Privacy Policy & GDPR

If you book me for your ceremony I will retain your information on my personal (not shared) computer. This information is also backed up and stored on the cloud for additional backup and security.

Some of the services on my website and other communications may require me to request or collect personal data from you so that I can process your orders from the website. To comply with the General Data Protection Regulation (GDPR)  I have a responsibility to ensure that any information you do submit will be stored in a secure manner and NOT be passed on to third parties. I will give you option to refuse any marketing emails.

But throughout all of this, I am committed to making sure your personal, private data stay safe and secure. Some of the ways the GPDR comes into play includes:

COMMUNICATION DATA
This would include any communication you send to me whether this is through the contact form on my website, through email, text social media messaging or posting, or any other communication that you send to me. I will process this data for the purposes of communicating with you, for record keeping and for the establishment, pursuance or defence of legal claims.

CUSTOMER DATA
This would include any data relating to any of my services you make relating to any purchases of services such as your name, title, billing address, email address, phone number, contact details and purchase details. I will process this data to supply the services you have purchased from me, and to keep records of such transactions.

SECURITY DATA
This would include any data recorded when you sign in as a guest or visitor to my website. The information I collect from you when you visit my website may include technical (non personal) data, such as the IP address used to connect your computer to the internet, your login information (account only) browser type and version, operating system and platform, length of visit to pages on my website, page views and navigation paths, details about the number of times you used my website and other technology on the devices you use to access my website.

The source of this data is from my online analytics tracking system. I process this data to analyse your use of my website and other online services, to administer and protect my business and website, to deliver relevant website content and to understand the effectiveness of any advertising I do.

Analysis of this information is used to monitor website usage and may be used to measure user paths, web traffic (total numbers of users of our pages) and duration of time spent to assess overall popularity. I may receive data from third parties such as analytics providers such as Google based outside the EU, advertising networks such as Facebook based outside the EU, providers of technical, payment and delivery services.

I may use customer data, user data, technical data and marketing data to deliver relevant website content and advertisements to you (including Facebook adverts or other display advertisements) and to measure or understand the effectiveness of the advertising I serve you. My reasoning behind this is to grow my business and I may use such data to send other marketing communications to you.

Except as stated already, I as Tim Downer Celebrant will make no attempt to identify individual users. You should be aware, however, that access to my web pages will generally create log entries in the systems of your ISP or network service provider. These entries may be in a position to identify the client computer equipment used to access a page. Such monitoring would be done by the provider of the network services, and it is beyond the responsibility or control of Tim Downer Celebrant.

I will make no attempt to track or identify individual users, except where there is reasonable suspicion that unauthorised access to our system is being attempted. As a condition of use of this site, all users have given permission for Tim Downer Celebrant to use its access logs to attempt to track users who are reasonably suspected of gaining, or attempting to gain unauthorised access.

You’ll find links on my website to other suppliers and to sites where I am registered as a member or supplier. These sites are not within my control and this policy doesn’t cover those links or their pages.

All technical data collected is kept secure and no access to raw files is given to any third party.

CONTACT FORMS
When you use my contact form to get in touch with me, the information collected is used solely for the purpose of replying to your query. The information you consent to provide is not stored but logged as an enquiry. These logs are cleared every 90 days and never used for mailing or marketing purposes, and never passed on to third parties.

If you would prefer for these details to be cleared immediately, this can be done manually at any time upon request, by contacting me directly using the details listed below:

When you contact me directly via telephone or email, I collect data only so that I can correspond with you. I will only correspond with you regarding your original enquiry. Your data is only used for the original purpose, or a reasonably compatible purpose if necessary and never added to any mailing or marketing lists unless your enquiry results in a contract between us, in which case my lawful ground for this processing is the performance of a contract between you and me and/or taking steps at your request to enter into such a contract.   

I do not collect any Sensitive Data. Sensitive data refers to data that includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data.

Users contacting this website and/or its owners through other communications do so at their own discretion and provide any such personal details requested at their own risk. Your personal information is kept private and stored securely until a time it is no longer required or has no use. Every effort has been made to ensure a safe and secure form to email submission process and other communications but advise users using such form to email processes or other communications that they do so at their own risk. 

BUSINESS TO CUSTOMER
In order for me to provide you with a service, I need to collect personal data to enable me to effectively manage and create an awesome ceremony for you both as one of my clients. In any event, I am committed to ensuring that the information I collect and use is appropriate for this purpose, and does not constitute an invasion of your privacy.

I will process (collect, store and use) the information you provide in a manner compatible with the EU’s General Data Protection Regulation (GDPR). I will endeavour to keep your information accurate and up to date, and not keep it for longer than is necessary. I am required to retain information in accordance with the law, such as information needed for income tax and audit purposes. How long certain kinds of personal data should be kept may also be governed by specific business-sector requirements and agreed practices. Personal data may be held in addition to these periods depending on individual business needs.

Under the Privacy and Electronic Communications Regulations, I may send you marketing communications from Tim Downer Celebrant if (i) you made a purchase or asked for information from me about my goods or services or (ii) you agreed to receive marketing communications and in each case you have not opted out of receiving such communications since. However you can still opt out of receiving marketing emails from me at any time. 

I will also ask you to sign a GDPR information retention document along with your contract and booking form.

I require all third parties to whom I transfer your data to respect the security of your personal data and to treat it in accordance with the law. I only allow such third parties to process your personal data for specified purposes and in accordance with my instructions. I will not share your personal data with any third party for their own marketing purposes.

USE OF COOKIES

This website does not store any information that would, on its own, allow me to identify individual users of this service without their permission. Cookies are small files of letters and numbers placed on your computer or your browser to collect standard log information and visitor behaviour. My website uses cookies to distinguish you from other users of my website. This helps me to provide you with a good experience when you browse my website and also allows me to improve my website. 

Most web browsers allow some control of most cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit www.aboutcookies.org or www.allaboutcookies.org.

If you disable or refuse cookies, please note that some parts of this website may become inaccessible or not function properly.

To opt out of being tracked by Google Analytics across all websites visit http://tools.google.com/dlpage/gaoptout.

DATA SECURITY
I have put in place security measures to prevent your personal data from being accidentally lost, used, altered, disclosed, or accessed without authorisation. I also allow access to your personal data only to those employees and partners who have a business need to know such data. They will only process your personal data on my instructions and they must keep it confidential.  I have procedures in place to deal with any suspected personal data breach and I will notify you and any applicable regulator of a breach if I am legally required to.

DATA RETENTION

For tax purposes the law requires me to keep basic information about my customers (including Contact, Identity, Financial and Transaction Data) for six years after they stop being customers. In some circumstances I may anonymise your personal data for research or statistical purposes in which case I may use this information indefinitely without further notice to you.

YOUR LEGAL RIGHTS
Under data protection laws you have rights in relation to your personal data that include the right to request access, correction, erasure, restriction, transfer, to object to processing, to portability of data and (where the lawful ground of processing is consent) to withdraw consent.

You can see more about these rights at: https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/  If you wish to exercise any of the rights set out above, please email me at timdownercelebrant@gmail.com. 

You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, I may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive or refuse to comply with your request in these circumstances. I may need to request specific information from you to help me confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. I may also contact you to ask you for further information in relation to your request to speed up my response. 

I will try to respond to all legitimate requests within one month. Occasionally it may take me longer than a month if your request is particularly complex or you have made a number of requests. In this case, I will notify you. If you are not happy with any aspect of how I collect and use your data, you have the right to complain to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). I would be grateful if you would contact me first if you do have a complaint so that I can try to resolve it for you.

MY CONTACT DETAILS
If there are any questions regarding this privacy policy, you may contact me using the information below.
email: timdownercelebrant@gmail.com

Thank you for reading this information.

If you have any questions, please do contact me.