To put this at its simplest, I absolutely respect your personal information and will only ever ask you for information I really need from you. I will look after it in the same way I would want mine looked after. I will only share it with others where I need their help to deliver a service to you (such as the professional printing laboratory I use, who may need your name and address to post your purchases). Be assured that I will never share your information in any other circumstances – nor will I sell it on elsewhere.
Here are a few more details:
Michael Wright (MW Photography) takes your privacy very seriously. This privacy policy has been prepared in line with the EU’s General Data Protection Regulation (GDPR), which promotes fairness and transparency for all individuals in respect of their personal data. This privacy policy applies to all data I process, and by using MW Photography (via this website, mwpix.co.uk) you consent to the collection and use of such data by me.
It is taken as given that the photographer retains copyright on all images he produces under the name of Michael Wright or MW Photography.
1. The Data I collect
As a data controller I collect a variety of data in order to deliver my services, and I will manage your personal data transparently, fairly and securely.
Obviously, being a photographic business I create and manage images. These images are stored on my Macbook, on an external hard drive (as part of a system backup using Apple Time Machine) and - in some cases - Adobe's Lightroom CC cloud. When uploaded to my website, there are never any photos or galleries bearing a child’s full name.
2. Why do I collect this data from you?
I use the above data to enable me to provide account access and to deliver my service to you.
3. Which third parties do I share Personal Data with? If you order prints, your information, in the form of your address and or your email address and your phone number may also be shared with a professional photo lab - data is not transferred outside of the European Economic Area - and the payment processor Stripe - data is not transferred outside of the European Economic Area.
The mwpix.co.uk website is hosted on a platform provided by an American company called Zenfolio – who provide a service to professional photographers. Zenfolio transfers your data outside of the European Economic Area to the United States under the protection of EU/US Privacy Shield. Client and Photographer data stored on Zenfolio resides on Zenfolio’s secure corporate servers located in the US. Certain banking and merchant information is shared with the respective financial institution in order to process payments and refunds. If you commission me for a shoot, the photographic data that you pay me to produce for you is uploaded onto my mwpix.co.uk website. Unless otherwise agreed, all your photographs will be put into a password protected gallery on this website: this prevents other people from viewing your photos online. I will inform you of the password for your gallery. I will choose a photo taken at the shoot / wedding as a cover photo from the album. If you have any specific requirements as to who should or should not figure in this photo, please advise me at the time of booking. All photographs taken at a commissioned photographic event have inferred consent to photograph all persons present as a result of the photographer being booked for said event. No parental consent is required for photography of minors at a wedding, as consent is inferred through the contract with the bride and groom.
The data that you enter into my website may be stored on my MAC, my external hard drive (both located at my home office) and also on Zenfolio's servers. Your email address is similarly shared with my email service provider. There are also certain situations in which I may share access to your personal data without your explicit consent; for example, if required by law, to protect the life of an individual, or to comply with any valid legal process, government request, rule or regulation
4. Why do I share your Personal Data with the above?
The reason for sharing any information about you with anyone else is in order that my services to you can be fulfilled, according to our agreed contract. Additionally, I may share information regarding my services and associated fees with my accountant. All of my suppliers, unless specified otherwise, are based within the EU. I share your data in order to deliver my service to you; personalise your experience; provide account access.
5. How do I keep your digital personal data secure?
I keep your data secure by upholding the highest personal standards of honesty and integrity, and by using Secure Socket Layer (SSL) technology for all pages that have credit card info and personal data on them – (an https page). I do not use an image Back-Up service provider(s)
In the unlikely event of a criminal breach of my security I will inform the relevant regulatory body within 72 hours and, if your personal data were involved in the breach, I would also inform you.
6. Cookies
When you visit my website I also collect (a minimal number of) Cookies. These are small pieces of data that websites send to a user's computer and are stored on the user's web browser. They are designed to enable the website to remember information, such as what a user might have put in a shopping cart for example. They are designed to be informative, personal, and as user-friendly as possible, and cookies help me to achieve that goal. These cookies are essential to ensure that you can navigate and use all features of the site. This includes browsing pages, remembering your preferences, saving favourite images, secure registration, placing orders, and other essential features. These cookies don't gather any information about you that could be used for marketing or remembering where you've been on the Internet. Cookies help me to personalise your experience and to deliver my service to you.
If you don't want to receive cookies, you can modify your browser so that it notifies you when cookies are sent to it or you can refuse cookies altogether. You can also delete cookies that have already been set. Please refer to the help function within your browser for specific instructions.
7. Changes to my privacy policy and control
I may change this privacy policy from time to time. When I do, I will let you know by changing the date on this policy, notifying customers of only significant changes. By continuing to access or use my services after those changes become effective, you agree to be bound by the revised privacy policy.
8. You have the following rights; the right to be informed about the collection and use of your personal data; the right of access to your personal data and any supplementary information; the right to have any errors in your personal data rectified; the right to have your personal data erased; the right to block or suppressing the processing of your personal data; the right to move, copy or transfer your personal data from one IT environment to another; the right to object to processing of your personal data in certain circumstances, and rights related to automated decision-making (i.e. where no humans are involved)and profiling (i.e. where certain personal data is processed to evaluate an individual).
I also give you the option to manage your data by contacting me both through email and through telephone. Should you wish to exercise any of your legal rights, as listed above, please contact me at mwpix.co.uk either via email or via my mobile phone, as listed on the mwpix.co.uk website.
9. Holding personal data
While I do not hold personal data any longer than I need to, the duration will depend on your relationship with MW Photography, and whether it is ongoing. I may keep some of your personal data for a period of over 7 years after our working contract with you has finished for my own tax legislation purposes. After this time I will archive your photographs indefinitely along with your relevant details and consent forms. This is due to the possibility of requests for replacement images being made several years after being taken.