This policy will explain areas of this website that may affect your privacy and personal details, how we process, collect, manage and store those details and how your rights under the GDPR and DPA are adhered to.
THE DPA & GDPR MAY 2018
This website complies with the DPA (Data Protection Act 1998) and the GDPR (General Data Protection Regulation), effective from May 2018.
This website, www.lukehayden.co.uk, collects private user data using the following form: Contact Form – lukehayden.co.uk/contact-me/ which generates emails sent to: [email protected]
The data from these forms is emailed to the address listed above and also stored on the website server, in most cases dating back to when each form was created. The website server is accessible by the website administrators for www.lukehayden.co.uk at Wedhosts (wedhosts.uk). Wedhosts never access or share this data other than by request from Luke Hayden.
By completing this contact form you agree to Luke Hayden contacting you about Luke Hayden Photography’s wedding photography services. You will not be added to any mailing lists and will only be contacted by Luke Hayden personally in relation to your enquiry. Your personal details will not be added to any client or studio management software, will not be used for any marketing purposes nor will they be passed onto any third parties. They will only be stored in the email generated by this contact form which will be filed in the email account for Luke Hayden Photography which is hosted by Gmail and which can only be accessed by Luke Hayden. If you wish to request for any email(s) containing your personal information to be deleted, please email [email protected]
Luke Hayden Photography does not engage in email marketing specific to our services. Your personal details will not be used for any such marketing purposes nor will they be passed onto any third parties.
To visit a Luke Hayden Photography client gallery you will be required to enter personal data (namely your email address) and a password. Your personal data (email address) will be stored within Shootproof’s system, on their servers and will be used to email you up to a maximum of four times and only with information relevant to the client gallery you have accessed e.g. to inform you of a discount offer on gallery purchases. Any such emails sent to you will only be during the 12 month period for which the gallery is live. After 12 months has passed since a gallery was created it is automatically deleted and your personal data (email address) is completely removed from Shootproof’s system.
Only Luke Hayden will have access to your personal data (email address) stored on Shootproof’s system on behalf of Luke Hayden Photography. It will only be used as detailed above, will not be used for any other marketing purposes and will not be passed onto any third parties. Shootproof’s technical support team will have the means to access to your personal data (email address) but will never access or share this data other than by request from Luke Hayden.
By logging into a Luke Hayden Photography client gallery you are agreeing to opt in to receive relevant, gallery-specific emails as described above. Emails are automated so if you do not wish to receive such emails it is advised that you do not log into any Luke Hayden Photography client galleries.
If you wish to request for your personal data (email address) to be deleted from Shootproof’s servers, please email [email protected]
EXTERNAL WEBSITE LINKS & THIRD PARTIES
Although we only look to include quality, safe and relevant external links, users are advised to adopt a policy of caution before clicking any external web links mentioned throughout this website.
We cannot guarantee or verify the contents of any externally linked website despite our best efforts. Users should therefore note that they click on external links at their own risk and we cannot be held liable for any damages or implications caused by visiting any external links mentioned.
CLIENT DATA HELD ON FILE
We take care over the processes around looking after personal data stored on our physical systems. Luke Hayden Photography holds the following personal data of clients:
within soft copy and sometimes hard copy contracts as well as soft copy wedding client ‘day plan’ documents. Soft copy contracts and day plans are safely stored within my password protected home office PC and backed up to two encrypted external hard drives. Hard copy contracts are filed in my secure home office.
Client photos are safely stored within my password protected home office PC and backed up to two encrypted external hard drives. An additional cloud copy of all images is stored on GDPR compliant Dropbox.
CLIENTS AND WEDDING GUESTS CAPTURED IN PHOTOS
In terms of explicit GDPR compliance, Wedding clients and guests are photographed within the parameters of GDPR legislation on the basis of ‘legitimate interests’. The taking of photographs of wedding guests when viewed as a form of processing personal data is necessary for the legitimate interests of Luke Hayden Photography as a photography business unless there is a good reason to protect a given individual’s personal data which overrides those legitimate interests.
SOCIAL MEDIA POLICY & USAGE
We adopt a safe and responsible Social Media Policy. While we may have official profiles on social media platforms users are advised to verify the authenticity of such profiles before engaging with, or sharing information with such profiles. We will never ask for personal details on social media platforms. Users are advised to conduct themselves appropriately when engaging with us on social media.
DISPLAY OF IMAGES