save a cookie to your computers hard drive in order to track and monitor your engagement and usage of the website, but will not store, save or collect personal information.
DOWNLOADS & MEDIA FILES
Any downloadable documents, files or media made available on this website are provided to users at their own risk. While all precautions have been undertaken to ensure only genuine downloads are available users are advised to verify their authenticity using third party anti-virus software or similar applications.
I accept no responsibility for third party downloads and downloads provided by external third party websites and advise users to verify their authenticity using third party anti-virus software or similar applications.
RIGHT OF CONFIRMATION, ACCESS, RECTIFICATION AND ERASURE
I’m happy to let you know what information I hold about you, and you can of course request that I delete all of your personal data from my systems… If you have any questions at all about how your personal data is handled please just contact me via email at sophiebarloc@gmail.com and I will answer your queries as quickly as possible.