GDPR - Privacy Policy (sorry!)
I'll start this with an apology for being such a boring blog, but I apparently have to show that I'm doing my best to be compliant with GDPR, and with the deadline being tomorow, I suppose I really should get something on here somewhere!
So, I've written a privacy policy, that I'll be putting my Etsy shop policies and on my blog, as I haven't actually got any pages left in my website allowance! So, here it is……
Anna Fine Jewellery Privacy Policy
Anna Fine Jewellery is basically, just me, Anna Mcloughlin - designer/maker/cleaner/blogger/marketer/accountant/etc so for the purpose of making sure that your data is kept safe, and being compliant with GDPR(General Data Protection Regulation), this also makes me the data “Processor” and “Controller”
Information I collect
I may ask for your contact details including name, billing address, shipping address, email address, telephone number, wedding date and any other relevant information.
How I use your information
I use the information that you give me to give advice, produce designs for a commission or post your order to the correct address. If you have consented to be on my mailing list, I may occasionally (approximately once a month, but sometimes more often if I have something really important to tell you) send you my email newsletter and/or other relevant information that I feel may be of interest.
How I share your information
Order Processing
I would never sell any of your data to third parties, but I do sometimes need to share some of it with shipping companies such as Royal Mail or DHL otherwise, I wouldn’t be able to send your order to you.
Payments are all processed via Etsy (GDPR compliant) or Paypal (working on it, but as they are a massive company, I expect that they will be very very soon).
Accounting
I use FreeAgent, who are GDPR compliant, to help me do my accounts, tax return and to create and send you invoices.
Marketing
I use a few different companies to help you find out that I exist, so you may have shared your information with them in order for it to be passed onto me.
All of these companies are GDPR compliant. They are as follows:
Squarespace - This is who I use to make my website, and all of the contact forms embedded within it.
Mailchimp - This is who I use (along with half of the world) to look after my mailing lists and to write my newsletters and marketing emails.
Etsy - This is who I use to run my online shop.
I’m very careful not to leave my actual email address lying around all over the internet as I don’t want to be bombarded with email from robots (I find that they have really spindly fingers that rings just won’t stay on!), but once we have made initial contact through my website this is usually the method by which I will continue our conversation. My emails travel backwards and forwards via Gmail, Apple Icloud, and Crazy Domains (who host my domain names and email forwarding addresses).
Social Media
I often share photos of what I have made on social media but would never share any identifying information about who a piece belongs to without prior consent. If you (or others) identify yourself in the comments then that is your own choice.
How I store and protect your information
Since buying my shiny new iPad Pro, I have very little need to store anything on paper. This means that any data that I do have about you, will be safely stored in iCloud, or in one of the companies that I have already mentioned above.
I’m lucky enough to have my very own “live-in” internet security advisor, in the form of my wonderful partner, who makes his living from helping people out with their Apple devices. He keeps a close eye on my computer and advises me on the best ways to make sure that no nasty viruses or spyware can get in and see any of your data.
All of the various companies that I use in order that I can run my business are very well known and trusted and are either already, or (in PayPal’s case) are working towards being GDPR compliant. I will only keep your data for as long as is legally necessary. After this time I will do my best to delete it.
Your right to delete your data
I respect your privacy rights and understand that you have the right to request to have any data that I hold on you deleted. If you would like me to do this then please contact me via the form on this website and I will do my very best to remove everything that isn’t needed by HMRC in order to complete my tax return. If you have given your data to Etsy, Paypal or have commented via social media, then you will need to delete that yourself.
This privacy policy was completed by me, Anna Mcloughlin, on May 24th 2018 and I very much hope that I have included everything in it that I’m supposed to have done. If you’ve actually read this far and can see anything that’s missing then please contact me and let me know and I’ll get it sorted as soon as I can.