At Shimmer Faces, we understand that your privacy is important to you and that you care about how your personal data is used and shared online. We respect and value the privacy of everyone who visits this website www.facepaintingbromley.co.uk will only collect and use personal data in ways that are described here, and in a manner that is consistent with our obligations and your rights under the law.
What This Policy Covers.
Equally, if you linked to our website from a third-party site, we cannot be responsible for the privacy policies and practices of the owners and operators of that third-party site and recommend that you check the policy of that site as well as our site.
As a data subject, you have the following rights under EU Regulation 2016/679 – the General Data Protection Regulation (“the GDPR”), which this policy and our use of personal data have been designed to uphold:
- The right to be informed about our collection and use of personal data
- The right of access to the personal data we hold about you
- The right to rectification if any personal data we hold about you is inaccurate or incomplete (please contact us using the details in the section below entitled ‘How You Can Access And Update Your Information’)
- The right to be forgotten – i.e. the right to ask us to delete any personal data we hold about you (we only hold your personal data for a limited time, as explained below, but if you would like us to delete it sooner, please contact us using the details in the section below entitled ‘How You Can Access And Update Your Information’)
- The right to restrict (i.e. prevent) the processing of your personal data
- The right to data portability (obtaining a copy of your personal data to re-use with another service or organisation)
- The right to object to us using your personal data for particular purposes (e.g. direct marketing – please see section below entitled ‘Your Direct Marketing Choices’)
If you have any cause for complaint about our use of your personal data, please contact us using the details provided in the section entitled ‘How You Can Access and Update Your Information’ and we will do our best to solve the problem for you. If we are unable to help, you also have the right to lodge a complaint with the UK’s supervisory authority, the Information Commissioner’s Office.
How Do We Collect Information from You?
We obtain information about you when you use our website, for example, when you contact us about products and services or if you register for an event, request to receive marketing communications or make an online purchase.
What Type of Information Is Collected from You?
Depending on your use of the site, the personal information we collect might include your name, address, email address, IP address, company name, telephone number, and information regarding what pages are accessed and when.
How Is Your Information Used?
All personal data is processed and stored securely, for no longer than is necessary. We will comply with our obligations and safeguard your rights under the GDPR.
Our use of your personal data will always have a lawful basis, either because it is necessary for our performance of a contract with you, because you have consented to our use of your personal data (e.g. by subscribing to emails), or because it is in our legitimate interests.
Specifically, we may use your data for the following purposes:
- providing and managing your access to our website
- to carry out our obligations arising from any contracts entered into by you and us;
- seeking your views or comments on the services we provide;
- replying to emails from you
- notifying you of changes to our services;
- processing a job application
We review our retention periods for personal information on a regular basis. We are legally required to hold some types of information to fulfil our statutory obligations. We will hold your personal information on our systems for as long as is necessary for the relevant activity, or as long as is set out in any relevant contract you hold with us.
We will not send you any unsolicited marketing or spam and will take all reasonable steps to ensure that we fully protect your rights and comply with our obligations under the GDPR.
Who Has Access to Your Information?
We will not sell, distribute or lease your personal information to third parties unless we have your permission or are required by law to do so.
We may sometimes contract with third parties to supply products and services to you on our behalf. These may include payment processing, delivery of goods, search engine facilities, advertising, and marketing. In some cases, the third parties may require access to some or all of your data. Where any of your data is required for such a purpose, we will take all reasonable steps to ensure that your data will be handled safely, securely, and in accordance with your rights, our obligations, and the obligations of the third party under the law.
We may compile statistics about the use of our website including data on traffic, usage patterns, user numbers, sales, and other information. All such data will be anonymised and will not include any personally identifying data, or any anonymised data that can be combined with other data and used to identify you. We may from time to time share such data with third parties such as prospective investors, affiliates, partners, and advertisers. Data will only be shared and used within the bounds of the law.
We may sometimes use third-party data processors that are located outside of the European Economic Area (“the EEA”) (The EEA consists of all EU member states, plus Norway, Iceland, and Liechtenstein). Where we transfer any personal data outside the EEA, We will take all reasonable steps to ensure that your data is treated as safely and securely as it would be within the UK and under the GDPR.
What Happens If Our Business Changes Hands?
Your Direct Marketing Choices.
When you submit personal data via our website, you may be given options to restrict our use of your data. In particular, we aim to provide strong controls over our use of your data for direct marketing purposes.
You have a choice about whether or not you wish to receive information from us. If you do wish to receive direct marketing communications from us about our exciting products and services, then you can select your choices by ticking the relevant boxes situated on the form on which we collect your information.
We will not contact individuals for marketing purposes by email, phone or text message unless you have given your prior consent. We will not contact you for marketing purposes by post if you have indicated that you do not wish to be contacted in this way. You can change your marketing preferences at any time by contacting us by email: email@example.com or by telephone on 07979853245.
How You Can Access And Update Your Information.
The accuracy of your information is important to us. We’re constantly reviewing ways to keep our data fresh and make it easier for you to correct the information that we hold about you. In the meantime, if you change your email address, or any of the other information we hold is inaccurate or out-of-date, please email us at: firstname.lastname@example.org. Alternatively, you can telephone 07979853245.
You have the right to ask for a copy of the information Shimmer Faces holds about you.
Security precautions are in place to protect the loss, misuse or alteration of your information.
When you give us personal information, we take steps to ensure that it’s treated securely. We have installed an SSL certificate on our website to ensure our pages are secure and a padlock icon is displayed in web browsers such as Google Chrome to confirm this security measure.
Non-sensitive details are transmitted normally over the Internet, and this can never be guaranteed to be 100% secure. As a result, while we strive to protect your personal information, we cannot guarantee the security of any information you transmit to us, and you do so at your own risk. Once we receive your information, we make our best effort to ensure its security on our systems.
It is possible to switch off cookies by setting your browser preferences. Turning cookies off may result in a loss of functionality when using our website.
16 or Under.
We are committed to protecting the privacy of children aged 16 and under. If you are aged 16 or under‚ please get your parent or guardian’s permission before providing us with any of your personal information.
Photography of Minors.
We do not use children’s names in photograph captions.
If you would like to sign a written consent form please speak with the artist.
Under the Child Protection Act, we will only ever use photographs with the permission of parents and the images will be used for agreed use such as Social media and marketing purpose of our related business(s) In this case Face Painting.
We do not allow photography/photographers unsupervised access to children, and an adult will need to be present at All times and in agreement.
We do not approve of photography sessions outside the event or at a child’s home unsupervised.
Any School or event or club we attend will need to ensure that parents, carers, family members and others understand the policy. Many schools and clubs also have an acceptable use policy for using photographs, which may include asking parents not to share photos on social media.
If at any time, you would like to withdraw consent with any images you have allowed us to use, then please let us know in writing/email and we will take any images down within 7 days of your request from social media. With regards to any marketing material we will let you know the time frame in which this can be done to ensure all parties are happy.
Transferring Your Information Outside Of Europe.
As part of the services offered to you through this website, the information which you provide to us may be transferred to countries outside the European Union (“EU”). By way of example, this may happen if any of our servers are from time to time located in a country outside of the EU. These countries may not have similar data protection laws to the UK. By submitting your personal data, you’re agreeing to this transfer, storing or processing.
If we transfer your information outside of the EU in this way, we will take steps to ensure that appropriate security measures are taken with the aim of ensuring that your privacy rights continue to be protected as outlined in this Policy.
If you use our services while you are outside the EU, your information may be transferred outside the EU in order to provide you with those services.