Data Protection Statement.

Introduction

  1. This policy sets out how Sophie Barlow, trading as Button Belle Editorial Services, will protect the personal data of her business contacts, primarily clients and potential clients. It may also include people involved in projects she works on, service and product suppliers, and editorial colleagues. This policy is intended to ensure compliance with the General Data Protection Regulation (GDPR).

Collection of data

  1. Sophie Barlow acts as both Data Controller and Data Processor. Sophie Barlow is a sole trader and does not employ or subcontract to other service providers.

  2. Data collected on the website https://buttonbelle-editorial.com/ is controlled and processed by Squarespace.com. You can read their privacy policy here: https://www.squarespace.com/privacy. As administrator of this website, Sophie Barlow can view the IP address, email address, blog or website address, and name given when a user submits a comment on this website. These details are not processed or stored by Sophie Barlow and will not be disclosed to any third parties.

  3. Sophie Barlow may collect the following data from individuals: email addresses, telephone numbers and postal addresses.

  4. Sophie Barlow does not use mailing lists or client details for marketing correspondence.

Storage and use of data

  1. Data will be stored by Sophie Barlow on a secure, password- and firewall-protected hard drive. It may backed up on an external, password-protected and encrypted USB drive.

  2. Email addresses used for correspondence are automatically recorded by Sophie Barlow’s email service provider (Gmail.com). They are not stored in a separate file. No email address will be disclosed to a third party without the permission of the email address user.

  3. Telephone numbers provided by clients or potential clients will be stored along with the relevant project documentation. This information will only be used to contact the individual about their project. Phone numbers may be stored on a pin-number protected phone, if necessary.

  4. Postal addresses are used for invoicing purposes, and may be used to contact the individual about their project. This information will be stored with the project documentation and in an archive of invoices.

  5. All data will be used for business purposes relating to specific projects. No data will be shared with third parties without prior express permission or unless Sophie Barlow is legally obliged to do so.

Security

  1. Data is stored on a password- and firewall-protected computer, or within a password-protected email account that makes use of two-step verification. Backed-up files are stored on a password-protected, encrypted USB.

Rights of data subjects

  1. Data will be held for at least 6 years. Unless the data is required for tax or legal processes, clients and business contacts may request, at any time, that any details held on them are deleted.

  2. Sophie Barlow respects the rights of data subjects to be told, on request, what details she holds on them, and to ask for that data to be updated, deleted, restricted or moved to another party (subject to any legal requirements).