Photogenix

Privacy Policy

 

Privacy Policy Update.

 

From 25th May 2018, the new EU General Data Protection Regulation (GDPR) will be coming into force.

 

These changes affect the way in which businesses hold and use the data of their customers. This includes:

 

What type of information is stored

How it may be used

When/why your information is shared

 

What information is stored?

The data which we hold, covers both current and past orders. This data is securely held to enable us to provide the best service possible to our customers. This data is limited to contact information and order contents. 

.

 

How is your information used?

If you have chosen to join our mailing list for the purpose of receiving business updates and promotional offers. Nothing has changed here – your data is only used by us, in order to successfully provide the service that you are paying for, and to keep you in the loop on what we have to offer.

If you no longer wish to receive these emails, then you can unsubscribe at any time.

 

Is my information shared?

We only share information which is required to complete your order. We work closely with several third-party companies, in order to provide the latest products and services. To see what information is shared with these companies, please see our privacy policy below.

 

If you have any further questions regarding any of these matters, or indeed, anything further – then please do not hesitate to contact us.

 

 

Thank you for your continued support and business

 

 

Kind Regards,

 

The Photogenix Team

 

 

 

 

 

What are my rights?

The GDPR provides the following rights for individuals:

 

1. The right to be informed.

The right be be informed about the collection and use of your personal data.

2. The right of access

The right to access your personal data.

3. The right to rectification.

The right to have inaccurate personal data rectified, or completed if it is incomplete.

4. The right to erasure.

The right to have your personal data erased.

5. The right to restrict processing.

The right to request the restriction or suppression of their personal data.

6. The right to data portability.

The right to data portability allows individuals to obtain and reuse their personal data for their own purposes across different services.

7. The right to object.

The right to object to the processing of their personal data in certain circumstances.

8. Rights in relation to automated decision making and profiling.

The GDPR has provisions on:

1.Automated individual decision-making (making a decision solely by automated means without any human involvement); and

2.Profiling (automated processing of personal data to evaluate certain things about an individual). Profiling can be part of an automated decision-making process.

 

Further information on these rights, can be found by contacting the ICO (Information Commissioner’s Office)

 

 

 

 

 

 

 

 

 

 

 

 

 

 

What personal information do you hold?

We only hold information which enables us to provide the service between us and the customer

 

This may include, but not be restricted to:

 

Name

Address

Email Address

Telephone Number

Business Name

 

By entering your details into our ordering systems, you agree to share that information with us. If you choose not to progress with the order or your payment method fails, we may still hold the details placed for that order.

 

Direct shipment orders which hold your client’s personal information are also held on our system. These details are also limited to what have been provided to us, by you.

 

Images which are uploaded to our ordering systems are not retrievable, other than for the purpose of printing.

 

How long is my data held?

We only hold on to what we need in order to continue to provide our customers with a high level of service.

 

Where possible, our software providers provide us with an order database which we use to recall orders to enable us to answer a customer’s questions or queries. All of this information will be held until a point where you can request for this to be deleted.

 

All of our service and software providers are also governed by GDPR compliance and are therefore obliged to delete your data when requested.

 

Unless specifically requested through one or more of our systems/services, we will not hold your payment card details.

 

Our payment gateways may hold payment information in the event that a payment issue may occur.

 

Do you share customer personal data?

Your information may be shared between our third-party suppliers and delivery services, so that we are able to successfully complete the service request by the customer. Photogenix will never release any of your information to any third-party, other than for the use of providing the service which has been agreed by the customer.

 

These third-party suppliers may include, but are not limited to:

 

Software Suppliers

Hosting Vendors

Payment Gateways

Delivery Companies

 

All steps are taken to ensure that this information is treated with the strictest confidence.

 

Can I access my personal data?

You can request a copy of any personal data which we hold for you, by sending a request to our main email contact or via a postal service. This request is known as a ‘Subject Access Request’.

 

info@photogenixstudio.co.uk

 

Photogenix, 31 Stephenson Place, Chesterfield S40 1XL

 

We aim to respond to all SARs within 1 month from the date of the form being received.

 

Website related information

Images are stored on our website servers for up to 3 years in order to process orders (including the potential for an order to be re-printed should the printed copy be damaged)

Images are not retrievable once uploaded to the website, except for printing - they will be automatically deleted.

Images are stored on the website servers for up to 3 years in order to process orders.

To be able to fulfill an order, any details customers enter & images will be transmitted to selected third parties for the purpose of fulfilling the order. A member of staff of the Data Controller will be able to tell the customer which third parties, if any, will have access to their data and how to contact the Third party for Data Protection requests

Customer data will only be processed if they place an order or make an account - and their data will only be used for purpose of fulfilling that order and/or contacting them regarding that order or account.

If a customer enter details or upload photos and do not place an order, their data will be deleted after 60 days (plus a configurable ‘grace period’).

In the event of issues placing an order, customer details may be seen by members of our support teams. Support teams will not store or process the data - they will only use it to identify, diagnose or solve issues with the order.

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Changes to privacy policy

We reserve the right to review and make changes to our privacy. Any changes will be made available through our website.