Lyndsey Ann Photography’s GDPR Compliant Privacy Policy


What is GDPR?

The General Data Protection Regulation (GDPR) is a legal framework that sets guidelines for the collection and processing of personal information of individuals within the European Union (EU).

The new EU regulations as of 25th May 2018 require me to outline to you, how I collect, process and store your written personal data. However it has not yet been confirmed by the government if your face is your personal data.

Therefore I will continue to seek permission from you (as I always have done) before I share photographs from your Wedding, Newborn or Portrait session on my website and social media or anywhere else for that matter. I totally respect your privacy and understand that not everyone wants their personal photographs on the internet.

Personal data I collect and how I store it?

When you contact me using my contact form, I collect your name and email address. You can also provide me with your contact number if you would like me to call you back. There are a few other fields on my form, but these are not required in order for you to send the message to me. I collect your basic information so that I can respond to your enquiry.

If you choose to email me directly, I will have any personal information you provide, likely your email address and your name unless you specifically provide me with any other details here.

This information is sent to my secure password protected email inbox and then stored on my secure GDPR compliant database software called Light Blue. I store this information so that I can keep track of enquiries and bookings that come through my business, which in turn helps me run things sucessfully.

If you enquire and decide to book me - fantastic! I then collect a little bit more information such as your home address, contact number and more specific details about your event. This is so that I can do the job you have booked me for! I will also email you a contract to sign and a wedding questionnaire form to fill in. You may receive a model release form if you have booked me for a portrait or newborn session. All this information is stored on a very secure password protected website.

Blog commenting

I have a blog on my website where I showcase some lovely galleries. If you decide to comment on one of my posts, please bear in mind they are very public. So please do not post any personal data here. If you do so by accident, please just contact me and I will be happy to remove the comment for you.

Right of confirmation, access, rectification and erasure

If you have any questions about how your personal data is handled, please just send me an email and I will be happy to show you the information that I have stored. As said above I only store the information that you give me. If any of the information I have is incorrect, please let me know and I can update it. You also have the right for me to delete all of your personal data, however I wouldn’t recommend this if you have booked me to photograph your event as this information really is super important for me to keep track of the work I have booked in my diary and to ensure that I get to the correct venue or address on the right date.

I tend to keep basic contact details of my clients for the duration that I store your galleries on my system. This is in case I need to get in touch with you - however if you want me to delete your details entirely, please just let me know.

If you would like to receive marketing information from me, such as offers and discounts, you will need to opt in to this through a separate form on my website. I don’t market to you automatically assuming you want this information.

Use of your data

I will use your data to contact you about the event you have booked me for. That’s it. I respect your personal data and privacy. So I won’t contact you about anything else.

Use of your face-based data

When it comes to your photographs, the EU hasn’t been too specific about what that means for working photographers apart that we need to demonstrate reasonable and legitimate use. I can tell you that I won’t sell your wedding photos or put them anywhere without your consent or knowledge.

There’s a couple of things I do to run my business, like show my work on facebook, instagram and my own website. I do ask couples to opt into this in my contract, but you can always decide to keep your wedding or baby photos private. I have shot a lot of weddings, newborns and family sessions that no one has seen, at the end of the day I respect that some people don’t want to be on the Internet.

Even if you don’t specify that you want out, I will actually ask you directly after the event as well if you’re ok with me putting you and your guests on my website. You can let me know any specific photos you don’t want shown and it is your responsibility to ask your guests’ permission.

I store photos of you on my secure system at home and I also keep a copy of your faces with an online gallery provider that is GDPR compliant.

I can assure you that I am a nice person that won’t use your personal data for anything other than my job role.

If you have any further questions about my GDPR Policy please just drop me an email to