Privacy Policy

Privacy Policy

This Privacy Policy outlines how Minifactorum complies with the GDPR ( General Data Protection Regulation (GDPR) (EU) 2016/679 and the Data Protection Act 2018.). This Policy explains how Minifactorum collects, processes, manages and stores your personal details and what your rights are under GDPR and how they are adhered to. Our Cookie Policy can be seen here and provides more details on Cookies and their use on our site.

The term Site, website and Our Site in reference to Minifactorum refer to Website use – https://www.Minifactorum.com/ (Site)

1. WHAT INFORMATION IS BEING COLLECTED?

We collect a variety of information before, during and after you book with Minifactorum and use any of our services. This includes:

    1. Names, Addresses and Contact Information of the person(s) placing an order with us.
    2. Names, Addresses and Contact Information of the person(s) using our services.
    3. Names (and in some cases ages and gender) of all participants of a photo shoot.
    4. Details and notes taken throughout a photo session or service provided to help us remember conversations during and details of your session.
    5. If you EMail us or send us messages via social media, these messages are stored within our email system or social media accounts. These messages are stored for as long as practicable to allow us to provide you with better future services.

 

​Minifactorum is committed to safeguarding the privacy of its website users and its customers.

 

Because we understand your privacy is important to us, we maintain this websites privacy policy to protect your personal information. By using this site, you consent to the terms of this website privacy policy. We do not collect, use or disclose your personal information for any purpose other than those identified below, except with your consent or as required by law.

 

Each time you visit our website the web server collects and logs certain information. We keep these access logs and cookies for a reasonable period of time. These logs include, but are not restricted to: your computer’s TCP/IP address, your username (if applicable), date, time and files accessed. These logs also contain information about referrer information if you clicked on an external link in order to access a webpage. We use these logs solely for performance, site administration and security reviews. We do not sell or share this information with any third party, unless stated below and for site security and accessibility, also with regards to Cookie Policies and laws.

 

 

  • WHO IS COLLECTING THE DATA?

 

    1. This data is being collected by Minifactorum. We use a password protected data management software to hold our data.

 

The Site uses a WordPress hosting platform through FastHosts Domain. Your data may be stored through WordPress.com’s and Fast Hosts Domains data storage, databases and their general applications. They store your data on secure servers behind a firewall.

 

The site utilises systems that are designed to prevent unauthorised access to any personal data you may submit on the Site. The Site maintains data accuracy and guarantees the correct use of the information under this statement. The systems used at The Site comply with the latest security standards and include necessary electronic, physical, and managerial procedures (Including Administration, see Section 5.), which help to protect the information collected online and to ensure and guarantee its correct and safe use. Nevertheless, due to the fact that no data can be 100% free nor 100% secure on the Internet, nor the WWW, we cannot guarantee that any information submitted to us will be totally safe and secure. Users provide the information at their own risk. The Site constantly assesses and evaluates the abilities of new technologies in providing the additional protection of the information where possible.

 

  • HOW IS IT BEING COLLECTED?

 

    1. The majority of our data is collected directly from you. Whether you fill out a form for us online or in person, or tell us face to face, via the telephone, via e-mail or message.
    2. In some cases, data may be given to us by a third party. This includes if somebody purchases a voucher for you – They will usually give us your name and details to allow us to process their order, and provide our service to you.

 

The use of the https://www.Minifactorum.com/ does not require any personal information when you visit our Site in the course of general browsing or casual use. Should you wish to provide your personal details on the site as part of a product related enquiry or in transacting to receive additional information – any information you provide to us will be protected from unauthorised access and you’ll be informed of exactly how your information is to be used within this privacy policy. The details below state the exact way in which information practices are handled by Minifactorum below;



 

  • WHY IS IT BEING COLLECTED?

 

    1. Most of the data we collect is solely for the purpose of providing you with a service you have ordered, or had ordered for you.
    2. Some of the data we collect is to help provide you with a better customer service (See Section 5 Below) experience through the use of Personal Information
    3. We are required by law to collect and store certain information relating to any order you place with us.This Information allows you to be identified as and an Identifier of purchaser of services or goods of Minifactorum and so includes:
  • Name, date of birth, gender, e-mail address, postal address, telephone number, gaming types, Interests, banking details – (See below), health declaration with regards you require disabled access or special needs. With regards a site or premises for a particular shoot.
  • Credit, Debit card, Direct Debit information, relevant information about your bank account number and sort code or other banking information. Please Note that we do not store your bank or credit card details on our web servers
  • Your usage records and duration of visits with regards Minifactorum Site, venues and events.
  • Your contacts with us, such as a note or recording of a call you make to our contact centre, an email or other records of any contact you have with us.
  • Your purchase/booking information – such as dates of payment owed and received, the services you use and any other information related to your account
  • Your particular preferences for particular products, Services or interests when you tell us what they are; – or when we assume, deduce what they are, depending on how you and your use of Minifactorum products and services

 

​Your Personal Information

​By Personal Information we’re referring to a visitor’s personal name, e-mail address and any other relevant information they deem fit to provide. Personal Information can be gathered via an online contact form, email,  by the posting of a comment in relation to content on the site, or by interacting with one of Minifactorum Social Media/Social platforms (Facebook, Youtube, Instagram, Pinterest, Twitter, Tumblr, Google Apps, Apple Store App’s). We may also request Personal Information when hosting a competition whereby applicants must apply to participate. Or when we are engaged with clients and event work and require specific or required information.

 

  • HOW WILL IT BE USED?

 

    1. Data we collect will be used by Minifactorum to enable us to provide our services and products to you.
    2. Contact data (e-mail addresses) may be used to send you direct offers from Minifactorum about upcoming promotions or newsletters. These can be unsubscribed from at any time.
  • Marketing of our Services;
  • Communicating with you about opportunities, products, services, contests, promotions, discounts, incentives, surveys, and rewards offered by us and select partners;
  • We will only process your information for these purposes where we have your consent to do so.
    1. Minifactorum may internally analyse data for business and forecast purposes.
    2. Minifactorum may internally analyse data for business and forecast purposes.

 

Under no circumstances will any Personal Information be used for anything other than the reason it has been submitted for. We reserve the right to use any Personal Information for promotion administration purposes, including but not limited to verification and notification of winners as applicable.

 

​Any Personal Information obtained regarding an enquiry will be stored within the medium in which it was received and, unless a booking is complete, all Personal Information will be anonymised prior to the date of the event or eight months after final contact is made (whichever is later). Where a booking is made, relevant Personal Information provided by the client will be stored for a period of ten (10) years after the date of the event.

 

All electronic devices where your Personal Information is stored, for example, mobile phone, tablet, digital device (where applicable), Cloud service, online storage, localised Nas and desktop, all contain passwords. Images are stored on digital mediums which are password protected. Any paper documents where your Personal Information can be accessed are stored in a secure, private location only accessible by Minifactorum.

All correspondence to Minifactorum via email, social media, website, contact form, Whatsapp, Messenger, electronic messaging services are password protected and Minifactorum is solely responsible for the handling and managing of all personal data.

 

Some of our processes for how we use your information can involve profiling, automated processing and automated decisions. We need to do this to meet our own contractual obligations, to comply with applicable law (i.e., for fraud prevention, or where we are have a genuine good faith belief we are under a regulatory or legal (lawful) obligation to do so), and is within  our legitimate business interests to engage in such automated processing. See Section 7) For example:

Identity verification: 
  • We, and in the site may engage in profiling and automated processing, both directly and through the use of third party identification verification services, to verify your identity (so we can confirm you appear to be who you claim to be). We set out more information on this above and how this affects you and Section 7. If we cannot identify you, we may not be able to provide the Services to you. This identity verification check will be based on the information you provide to us and the results we get for the third party verification services (which is limited to the result of the check).
Client, staff and Consumer Safety: 
  • We have developed processes, for the purposes set out in our business, to check that our Services are not being used for fraudulent purposes, and to make sure our staff and all relevant persons are treated fairly and safely. We will consider information you provide to access our Services, information you provide to enhance your experience, information we automatically collect from your use of our Services, and information we collect from other sources. We regularly check that our processes are up to date and implemented robustly and fairly to ensure that we can deliver the Services to you and that they are safe to use. If we believe in good faith, through legal and lawful entities and bodies and other approved and noted sources that personal safety, abuses, illegality (where we have prior information) and crime prevention processing detects activities or use of our Services which could be used for criminal or illegal activities, we may not be able to provide the Services to you.
Fraud and crime detection and prevention: 
  • We have robust developed processes, for the purposes set out above, to check that our Services are not being used for fraudulent purposes. We will consider information you provide to access our Services, information you provide to enhance your experience, information we automatically collect from your use of our Services, and information we collect from other sources. We regularly check that our processes are up to date and implemented robustly and fairly to ensure that we can deliver the Services to you and that they are safe to use in the context of job requirements (Without prejudice in this Fraud and Crime detection.). If we believe in good faith that our fraud and crime prevention processing detects activities or use of our Services which could be used for fraudulent or criminal activities, we may not be able to provide the Services to you.
Product development and creation: 
  • We can process the information you provide to us, the information we collect from your use of our Services, site and the information we obtain from third parties automatically to improve our products and develop new products and services. The information we use will help us to understand what is important to our users, and how we can create better products and services.

 

Minifactorum may at times use an assistant, administrator, physical or virtual, or a second shooter, under these circumstances they will have access to your name and telephone number for the duration of the event. All paperwork with this Personal Information on will be destroyed after the event has been carried out.

 

 

  • WHO WILL IT BE SHARED WITH?

 

    1. We take your privacy very seriously. We do not sell your data to third party organisations. There are a few scenarios where some of your data may be shared with third parties to allow us to provide our services to you. These include:
      • Delivery and Postage Service Providers to allow us to send you documentation and orders you have placed. (Information shared includes Name, Address and in some case e-mail address / mobile number)
      • Manufacturers (our or approved printing labs) if we are sending an order directly to you from a lab. (Information shared includes Name, Address and in some case e-mail address / mobile number)
      • Law Enforcement and Legal Requirements – We will provide data to law enforcement agencies if issued with a court order to do so.

 

Personal information shall not be shared with Third Party operators or websites, unless considered necessary when completing your transaction. For example, Minifactorum used Google Drive as a means to distribute final digital material and/or photographs/material to clients; Minifactorum will use your name and images to complete this order. This Site holds no physical, or E-Commerce payment and hosting transaction websites and services; Responsibility for privacy policies on other sites, but endeavours to only work with GDPR compliant companies.

 

 

  • HOW WILL THIS AFFECT YOU?

 

    1. We collect, store and process your data in such a way that should have no negative effect on you as an individual.
    2. We may display any photographs to promote Minifactorum on our website, digital and physical mediums and locations, (See below) within the purview of our business and privacy policies and should have no negative effect on you as an individual.

 

Minifactorum will contact you regarding your enquiry, booking, to collect fees or monies owed, or as otherwise necessary. For these purposes we may contact you via email, telephone, text message, messenger and/or postal mail.

 

Minifactorum may need to disclose Personal Information, when necessary, in the event of insurance claims, legal reasons that may occur. Wherever possible Minifactorum will inform those affected prior to the release of Personal Information.

 

GDPR legislation states that a photograph may contain some form of personal data where they can be processed to allow “the unique identification or authentication of a natural person”. Minifactorum will never photograph an individual as a means of unique identification or authentication unless contracted to do so. Guests at events, conventions, shows, et al, where Minifactorum has either set up as attendees, or been contracted to run events may capture images on a large scale (There noted in these terms as Event/s), appear in photos taken by Minifactorum as a part of the documentation of the event. Guests captured in portraits or in group photos do so as part of the event and their rights are protected by Minifactorum as detailed in this Privacy Policy.

 

In regards to the terms of explicit GDPR compliance, clients and guests are photographed within the parameters of GDPR legislation on the basis of ‘legitimate interests’. The taking of photographs of guests when viewed as a form of processing personal data is necessary for the legitimate interests of Minifactorum as a photography business (And the event sponsor) unless there is a good reason to protect a given individual’s personal data which overrides those legitimate interests. Such interests may be noted but not documented as such because of those conditions.

 

Because of the scope within operating within the parameters of legitimate interests as laid out in GDPR legislation; and the disproportionate nature and effort involved in providing Privacy Policy information to all guests at the event and the degree to which it would distract us from performing our job. Therefore renders it infeasible to do. Booking clients are therefore requested in their contract to direct their guests to read this Privacy Policy in advance of the event and to advise them to contact us in advance with any concerns around the processing of their personal data, namely being photographed.  

 

We may display any photographs to promote Minifactorum on our website, blog, on social media, on photography related websites, magazine article, in exhibitions, in advertising, brochures, and other such material, providing that the images used are used lawfully and without damage to Minifactorum client(s). The rights of the people captured in these photographs are protected by Minifactorum as detailed in this Privacy Policy.

 

  • HOW LONG IS THE DATA STORED AND COPYRIGHT HELD?

 

    1. Most data we collect is stored indefinitely. This is to allow us to provide a better service to you as a customer in the event that you contact us again in the future.
    2. We are legally obliged to store some data for a minimum amount of time, for example sale order records, payment records etc.

 

Minifactorum retains the full copyright of any photographs produced. Images captured at events, by clients, or in use of products we produce will be retained in perpetuity after the date of the event, unless copyright is relinquished by myself or designated representative. 

Your Right to Access information or Withdraw your Data

 

Anyone photographed by Minifactorum, whether a client or guest, and whether past or current may withdraw consent for a photograph in which they appear to be displayed. The process for this is to email  specifying the photo in question. After the request has been made, Minifactorum will take the necessary step to review the request and/or remove the image online.

 

 

  • ACCESS TO STORED DATA.

 

    1. If you have any questions about data we hold about you, please feel free to contact us. As well as trying to help you directly.
    2. You may request a copy of any data we store about you – and we will comply with any requests as per the guidance of the Information Commissioner’s Office.

 

 

  • MORE INFORMATION.

 

    1. If you would like any clarification on how we collect, store or process your data – please contact us directly.
    2. If you would like further information on the legal guidelines we operate within, or have any concerns about how we use your data, please check the ICO’s website
    3. Further Information:

      1. EU GDPR
      2. Data Protection Act 1998
      3. Privacy and Electronic Communications Regulations 2003 (ICO’s)
      4. PayPal Privacy Policy
      5. Stripe Privacy Policy
      6. Square Policy
      7. WooCommerce Policy
      8. Twitter Privacy Policy
      9. Instagram Policy
      10. Facebook Privacy Policy
      11. Google Privacy Policy

 

You have the right to contact Minifactorum at anytime and ask to view the Personal Information that the business has stored on you. You have the right to ask to have such information deleted or removed. If you would like access to your stored data please contact Gary Powell at https://www.Minifactorum.com/

 

Do we use ‘cookies’?

Yes. Cookies are small files that a site or its service provider transfers to your computer’s hard drive through your Web browser (if you allow) that enables the site’s or service provider’s systems to recognize your browser and capture and remember certain information. For instance, we use cookies to help us remember and process the items in your shopping cart. They are also used to help us understand your preferences based on previous or current site activity, which enables us to provide you with improved services. We also use cookies to help us compile aggregate data about site traffic and site interaction so that we can offer better site experiences and tools in the future.

 

We use cookies to:

  • Help remember and process the items in the shopping cart.
  • Understand and save user’s preferences for future visits.
  • Compile aggregate data about site traffic and site interactions in order to offer better site experiences and tools in the future. We may also use trusted third-party services that track this information on our behalf, within our privacy policy.

 

You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser settings. Since the browser is a little different, look at your browser’s Help Menu to learn the correct way to modify your cookies.

If you turn cookies o1ff, It won’t affect the user’s experience.

 

California Online Privacy Protection Act

CalOPPA is the first state law in the nation to require commercial websites and online services to post a privacy policy. The law’s reach stretches well beyond California to require any person or company in the United States (and conceivably the world) that operates websites collecting Personally Identifiable Information from California consumers to post a conspicuous privacy policy on its website stating exactly the information being collected and those individuals or companies with whom it is being shared. – See more at: http://consumercal.org/california-online-privacy-protection-act-caloppa/#sthash.0FdRbT51.dpuf

According to CalOPPA, we agree to the following:

Users can visit our site anonymously.

Once this privacy policy is created, we will add a link to it on our homepage or as a minimum, on the first significant page after entering our website.

Our Privacy Policy link includes the word ‘Privacy’ and can easily be found on the page specified above.

You will be notified of any Privacy Policy changes:

  • On our Privacy Policy Page

Can change your personal information:

  • By emailing us
  • By chatting with us or by sending us a support ticket

 

How does our site handle Do Not Track signals?

We honour Do Not Track signals and Do Not Track, plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.

 

Does our site allow third-party behavioural tracking?

It’s also important to note that we do not allow third-party behavioural tracking

 

COPPA (Children Online Privacy Protection Act)

When it comes to the collection of personal information from children under the age of 13 years old, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, the United States’ consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.

We do not specifically market to children under the age of 13 years old.

Do we let third-parties, including ad networks or plug-ins, collect PII from children under 13?

 

 

Fair Information Practices

The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.

 

In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:

 

We will notify you via email

  • Within a reasonable time, we aim for one working week, from notice and investigation taking place.

 

  • We will notify the users via in-site notification within 7 business days

 

We also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.




 

  • External Website Links and Third Parties

 

    1. The Site does not hold any responsibility for the privacy policies or content of all the other websites that it may link to. 

 

This statement covers all areas in which Personal Information has been received according to information collection practices on www.Minifactorum.com Links located at the Site may be to and from other internet sites, including but not limited to the sites affiliated to the Site. We encourage you to review the Privacy Policy and Terms of Use of any Third Party company we may link to – prior to deciding to submit your personal information on other such sites.

 

  • OUR DETAILS

 

This business is owned and operated by Gary Powell trading as Minifactorum.

Our principal contact for business is : www.Minifactorum.com

 

Part of the Gary Powell Business range: www.Minifactorum.com



 

  • Right to amend our Privacy Statement

 

Minifactorum reserves the right to amend this Privacy Policy at any time. Changes shall be effective right upon posting up on the Site. Last updated April 2019

Questions – www.Minifactorum.com

If you have any questions or concerns about this Statement, you are invited to contact by Email at:

Email: www.Minifactorum.com

 



Abridged Policy

Who we are

Our website address is: http://www.minifactorum.com.

What personal data we collect and why we collect it

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Contact forms

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Analytics

Who we share your data with

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.

Your contact information

Additional information

How we protect your data

What data breach procedures we have in place

What third parties we receive data from

What automated decision making and/or profiling we do with user data

Industry regulatory disclosure requirements