GirlyGlam Make-Up Artistry

& Creative Hair Styling

On 25th May 2018, a new data protection law, The General Data Protection Law (GDPR) comes into effect in the UK. GDPR gives you more control over your personal data and greater transparency around how it is used. This privacy policy has been written with GDPR in mind.

Here at GirlyGlam Make-Up Artistry, we take your privacy very seriously and we are committed to maintaining the trust and confidence of both visitors to our website and clients who book services with us. In this privacy policy, you will find information on how we deal with data collected from visitors to our website and our clients including:

-Types of personal data we collect

-How we store & use your data

-How we ensure your privacy is maintained
-Your legal rights relating to your personal data

-How long we keep your data for

Types of personal data we collect:

Personal data means any information that may be used to identify you, such as, your name, phone number, email address or postal address. If you are simply browsing our website, you can do this safely without fear that we are collecting any information that might identify you. (Please see section below on other types of personal information we collect)

However, there is a Get in Touch facility available on this website which will collect and provide GirlyGlam with the information you enter into the text boxes and the tick box preferences you have made. In light of GDPR which is effective from 25th May 2018, we have endeavoured to make sure that the information we request is absolutely necessary and of Legitimate Interest to allow us to process your enquiry. This is otherwise known under GDPR as Legal Basis and is a requirement in law. In addition, we now include tick boxes to allow you to choose how you would like us to maintain contact with us, so that you can be sure your details won't be added to a company newsletter for example if you don't wish to receive such correspondence. 

If you decide to book us for your event, we will of course require further information from you. Practical information such as directions and parking instructions. In addition, most clients will need to complete a medical questionnaire. This is a legal requirement and is a condition of our Public Liability Insurance.

Another example of personal information - Photos, are often taken of our work for two reasons:

1- At make-up and hair trials so that we can have a visual reminder of what we did for your special day. These are never shared before your event date.

2 - On the day of your event so that we can show off our skills to prospective clients on both this website and our social media accounts including but not limited to Facebook, Instagram, Twitter, Pinterest and Google+. 

You will always be asked if you are happy for us to use your images and there is a space on the consultation form for you to sign to say if you are happy or not for images to be shared. 

How we store & use your data

So, what happens to all of that data you give us? 

Everything you provide from the very first contact to your beautiful face on a picture we have taken at your wedding for example, is stored securely and all images are watermarked so they cannot be stolen and used by less scrupulous individuals. We also have a legal duty to inform you that there are two main Data Processors whom we also use to process your information.

1 - Our website provider allows secure access to the Get in Touch forms you complete, copies of which are forwarded to the company email account. Here is a link to their privacy policy: If you would rather not have your details travel to us via Vistaprint, you can instead email your responses to us direct at [email protected]

2 - We use Go Formz, a third-party app to collate and store information taken at your appointment including your medical questionnaire. This is a secure app, completed forms are downloaded onto the company computer. Consultation forms remain on the app until your event, after which they are completely and manually deleted. Here is a link to their privacy policy:

We do not share your information with 3rd parties for marketing purposes and we never will!

How we ensure your privacy is maintained

Everything else you provide is stored on the company computer accessible by the Business Owner (Zoe Hunter) only. This is password protected.  Zoe Hunter also has access to records via a company smart phone for ease of use on location, but this is also password protected and subject to "Two Step Verification".

Your legal rights relating to your personal data

Under GDPR, you have the right to access and amend any of the personal data that we hold. You can also change your mind at any point about how we contact you. To do this, you should simply email [email protected] and your request will be dealt with in a timely manner in line with GDPR rules. 

You also have the right to be forgotten and can do this in exactly the same way - by emailing girlyglam.mai[email protected] However, there are 2 exemptions to this and these are explained in the next section

How long we keep your personal data for

-Emails: We delete emails after 7 years as they often contain information that is connected with your Consultation Forms. However, in most cases these can be deleted upon request. In the event that we cant, we would explain fully the reasons why.

-Consultation forms: We have a legal obligation to keep these for 7 years from the date of treatment in order to satisfy company insurance requirements. For those who were under 18 on the day of treatment, forms have to be kept for 7 years from the date of their 18th birthday. 

-Invoices and Account: To satisfy HMRC rules, these documents must be kept for 5 years after the 31 January submission deadline of the relevant tax year. 

These documents are carefully filed at the end of each accounting year and are not accessed again until the date they can be destroyed unless there is a legal obligation that requires access.

-Images: A selection of images of our clients may be displayed on this website and our Social Media Accounts as listed above. We don't display images without your permission and they can be removed on request. 

Finally - before you go...

Other types of personal data we collect

Cookies -  A cookie is a small text file containing information that a web site transfers to your computer's hard disk for record-keeping purposes and allows us to analyse our site traffic patterns. A cookie cannot give us access to your computer or any information beyond what you provide us. Most web browsers automatically accept cookies; consult your browser's manual or online help if you want information on restricting or disabling the browser's handling of cookies. If you disable cookies, you can still view the publicly available information on our web site.

Google analytics – When someone visits we use a third-party service, Google Analytics, to collect standard internet log information and details of visitor behaviour patterns. We do this to find out things such as the number of visitors to the various parts of the site. This information is only processed in a way which does not identify anyone. We do not make, and do not allow Google to make, any attempt to find out the identities of those visiting our website.

Third Party Links - Our web site contains links to other web sites. We do not control those web sites; therefore we cannot be responsible for the protection and privacy of any information that you provide while visiting those sites. Those sites are not governed by this Privacy Policy, and if you have questions about how a site uses your information, you'll need to check that site's privacy statement. 

Regular updates of the Privacy Policy are completed, requiring you to check back on this Policy from time to time. This version was updated in May 2018.
If you have any questions around this Privacy & Cookie policy, please do Get in Touch