May 19, 2018

Privacy

found form is a sole trader – me: Simon Lownsborough.

I do not have a physical storefront, rather I sell my work through outside retailers such as galleries. You can find my list of stockists here.

You can contact me directly by email or through my website:
contact@foundform.com.au
www.foundform.com.au

I have made every effort to comply with the European General Data Protection Regulation (GDPR). If you have any concerns please contact me.

What data I collect

Because I have an online shop I collect personal data such as your name, email address, personal account preferences; and transactional data, such as purchase information; and technical data, such as cookies.

If you use my contact form I collect your name, email address and the message you send me. By default the plugin also collects your IP address, user agent and the date and time of your request.

If you submit a purchase order I collect your name, billing and mailing address, email address, PayPal Express checkout number, your IP address, the date and time of the transaction and the item/s you purchased.

I have comments turned off on my site so no personal data is collected in that way. However I have comments turned on for my blog.

Any media on this website is owned and uploaded by me. Any media not owned by me is used with permission of the copyright holder and is credited to the owner/creator.

Online purchases

If you make a purchase I collect your name, billing and mailing address, email address, PayPal Express checkout number, your IP address, the date and time of the transaction and the item/s you purchased. This enables me to contact you regarding your purchase if necessary, and to send your purchase to you.

If you use PayPal you are redirected to PayPal and they collect any information regarding payment.

If you make a direct deposit you will be given my bank details to make a transfer.

If you choose Afterpay you will be redirected to Afterpay and they will collect any information regarding payment.

I do not collect banking details – these are collected by your bank, PayPal or Afterpay. Please refer to their respective privacy policies.

You can view Afterpay’s privacy policy here.

You can view PayPal’s privacy policy here.

Cookies

If you leave a comment on my site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Please note this information is for your convenience: I do not have comments turned on for this site.

I use anonymous cookies to prevent users from seeing the same popup (my subscription form) repetitively in an attempt to make my users’ experience more pleasant while still delivering time sensitive messaging.

Comments (blog only)

When you leave a comment on my blog I collect the data shown in the comments form, and also your IP address and browser user agent string to help spam detection.

An anonymised string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Embedded content

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracing your interaction with the embedded content if you have an account and are logged in to that website.

Please note this information is for your convenience: I do not have embedded content on this site.

Analytics

This website stores some user agent data. This data is used to provide a more personalized experience and to track your movements around my website in compliance with the European General Data Protection Regulation. If you decide to opt-out of any future tracking, a cookie will be set up in your browser to remember this choice for one year.

Who I share data with

If you have subscribed to my monthly emails the information you provided has been supplied to MailChimp, my enewsletter service. This service is based in another country. The information I share will only include your email address and your first name (if you provided it).

No other data is shared with any 3rd party.

How long your data is retained

If you leave a comment, the comment and its metadata are retained indefinitely. This is so I can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on my website (if any), I also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

Please note this information is for your convenience: I do not have comments turned on for this site, nor do I have user registration facilities.

If any data has been synced with a 3rd party provider (e.g. MailChimp), data is retained there until unsubscribed or deleted.

Your rights over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data I hold about you, including any data you have provided to me. You can also request that I erase any personal data I hold about you. This does not include any data I am obliged to keep for administrative, legal, or security purposes. Please contact me.

How your data is protected

I use industry-standard WordPress encryption and security measures such as two factor authentication, as governed by the WordPress plugins I use to enable our online shop and contact forms. These plugins, and WordPress core, are kept up-to-date to ensure the latest bug fixes and security measures are in place.

For my online shop I use WooCommerce, one of the most respected and used storefronts available for the WordPress platform. WooCommerce is kept up-to-date, and includes industry-standard data protection and privacy reflecting the needs of the European General Data Protection Regulation (GDPR).

Data breach procedures

I use an internal reporting system that issues reports on all data breach attempts and is constantly updated to ensure the latest security measures are in place.

Third party data

I do not receive any information or data from any third parties.

Automated decision making

I do not have any automated services on my site.

Subscription forms

If you submit an subscription form on my site you will be opting in for me to save your name, email address and other relevant information. These subscriptions are so I can notify you about related content, discounts & other special offers.

You can opt out or unsubscribe at any time in the future by clicking the unsubscribe link in the bottom of my enewsletters.