European Union General Data Protection Regulations
The EU GDPR is designed to help all of us have more control over our personal data, and how is it used.
Who does the GDPR apply to?
Data subjects, being all visitors and users of any website who are members of the European Union who submit any personal data. JJ Middleway is the data processor and data controller of this site. You can find out more about this law here.
Effective from 25th May, 2018
JJ Middleway is the company or person who collects any personal data submitted through enchantingthevoid.co.uk
I may update this policy periodically, please check this page to ensure that you are in agreement with any changes.
What I Collect
If you opted-in to my mailing list, you may receive occasional emails on important updates or service information. You have the right to opt-out or and have any personal details removed at any time, please email firstname.lastname@example.org
What I Do With The Information I Collect
Information is saved until the enquiry is dealt with, and then archived with the project or on cloud based systems if you are an ongoing client. I also retain your contact details and information in the emails you have sent, but you can request to have your personal details deleted at any time.
I will not sell, distribute, or lease your personal information to third parties unless we have your express permission, or are required by law to do so. I may use your personal information to send you relevant information about services I offer, or information you need as part of the services I offer.
In my commitment to ensuring that your information is secure and to prevent unauthorised access or disclosure, I have suitable physical, electronic and managerial procedures in place to safeguard and secure the information I collect online.
- Data is stored on a secure cloud-based server or on a secure, password protected computer with limited user access.
- Sending information over the internet is generally not completely secure, and I can’t guarantee the security of your data while it’s in transit. Any data you send is at your own risk.
- I have procedures including passwords, restricted access and other security features in place to keep your data secure once I receive it.
- I will NEVER pass on your personal data to third parties without first getting your explicit consent.
Controlling your personal information
You may choose to restrict the collection or use of your personal information in the following ways:
- Whenever you are asked to fill in a form on the website, look for the box that you can click to indicate that you do not want the information to be used for direct marketing purposes
- If you have previously opted-in to a mailing list, or provided other information, you can find out what information I hold, and ask me to remove or not to use any of it, by emailing me.
- If you believe that any information I am holding about you is incorrect or incomplete, please email me as soon as possible: email@example.com. I will correct any inaccurate information.
User and Event Data Retention
We use Google Analytics to find out what content works best for our users. User-level and event-level data associated with Google Analytics cookies is retained for 14 months and then automatically deleted. Website visitors who don’t want their data used by Analytics can install the Analytics opt-out browser add-on.
We have implemented IP Anonymization, simply put, the last three digits of your IP address are set to zeros in memory shortly after being sent to the Analytics Collection Network. The full IP address is never written retained, or written to disk.