The General Data Protection Regulation (GDPR) replaces the Data Protection Act on the 25th May 2018. This is my policy for handling your personal data under GDPR.
For the purposes of the GDPR, Looking Glass Photography is the data controller and your data will not be held by any externally hosted third party.
As part of the booking process for any Photo Shoot, I will take, process and store all personal data you have provided in my diary. Upon completion of your shoot, your data will be on both your order form and my order form copy.
As part of the data gathering process, you will be required to tick a box on the contact form, acknowledging that the data you supplied can be held by Looking Glass Photography.
All parties have the right to request deletion of their data at any time, but removal will only be possible subject to any applicable financial accounting regulations. If, for example, your stored personal data is used to create invoices for goods or services provided by Looking Glass Photography, your data has to be retained in order to comply with HMRC regulations for tax purposes. As such, your data may be held on record for a period between 6 and 10 years, in accordance with HMRC regulations.
Should you choose to order products through me your contact details will not be provided to my supplier. All orders are despatched from me personally. No financial data of yours will be given to any third party.
Your details will never be provided to any person or company, nor will your data ever be sold to any third party.
Please contact me if you have any further questions relating to this policy.