Privacy Policy for Olivia Harris Photography – oliviaharrisphotos.com

Olivia Harris Photography (“we,” “our,” “us”) respects and prioritizes the privacy and rights of every individual who visits our website at oliviaharrisphotos.com (the “Site”). This Privacy Policy outlines our commitment to safeguarding your personal data and informs you about your rights and choices under applicable laws, including but not limited to the European Union’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

1. Our Commitment to Your Privacy

Your trust is vital to us. We believe in transparency, accountability, and integrity in all aspects of our business, especially regarding how we handle your personal information. We are committed to protecting your information and processing it in a lawful, fair, and secure manner.

2. Scope of This Policy and Role as Data Controller

This Privacy Policy applies to all visitors, users, and others who access or use our Site. Olivia Harris Photography, as the data controller, determines the purposes and methods of processing your personal data collected via oliviaharrisphotos.com. If you have any questions about our data practices, you may contact us at [email protected].

3. Categories of Personal Data We Process

We may collect, use, store, and transfer different types of personal data, grouped as follows:

– Usage Data: Includes data on how you use our Site, such as your IP address, browser type, referral source, time zone, page interactions, device identifiers, and session duration.

– Account Data: Information provided when you create an account, make a booking, or register for services. This includes your name, mailing address, email address, and telephone number.

– Profile Data: Includes your preferences, order history, photo session interests, feedback, and browsing patterns.

– Communication Data: Encompasses information provided when you contact us, such as customer service queries, email correspondence, and chat interactions.

– Technical Data: Includes data from your device, browser, operating system, screen resolution, and other system configuration information.

– Transaction Data: Information related to purchases, such as billing address, payment card details (processed securely by third parties), and delivery arrangements.

– Preference Data: Includes your consent choices for marketing communications and your interests in services or photography offerings.

4. Legal Bases for Processing Personal Data

We only process your personal data in accordance with:
– Contractual necessity: To perform our agreement with you, including your bookings and service delivery.
– Legitimate interests: To operate and improve our website, provide customer support, and develop new features, unless overridden by your fundamental rights and freedoms.
– Consent: For marketing materials, cookie placement, and non-essential data processing. You may withdraw consent at any time.
– Legal obligation: To comply with applicable laws and regulations.

5. Your Rights

Under applicable laws, you have the following rights regarding your personal data:

– Right of Access: Request confirmation of whether we are processing your data and obtain a copy.
– Right to Rectification: Request correction of inaccurate or incomplete data.
– Right to Erasure: Request deletion of your data where applicable.
– Right to Restrict Processing: Ask us to restrict processing in limited cases.
– Right to Data Portability: Receive your data in a structured, commonly used format or have it transferred directly to another controller.

To exercise any of your rights, please contact us at [email protected]. We may need to verify your identity before acting on your request.

6. Security Measures

We implement stringent security protocols to protect your data:
– Encrypted transmission using SSL/TLS
– Firewalls and secure server environments
– Access control and role-based data permissions
– Regular audits and security training for personnel
– Routine data backups and recovery measures

While no system is 100% secure, we maintain appropriate technical and organizational measures to reduce risks.

7. International Data Transfers

Your personal data may be transferred to and processed by third-party service providers located outside your jurisdiction, including the United States and other regions. When such transfers occur, we ensure they comply with legal safeguards such as:
– Standard Contractual Clauses (SCCs) approved by the European Commission
– Binding corporate rules or other officially recognized frameworks ensuring adequate protection

8. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including to meet any legal or reporting obligations. Specific retention periods are:

– Account & Profile Data: Retained until the account is closed or inactive for 24 months
– Transaction & Communication Data: Retained for 7 years for legal and tax purposes
– Usage & Technical Data: Retained for analytics for up to 12 months
– Marketing Preferences: Retained until consent is withdrawn

9. Cookie Policy

Our Site uses cookies and similar technologies to enhance user experience, understand usage patterns, and deliver personalized content. Cookies include:

– Essential Cookies: Necessary for core website functionality
– Functional Cookies: Enhance browsing by remembering user choices
– Analytics Cookies: Help track site usage and optimize performance
– Performance Cookies: Monitor and improve user experience and load speeds

10. Cookie Management and Compliance

You have the right to manage your cookie preferences at any time. A cookie consent banner allows you to accept or decline non-essential cookies in compliance with GDPR and CCPA. You can also modify settings directly in your browser to control or block cookies.

For California residents, we honor “Do Not Sell My Personal Information” requests as required under CCPA. We do not sell your data to third parties in exchange for monetary or other valuable consideration.

11. Children’s Privacy

We do not knowingly collect data from children under the age of 13. If a parent or guardian becomes aware that a child has provided us with personal information without their consent, they should contact us at [email protected]. We will delete such data in accordance with applicable laws.

12. Policy Updates

We reserve the right to modify this Privacy Policy at any time in response to legal, operational, or service changes. Any material updates will be posted prominently on oliviaharrisphotos.com. Continued use of the Site after changes implies acceptance of the revised terms.

13. Contact Information

If you have questions, concerns, or requests related to our privacy practices, please contact:

Olivia Harris Photography
Email: [email protected]

We are committed to ensuring full compliance with privacy laws, including GDPR and CCPA. Please do not hesitate to reach out to us regarding your data rights or how your personal information is handled.