Last updated: 30 January 2020
It explains what happens to any personal data you share with us or we collect from you either directly via this Website or via email.
Certain businesses are required under the General Data Protection Regulation (GDPR) to have a data controller. The data controller for this Website is Kevin Carlton, who can be contacted via email at firstname.lastname@example.org.
In operating this Website we may collect and process the following data about you:
1.1 Details of your visits to our Website and the resources you access, including but not limited to IP address, location data, weblog statistics and other communication data.
1.2 Information you provide by filling in forms on our Website, such as when you make an enquiry about our services, sign up to our mailing list or leave a comment on our blog.
1.3 Information provided to us when you communicate with us for any other reason.
The way in which we process, store and use your data depends on the nature in which it was supplied it to us, as follows:
2.1.1 To monitor the performance of our Website, we use third-party analytics tools to track your visit. The details they collect include the IP address of the computer/proxy server you use to access the Internet, the operating system (OS) of your computer or mobile device, your internet service provider (ISP), your geographical location, the type of web browser you use and, where applicable, the URL of the referring website from which we acquired your visit.
2.1.2 These tools are certified under the EU-US Privacy Shield framework, under which they may lawfully transfer the details of your visit to a location outside the EU/EEA.
2.1.4 You can control or delete cookies as you wish. To find out more, visit the All about Cookies website.
2.1.5 You can disable cookies in the settings of most browsers. However, if you choose to decline them you may not be able to enjoy the full functionality of our Website.
2.2.1 All information you supply through our contact page and online enquiry form is delivered to us by email using Microsoft Office 365. We use two-factor authentication (2FA) to access all Office 365 accounts under our control.
2.2.2 We will not share your data with anyone else other than where necessary to deliver the services you request, to meet our contractual commitments to you or in the circumstances set out in Section 4.
2.2.3 We will not add your email address to any mailing list. However, by contacting us, you consent to being added to our address book of contacts so we can keep in touch throughout our dealings with you.
2.2.4 If you become a paying customer of Write Online, we may contact you again from time to time about your content marketing requirements or any of our services that may be of interest to you. This will be on a personal and individual basis, without the use of list-based email marketing systems. You can request we no longer do this at any time by contacting our data controller, Kevin Carlton, at email@example.com.
2.3.1 All signups to our blog are double opt-in, whereby we send you an email containing a link through which you confirm your subscription.
2.3.2 By confirming your subscription, you agree to your email address being collected and added to our mailing list.
2.3.3 You can unsubscribe from our mailing list at any time – either by clicking on the unsubscribe link in the footer of our email updates or by sending your request to our data controller, Kevin Carlton, at firstname.lastname@example.org.
2.3.4 We will only use your email address to send blog post updates and any other relevant information about our services.
2.3.5 We will not share your email address with anyone else other than in the circumstances set out in Section 4.
2.3.6 We use Atlanta-based email marketing service MailChimp to manage the personal data we collect about our subscribers. It may transfer information about European data subjects outside the EU/EEA for processing and storage in the US. However, through its participation in the Privacy Shield framework, MailChimp provides adequate safeguards to protect your information and meets the compliance requirements set out in Chapter V of the GDPR. By subscribing to our blog, you agree to this transfer, processing and storage.
2.3.7 We will only store your data as long as our blog remains active.
2.4.1 When you submit a comment to one of our blog posts, your name, comment and any URL you supply will be published in the comment stream. However, we will not show your email address.
2.4.2 We will neither add your email address to our mailing list nor share your data with anyone else other than in the circumstances set out in Section 4.
2.4.3 The email address you provide in our comment submission form, along with your name, comment, URL (where applicable) and IP address, will be stored securely in a self-hosted WordPress content management system (CMS). The CMS is regularly maintained and updated by data controller, Kevin Carlton, and protected with the aid of WordPress security tools such as the Wordfence plugin and two-factor authentication (2FA).
2.4.4 Should you subsequently decide to withdraw your comment and all associated data, please send your request to our data controller, Kevin Carlton, at email@example.com.
3.1 Where we have given you or you have chosen a password to access areas of our website, you are responsible for keeping this password confidential.
We may only disclose your personal information to third parties:
4.1 Where we sell any or all of our business to a third party.
4.2 Where we are legally required to disclose your information.
4.3 To assist fraud protection and minimise credit risk.
You may find links to external websites on our Website. These third parties should have their own privacy policies, which you should check. We do not accept any responsibility or liability for their policies whatsoever as we have no control over them.
Under the GDPR, you are entitled to a copy of the personal data we hold about you. We will provide this free of charge. However, any subsequent request may be subject to a payment of GBP 10.00, which covers reasonable expenses in providing you with this information. Should you wish to obtain the personal data we hold about you please contact us using the details below.
If you have any queries, comments or requests in relation to this policy please contact our data controller, Kevin Carlton, at firstname.lastname@example.org.
If you would prefer to write to us then our contact address is: