Privacy Policy

CmV Studio is committed to protecting and respecting your privacy and will always use your information in accordance with the Data Protection Act 1998 and the General Data Protection Regulation (GDPR) (EU) 2016/679. Please read the following privacy policy to ensure you understand how we use and protect information you provide to us. The internet is a global environment, which means the collecting and processing of personally identifiable information, involves the transmission of data on an international basis. Your use of this website signifies your consent to us collecting, processing and storing personal data about you, as specified in accordance with this policy statement.

​

CmV Studio is responsible only for the privacy statement and content of the website www.cmvstudio.co.uk. 

CmV Studio is not responsible for the privacy practices or the use of cookies, on websites that you have accessed this website from, or sites that you access from this website. Each website should have their own privacy policy and you consent to their use of your data through your use of their site.

​

WHAT PERSONAL INFORMATION DO WE COLLECT ABOUT YOU AND HOW?

Personal information you give us may include but is not limited to: your name, delivery address, e-mail address, preferences, phone number, technical data (such as internet protocol (IP) address, browser usage) and financial and credit/ debit card information.

We may collect personal identification information from you in a variety of ways, including, but not limited to: when you visit our site, register an enquiry on the site, place an order, leave a review, subscribe to the newsletter, respond to a survey, fill out a form, interact with social media functions and in connection with other activities, services, or resources we make available on our website, over the telephone or when you visit our studio. We will collect information about your tastes and preferences, both when you tell us and by analysis of customer website traffic, including using ‘cookies’ (as per cookie policy below).

 

Sensitive information

It may be that some of the personal information you give us (for example, about your health and age) is sensitive personal data within the meaning of the Data Protection Act 1998. Such information (‘sensitive information’) will only be disclosed with your express consent. This will be processed in accordance with Article 6 and Article 9 (2) of the GDPR for Special Category Data.

​

HOW DO WE USE YOUR INFORMATION?

Your information allows us to provide you with access to all parts of our website, notify you about changes to our services, supply you with goods and services you have requested and communicate with you in regards to your order before and after your appointments.  We will also use and analyse information so that we can administer, support, improve and develop our business. We may provide aggregate statistics about sales, customers, traffic patterns and information to third parties, but these statistics will not include any information that identifies you.

The information you provide to us may be accessed by or given to third parties, who may process information outside the European Economic Area (EEA). Those parties process information, fulfil and deliver orders, process credit card payments and provide support services on our behalf. All such third parties are bound by the terms of our Privacy Policy and they are not permitted to use your personal information for their own marketing purposes (unless you have specifically consented to this).

​

LEGAL BASIS FOR PROCESSING

We will only process your personal information as the law permits as detailed in this privacy policy. The lawful bases upon which we process your personal information will depend on where and how we received the information but will fall under four categories:

​

LEGITIMATE INTEREST: the processing is necessary for the legitimate interests of us or a third party, where such interests are not overridden by your rights or your interests. This would include anywhere you would reasonably expect us to process your personal information whilst providing any of our services such as booking an appointment and processing payments.

CONTRACT: the processing is necessary in order for us to fulfil our contractual obligations to you;

CONSENT: you have provided consent for us to process your data (such as marketing) and are able to withdraw your consent at any time;

LEGAL OBLIGATION: the processing is necessary for us to comply with the law.

 

HOW DO WE STORE AND PROTECT YOUR INFORMATION?

We have strict security procedures covering the storage of your information in order to prevent unauthorised access and to comply with the terms of the Data Protection Act 1998. This means that sometimes we may ask you for proof of identity or for other personal information before we can process your call or enquiry further.

When you make an appointment for one of our services, your personal information is stored in our cloud-hosted reservations system “Wix” which is a PCI certified level 1 service provider. 

Financial information will always be verified and processed using a secure, reliable and fully PCI compliant online payment processing gateway. We also ensure sensitive and private data exchange between the site and its users happens over a secure socket layer (SSL) secured communication channel and is encrypted and protected with digital signatures.

Personal data will be shared internally within the business departments when required, in order to provide the various services we offer. This is on a ‘need to know’ basis and all personnel are aware of the importance of confidentiality and privacy.

We will store your personal information only for as long as it is necessary to fulfil our service to you, for business or legal purposes, or in accordance with applicable laws.

​

RIGHT OF ACCESS, RECTIFICATION AND ERASURE

If you have given us your personal data, you have the right to ask us the scope of information we process about you, the purpose and nature of processing and information on who we share it with. You can also request to update, correct or delete it at any time, (we may need to retain certain information for legal or administrative purposes, such as record keeping or to detect fraudulent activities). You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However we may charge a reasonable administration fee if your request is clearly unfounded, repetitive or excessive. In these circumstances we may alternatively refuse to comply with your request. As a security measure, we may require proof of your identity before we make any changes to your information or provide a copy of your information.

If you would like a copy of the information held on you please write to us at contact@cmvstudio.co.uk. If you believe that any information we are holding on you is incorrect or incomplete, please write to us as soon as possible at the above email address. We will promptly correct any information found to be incorrect.

​

DISCLOSURE OF PERSONAL INFORMATION

We reserve the right to access and disclose individually identifiable information to enable us to comply with applicable laws and lawful government requests to operate its systems and to protect itself or its users. Unless required or permitted to do so by law, we will not otherwise share, sell or distribute any of the information you provide to us without your consent.

In the event that CmV Studio or any part of its business is sold to, or integrated with another business, CmV Studio may disclose your personal information to the new owners. The access of such parties would be limited to the provision of this privacy policy including continuing to provide you with the same services and marketing services as are currently provided by CmV Studio.