Privacy Policy: Kristof Photography

This policy outlines how Kristof Photography collects, uses, and protects your personal data in accordance with UK GDPR and the Data Protection Act 2018.

1. Our Use of Cookies

Our website uses cookies to enhance your browsing experience. These small text files are placed on your device to:

  • Remember preferences: Such as your settings or information you’ve entered so you don’t have to re-key it.
  • Analyze performance: Helping us understand how visitors use the site so we can improve it. You can control or delete cookies through your browser settings at any time.

2. Your Rights Under UK GDPR

Under UK Data Protection law, you have the following rights regarding your personal data:

  • The right to be informed about how your data is collected and used.
  • The right of access (Subject Access Request) to the data we hold about you.
  • The right to rectification of any inaccurate or incomplete information.
  • The right to erasure (“The right to be forgotten”).
  • The right to restrict or object to the processing of your data.

3. Lawful Basis for Processing

We process your personal data under the following legal bases:

  1. Contractual Necessity: To manage your booking, communicate with you, and deliver your final images and products.
  2. Legitimate Interests: As the copyright holder, the Photographer has a legitimate interest in retaining an archive of their artistic work for portfolio, historical, and business purposes.
  3. Special Category Data: Wedding photography may capture data revealing religious or philosophical beliefs (e.g., through ceremony types). By commissioning our services, you acknowledge and consent to the processing of this data to fulfill the creation of your wedding gallery.

4. Data Retention Policy

We follow a “Data Minimisation” approach:

  • Accounting & Business Records: Personal data on invoices and contracts is retained for 7 years to comply with UK HMRC requirements.
  • Client Backup Guarantee: We guarantee to hold a backup of your high-resolution event images for 12 monthsfollowing the event date. Redelivery during this window is subject to an administration and media fee.
  • Long-Term Archive: As the copyright owner, the Photographer may retain a master archive of images indefinitely for artistic and portfolio purposes.

5. Data Storage & Security

Your data is stored on secure, UK GDPR-compliant cloud platforms for booking management and gallery hosting. We use industry-standard encryption and security measures. While we take every precaution, the electronic transmission of data over the internet is at the sender’s risk.

6. Marketing & Image Usage

Photographs from your event may be used for promotional purposes (including social media, our website portfolio, or printed marketing materials) unless a withdrawal of consent is requested in writing. You may withdraw this consent at any time by contacting us directly.

7. Updating Your Details

If your contact information changes, or if you wish to request a copy of the data we hold, please contact us at your registered email address.