This Policy explains how Images of Scotland; collects, processes, manages and stores your personal details and what your rights are under GDPR and how they are adhered to.
This Policy applies to the provision of the Images of Scotland photography website which is accessible via the following domain names:
The website is provided via the wix.com hosting platform and is currently provided as a platform for visitors to view photographic images or video taken by and owned by us.
Images of Scotland is committed to safeguarding the privacy of its website visitors although there is no requirement to enter any personal data in order to visit the website or any of its contents.
There is also no 'contact form' within which to enter personal data.
The only time you will provide Images of Scotland with personal data is if you choose to contact us via email from your own email provider. The level of information you provide will be at your discretion and this policy details how we will treat that information in the event that you contact us in relation to this website or its content.
When you contact us
If you choose to contact us, you will do so via email using your own email provider as there is no contact form on Images of Scotland.
The information you provide will be at your discretion but will likely include at least your email address and your name. This information and any other that you provide will be kept safe and secure behind password protection and only used for the purpose of responding to your contact.
Under no circumstances will your information be passed to any third parties for marketing or other unrelated activities.
In all cases, the information you provide will only be kept for a maximum of 6 months from the date of our last contact with you.
If you contact us via email, your email will be stored on password protected devices - we operate a paper free environment so all information is digitally stored only.
When we contact you
We will only contact you in relation to an enquiry from you. We do not operate any mailing lists or utilise a third party to operate one on our behalf. Your email address will not be added to an 'address book'.
Our contact will generally be via email unless you have provided a contact telephone number. Your telephone number will not be added to an 'address book'.
In both cases, we will permanently delete your contact details at the conclusion of the initial contact or no later than six months after the final contact has been made.
All devices where your information may be stored (for example a computer, mobile telephone or tablet) are password protected.
Article 5(1) of the GDPR sets out 7 key principles requiring that personal data is:
(a) processed lawfully, fairly and in a transparent manner in relation to individuals (‘lawfulness, fairness and transparency’);
(b) collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes; further processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes shall not be considered to be incompatible with the initial purposes (‘purpose limitation’);
(c) adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed (‘data minimisation’);
(d) accurate and, where necessary, kept up to date; every reasonable step must be taken to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay (‘accuracy’);
(e) kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed; personal data may be stored for longer periods insofar as the personal data will be processed solely for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes subject to implementation of the appropriate technical and organisational measures required by the GDPR in order to safeguard the rights and freedoms of individuals (‘storage limitation’);
(f) processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures (‘integrity and confidentiality’).”
Images of Scotland will process data in accordance with the principles above.
You have the right to ask us to delete or remove any personal information we have stored about you. Please email us via our email address - hello(at)imagesofscotland.com - remembering to replace (at) with '@' and we will process your request without delay.
If you would like to see any personal information we have stored about you then please email the address above.
If you have any questions or concerns about this policy please use the same email above.
This policy is applicable to the Images of Scotland website only. We may occasionally provide links to external websites but cannot be responsible for their content or how they handle privacy and cookies. You are responsible for understanding their privacy and cookie policies.
Amending this policy
Last updated - 9 February 2020.