Privacy Policy

We collect the following types of information: Personal Information: - Name - Email address - Phone number - Postal address Payment Information: - Processed securely through third-party payment providers Project Information: - Project details, preferences, and requirements shared during consultations Communications: - Any communications you send to us, including inquiries and support requests Automatically Collected Information: - IP address, browser type, device information - Pages visited and navigation patterns - Cookies and similar tracking technologies

We use the collected information for the following purposes: - To provide and manage our photography, videography, and content creation services - To process bookings, payments, and deliver final media products - To communicate with you about your projects, inquiries, and our services - To send marketing communications (only with your explicit consent) - To comply with legal obligations and protect our legal rights - To analyze website usage and improve our services

Under the UK General Data Protection Regulation (UK GDPR), we process your personal data based on the following lawful bases: - Consent: You have given clear consent for us to process your personal data for specific purposes - Contract: Processing is necessary for the performance of a contract with you (e.g., providing photography services) - Legal Obligation: Processing is necessary to comply with the law (e.g., tax and accounting records) - Legitimate Interests: Processing is necessary for our legitimate interests (e.g., improving our services, fraud prevention)

We implement appropriate technical and organisational measures to protect your personal data, including: - Encryption of data in transit using SSL/TLS protocols - Secure storage of personal data with access controls and authentication - Limited access to personal data on a need-to-know basis While we strive to protect your personal data, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

We retain your personal data only for as long as necessary: - Client project data: Duration of the project relationship plus seven (7) years - Communications: Retained for two (2) years after last contact - Marketing data: Retained until you withdraw consent or request deletion - Website analytics data: Retained for a period of twenty-six (26) months When data is no longer required, we securely delete or anonymise it.

As a data subject under the UK GDPR, you have the following rights: - Right to Access: Request access to your personal data and information about how we process it - Right to Rectification: Request correction of inaccurate or incomplete personal data - Right to Erasure: Request deletion of your personal data when there is no compelling reason for its continued processing - Right to Restrict Processing: Request restriction of processing of your personal data in certain circumstances - Right to Data Portability: Request transfer of your personal data in a structured, commonly used format - Right to Object: Object to processing based on legitimate interests or direct marketing To exercise any of these rights, please contact us using the information provided below. We will respond within one (1) month.

Our website uses cookies and similar tracking technologies for the following purposes: - Functionality: Essential cookies required for the website to operate properly - Analytics: Help us understand how visitors interact with our website - Performance: Improve website speed and user experience You can manage cookie preferences through your browser settings. Please note that disabling certain cookies may affect website functionality.

We may share your personal data with trusted third-party service providers who assist us in operating our business, including: - Payment processors for secure payment processing - Hosting providers for website and data storage - Email service providers for communications - Analytics providers for website analysis We require all third-party service providers to implement appropriate data protection measures. We do not sell your personal data to third parties.

Your personal data may be transferred to and processed in countries outside the United Kingdom. When we transfer your data internationally, we ensure appropriate safeguards are in place, including: - Standard Contractual Clauses (SCCs) as approved by the ICO - Adequacy regulations for certain countries By using our services, you consent to the transfer of your data under these safeguards.

If you have any questions about this Privacy Policy or wish to exercise your data protection rights, please contact us: Email: info@forgedinframes.com Phone: 07438 532871 Location: United Kingdom If you are unsatisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO): Website: ico.org.uk Helpline: 0303 123 1113