This Privacy Policy outlines how EYECONART complies with the GDPR (General Data Protection Regulation). This Policy explains how EYECONART collects, processes, manages and stores your personal details and what your rights are under GDPR and how they are adhered to.

‘Commission’ is defined as any engagement with EYECONART including, but not limited to, events and private commissions.

Website use – eyeconart.co.uk (Site)

​EYECONART is committed to safeguarding the privacy of its website users and its customers.

We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place appropriate physical, electronic and managerial procedures to safeguard and secure the information we collect online and from commissions. All your information is stored either electronically on our secure servers or in the case of paper documentation, in secured cabinets only accessible by the Director or EYECONART team members.

The use of eyeconart.co.uk does not require any personal information when you visit our Site. Should you wish to provide your personal details on the course of a product related enquiry or in transacting to receive additional information – any information you provide to us will be protected from unauthorised access and you will be informed of exactly how your information is to be used. The details below state the exact way in which information practices are handled by EYECONART below.

​Your Personal Information

​By Personal Information we are referring to a visitor’s personal name, e-mail address and any other information they deem fit to provide. Personal Information can be gathered via an online contact form, by the posting of a comment in relation to content on the site, or by interacting with one of EYECONART’s Social Media platforms (Facebook, Instagram, Pinterest). We may also request Personal Information when hosting a competition whereby applicants must apply to participate.

Under no circumstances will any Personal Information be used for anything other than the reason it has been submitted for. We reserve the right to use any Personal Information for promotion administration purposes, including but not limited to verification and notification of winners as applicable.

All correspondence to EYECONART via email, social media, website, contact form, What’s app, messenger are password protected and EYECONART is solely responsible for the handling and managing of all personal data.

All electronic devices where your Personal Information is stored, for example, mobile phone, tablet and desktop, all contain passwords. Images are stored on external hard drives which are password protected. Any paper documents where your Personal Information can be accessed are stored in a secure, private location only accessible by EYECONART.

EYECONART team members associated with commissions will have access to your name and telephone number for the duration of the commission including associated follow up.

Personal information shall not be shared with Third Party operators or websites, unless considered necessary when completing your transaction. For example, EYECONART uses sites such as Smugmug.com as a means to distribute photographs; EYECONART will use your name and images to complete orders. This Site holds no responsibility for privacy policies on other sites, but endeavours to only work with GDPR compliant companies.

EYECONART may need to disclose Personal Information, when necessary, in the instance of insurance claim, or  legal reason that may occur. Wherever possible EYECONART will inform those affected prior to the release of Personal Information.

Communication with you

EYECONART will contact you as appropriate regarding your enquiry, booking, to collect fees or monies owed, or as otherwise necessary. For  these purposes we may contact you via email, telephone, text message, messenger and / or postal mail.

Images

GDPR legislation states that a photograph may contain some form of personal data where they can be processed to allow “the unique identification or authentication of a natural person”. EYECONART will never photograph an individual as a means of unique identification or authentication unless contracted to do so. Guests at events, where EYECONART has been contracted to capture images, appear in photos taken by EYECONART as a part of the documentation of the event. Images of guests’ eyes, including within artistic commissions involving multiple iris images, do so as part of the event and their rights are protected by EYECONART as detailed in this Privacy Policy.

In terms of explicit GDPR compliance, clients and guests are photographed within the parameters of GDPR legislation on the basis of ‘legitimate interests’. The taking of photographs of guests eyes when viewed as a form of processing personal data is necessary for the legitimate interests of EYECONART as a photography business unless there is a good reason to protect a given individual’s personal data which overrides those legitimate interests. This should be communicated to EYECONART in advance of the commission.

Operating within the parameters of legitimate interests as laid out in GDPR legislation, the disproportionate effort involved in providing Privacy Policy information to all guests at the event and the degree to which it would distract us from performing our job renders it infeasible to do. Booking clients are therefore requested in their contract to direct their guests to read this Privacy Policy in advance of the event and to advise them to contact us in advance with any concerns around the processing of their personal data, namely being photographed.

We may display any photographs to promote EYECONART on our website, blog, on social media, on photography related websites, in exhibitions, in advertising, brochures, magazine articles and other such material, providing that the images used are used lawfully. The rights of the people captured in these photographs are protected by EYECONART as detailed in this Privacy Policy.

All original files created by EYECONART remain the property of EYECONART. Images will be made available through an online gallery for 2 weeks following an event, and stored by EYECONART for 2 months after the event. After 2 months, the images will be destroyed save those used for promotional materials.

Your Right to Access information or Withdraw your Data

Anyone photographed by EYECONART, whether a client or guest, and whether past or current may withdraw consent for a photograph in which they appear to be displayed. The process for this is to email hello@eyeconart.co.uk specifying the photo in question. After the request has been made, EYECONART will take the necessary step to remove the image online.

You have the right to contact EYECONART at any time and ask to view the Personal Information that the business has stored on you. You have the right to ask to have such information deleted or removed. If you would like access to your stored data please contact hello@eyeconart.co.uk.

External Website Links and Third Parties

​This statement covers all areas in which Personal Information has been received according to information collection practices on www.eyeconart.co.uk. Links located at the Site may be to and from other internet sites, including but not limited to the sites affiliated to the Site. The Site does not hold any responsibility for the privacy policies or content of all the other websites that it may link to. We encourage you to review the Privacy Policy and Terms of Use of any Third Party company we may link to – prior to deciding to submit your personal information on other such sites.

Right to amend our Privacy Statement

EYECONART reserves the right to amend this Privacy Policy at any time. Changes shall be effective right upon posting up on the Site. Last updated May 2019

Questions

If you have any questions or concerns about this Statement, you are invited to contact us at email:  hello@eyeconart.co.uk