Privacy Policy

Our website address is: https://michaelwellsphotography.com.

WEBSITE PRIVACY POLICY
The policy: This privacy policy is for this website – https://www.michaelwellsphotography.com/ – and governs the privacy of its visitors. It explains how we comply with the EU’s GDPR (General Data Protection Regulation) legislation and the DPA (Data Protection Act). This policy will explain areas of this website that may affect your privacy and personal details, how we process, collect, manage and store those details and how your rights under the GDPR and DPA are adhered to.


THE DPA & GDPR MAY 2018
This website belonging to Michael Wells of Michael Wells Photography complies with the DPA (Data Protection Act 1998) and the GDPR (General Data Protection Regulation), effective from 25th May 2018.


CONTACTING US
This website,https://www.michaelwellsphotography.com/ collects private user data using the following contact form – https://www.michaelwellsphotography.com/contact/- which generates emails sent to mike@michaelwellsphotography.com/. The data from these forms is emailed to the address listed above and also stored on the website server, in most cases dating back to when each form was created. The website server is accessible by the website administrators for https://www.michaelwellsphotography.com/
By completing this contact form you agree to Michael Wells contacting you about Michael Wells Photography’s photography services. Your contact information will be recorded and retained in a customer management system (CMS) and kept securely online in accordance with their privacy policy. You will not be added to any mailing lists and will only be contacted by Michael Wells personally in relation to your enquiry. Your personal details will not be used for any marketing purposes nor will they be passed onto any third parties. They will be stored in the email generated by this contact form which will be filed in the email account for Michael Wells Photography which is hosted by Slightly Different and which can only be accessed by Michael Wells. If you wish to request for any email(s) containing your personal information to be deleted, please email mike@michaelwellsphotography.com


CLIENT GALLERIES
Michael Wells Photography creates a client gallery for each client to whom photos are delivered as part of the services contracted. Michael Wells Photography’s client galleries are externally hosted by Shootproof. Their privacy policy can be found here. To visit a Michael Wells Photography client gallery you will be required to enter your  email address. This personal data (email address) will be stored within Shootproof’s database on their servers and will be used to email you only with information relevant to the client gallery you have accessed.
Only Michael Wells will have access to your personal data (email address) stored on Shootproof’s system on behalf of Michael Wells Photography. It will only be used as detailed above, will not be used for any other marketing purposes and will not be passed onto any third parties. Shootproof’s technical support team will have the means to access to your personal data (email address) but will never access or share this data other than by request from Stephen Walker. If you wish to request for your personal data (email address) to be deleted from Shootproof’s servers, please email support@shootproof.com


EXTERNAL WEBSITE LINKS & THIRD PARTIES
Although we only look to include quality, safe and relevant external links, users are advised to adopt a policy of caution before clicking any external web links mentioned throughout this website. We cannot guarantee or verify the contents of any externally linked website despite our best efforts. Users should therefore note that they click on external links at their own risk and we cannot be held liable for any damages or implications caused by visiting any external links mentioned.
CLIENT DATA HELD ON FILE
We take care over the processes around looking after personal data stored on our physical systems. Michael Wells Photography holds the following personal data of clients:

  1. i)  Names
  2. ii)  Addresses (including email addresses)
  3. iii)  Phone numbers

All client data collected or given to Michael Wells Photography is safely stored within my password protected home office iMac and backed up to encrypted and password protected external hard drives. Client photos are safely stored within my password protected home office iMac and backed up to encrypted and password protected external hard drives. Shoots that take place under the Pre Wedding and Wedding shoots will occasionally be turned into slideshows that are created and stored on Vimeo. These slideshows may also be downloaded by Stephen Walker Photography and shared on platforms such as Instagram and Facebook. The slideshows will be stored within my password protected home office iMac and backed up to encrypted and password protected external hard drives. As Facebook and Instagram will hold images that Michael Wells Photography and Michael Wells may share I must advise you to read their privacy policies here for Facebook and here for Instagram.


CLIENTS CAPTURED IN PHOTOS
Under GDPR legislation, a photograph may in some instances constitute a form of personal data where they can be processed to allow “the unique identification or authentication of a natural person”. Michael Wells Photography will never photograph an individual as a means of unique identification or authentication unless consensually contracted to do so. Guests/attendees at events appear in photos taken by Michael Wells Photography as a part of the visual recording of the event in photos. Guests/attendees captured in photographs or in group photos do so as part of the event and their rights are protected by Michael Wells Photography as detailed in this privacy policy.
In terms of explicit GDPR compliance, clients and guests/attendees are photographed within the parameters of GDPR legislation on the basis of ‘legitimate interests’. The taking of photographs of guests/attendees when viewed as a form of processing personal data is necessary for the legitimate interests of Michael Wells Photography as a photography business unless there is a good reason to protect a given individual’s personal data which overrides those legitimate interests.
Operating within the parameters of legitimate interests as laid out in GDPR legislation, the disproportionate effort involved in providing privacy policy information to all event guests at the event and the degree to which it would distract us from performing our job renders it infeasible to do. Clients are therefore requested to direct their guests/attendees to read this privacy policy in advance of the event and to advise them to contact us in advance with any concerns around the processing of their personal data, namely being photographed.


SOCIAL MEDIA POLICY & USAGE
We adopt a safe and responsible social media policy. While we may have official profiles on social media platforms, users are advised to verify the authenticity of such profiles before engaging with, or sharing information with, such profiles. We will never ask for personal details on social media platforms. Users are advised to conduct themselves appropriately when engaging with us on social media.


DISPLAY OF IMAGES
We may display any photographs to promote Michael Wells Photography on the Michael Wells Photography website and blog, on social media, on 3rd party blogs, on photography related websites, in exhibitions, in advertising, brochures, magazine articles and other such material, providing that the images used are used lawfully and without damage to Michael Wells Photography’s client(s). The rights of the people captured in these photographs are protected by Michael Wells Photography as detailed in this privacy policy.

COMMENTS
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection. An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.


MEDIA
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.


COOKIES
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.


EMBEDDED CONTENT FROM OTHER WEBSITES
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.


HOW LONG DO WE RETAIN YOUR DATA
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.


WHAT RIGHTS DO YOU HAVE OVER YOUR DATA
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Please get in touch via the contact form, email or phone of you have any questions or queries regarding your data and this privacy policy.