Who we are
Our website address is: https://store.thomasfitzgeraldphotography.com.
What personal data we collect and why we collect it
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
If you purchase from the store, you are required to create an account. This is solely for the purpose of allowing you to re-download your purchases, and to get updates. Creating an account stores your contact details and your purchase history, so you can see yur previous purchases. All of this information is visible to you in the “My Account” section of the website. We require strong passwords when creating an account in order to protect your infomation, and all of your information is encrypted.
Anyone purchasing from the store has their contact details, and purchase history recorded. This is for accounting purposes, and so that you can re-download your existing purchases. We do not store credit card information.
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
We use industry-standard Google Analytics and StatCounter for keeping track of the web traffic to the store.
Statcounter is an online service which helps us to understand our visitors; for example, how visitors find our website, how long they spend on our site, which web pages they are most interested in etc. We use Statcounter because better understanding how visitors are interacting with our website helps us to improve the content, design and functionality of our site. This allows us to offer a better online experience to our visitors.
- Time and date of visit (this can help us to identify and plan for busy periods on our website)
- IP address (this is a numerical label assigned to a device by an Internet Service Provider to enable the device to access the internet)
- Browser and Operating System (this can help us to make sure that our website functions correctly in the browsers/operating systems used to access our site)
- Device Information e.g. device type and screen size (this can help us to make sure that our website functions correctly in the devices used to access our site)
- Referring Data e.g. a search engine link (this can help us to understand which search engines are helping visitors to find our website)
Furthermore, when you visit our website a Statcounter cookie (called “is_unique”) may be placed in your browser. This cookie is used only to determine whether you are a first-time or returning visitor and to estimate unique visits to the site.
Who we share your data with
We use a small number of third-party services to aid in the processing of data. These are as follows:
Taxamo: This is a service to provide the correct VAT rate and accounting to be compliant with EU vat Law.
MailChimp: We use MailChimp to manage the store mailing list. This is only used if you voluntarily check the checkbox on the store checkout, and you will always be sent an additional confirmation email to ensure that you consent before you are signed up to the mailing list. We do not share this list with anyone.
Payment Processors: We use PayPal and Stripe to process payments. These are industry standard payment processors. When you complete a payment, control of the payment process is transferred to these services, and they conduct the transaction. They then pass back an approval or disapproval for the purchase. They do not send us any other data, and the store only sends enough data to complete the transaction.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website or create an account when completing a purchase, we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information. You can request to have this account deleted (see below)
What rights you have over your data
If you have an account on this site or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
Visitor comments may be checked through an automated spam detection service.
Server & Data Location
The business is located in Ireland, but the server we use for this store is based in the USA. This is because we use a third party hosting service, and as a small business, we had to choose the most reasonably priced service with the best collection of tools and services. The hosting company that we chose was the service that we felt had the best combination of services, reliability and security for the price, and that is based in the US. All data on the server is fully encrypted for your security and privacy.
Request Your Data or Request to Delete your Data
To send a request to receive your data, or to erase your data and account, please send an email to firstname.lastname@example.org with the subject “data request”. Please make sure to include the email address that you used for your account. Please note that we will require confirmation of your identity before erasing an account or supplying data.
How we protect your data
Our store is encrypted end to end with industry standard encryption. In addition, our service provider has implemented additional security policies to protect the server. We never store any credit card information. All data on our server is encrypted, and we enforce the use of strong passwords for additional security measures.
What data breach procedures we have in place
The server is constantly monitored for unusual activity, and you will be notified if there are any data breaches.