The law relating to data protection is changing on 25 May 2018 when the General Data Protection Regulation (GDPR) comes into force. It is a new piece of EU legislation (Regulation (EU) 2016/679) that will replace the Data Protection Act 1998 and will be in force in the UK until the UK leaves the EU. A new Data Protection Act (DPA) will apply post-Brexit. This is currently being approved by Parliament.
We do not store credit card details nor do we share financial details with any 3rd parties. All payments are processed via PayPal.
YOUR PERSONAL DATA
Whether we are in contact with you because you have ordered books, requested information about our books, submitted work to us, worked with us in any part of the process of publishing a book, applied for a job with us, or any other reason, we may have had to store personal information about you to carry out our work. This includes, but is not limited to: your name, email address, residential addresses, social media identifiers, phone numbers, bank details and photographs. It covers any and all information about you that is capable of identifying you.
‘Personal data’ means any information relating to an individual who can be identified from data. We use this information to carry out our contractual obligations to see that you receive the appropriate payments as well as to help promote your work. Your information is used in pursuance of our legitimate business interests in relation to the rights you grant us. It enables us to operate a safe and lawful business and include our accounting and financial, taxation, legal or auditing obligations. These activities do not override or diminish your rights.
Under the GDPR, we are ‘data controllers’ of your information. We are called ‘controllers’ because we make decisions about how your data is used and we also ‘process’ your data when we carry out basic activities like storing, deleting and changing the information that we hold.
We take our obligation to protect the information you give us very seriously, and we always take care when using and processing it. Where you provide such information, whether that information is also in the public domain or not, we will ensure we have your clear consent before using it. We will also not store that information for any other reason other than to pursue our business in ways described above. We will not sell your information to anyone.
CHILDREN UNDER 13 YEARS OF AGE
No personal information (such as name, address or email address) is collected by, or should be submitted to us by children under 13 without the consent of their parent or guardian.
COLLECTING AND USING YOUR DATA
Sometimes we receive and use information about you from other sources such as publicly available media database and reports. Where this information qualifies as your personal data, it will be treated in the same way as the information we collect directly from you.
SECURITY AND DATA PROCESSING
We take all reasonable precautions to ensure that your personal data remains secure. We have adequate procedures to avoid data security breaches and to protect your data from unlawful or accidental disclosure, damage, destruction or loss.
Your information is processed within Firefly Press for internal management reports and accounting. Outside Firefly Press personnel and our bookkeeper and accountants, we will not share your personal information without your consent.
DATA SHARING AND RETENTION
We will keep your personal data in accordance with our legal obligations. We will not share your information with any third-party (i.e. anyone not acting on behalf of or for Firefly Press) data controllers without your consent.
GDPR is about protecting individuals and their rights in respect of their personal information. It is designed to ensure that an individual can maintain control over their information. Under GDPR you can:
Request access to, deletion of, or correction of your personal data
Request your personal data be transferred to another person
Complain to a supervisory body
WHERE TO FIND MORE INFORMATION AND WHO TO CONTACT
Information is available about your rights and the GDPR here.
We hope this information is useful. Please contact us directly if you have any questions about this note, your rights, our privacy notice or the information we hold about you. You can contact us at firstname.lastname@example.org