Privacy & Cookies Policy

Hello you! If you’ve clicked here it must mean you care a lot about your data privacy and the recent GDPR implementation. If you’re here by accident and you don’t know what GDPR is, it stands for General Data Protection Regulations.   Anyhoo, read on if you’d like to learn about how I collect and handle data and all things GDPR.

I’ve created this policy which covers how I, Anja Poehlmann – photo and film, collect, use, disclose, transfer and store your data. For this, I get the very important title of “Data Controller” …. Exciting stuff, ey?!

1. Introduction and General Terms

In order to provide you with my services, I sometimes need to collect information about you. This Privacy Policy relates to my use of any personal information you provide to me via forms on my website(s), by phone, SMS, email, in letters or other correspondence and in person.
This policy explains the following:

what information I may collect about you;
how I might use the information I collect about you;
whether I will disclose your details to anyone else;
your choices regarding the personal information you provide to me;
my data security measures;
website ‘Cookies’ and usage data.

In line with the EU General Data Protection Regulation (GDPR) and other relevant privacy and data protection legislation I am committed to safeguarding your personal information. Whenever you provide such information, I am legally obliged to use your information in line with all applicable laws concerning the protection of personal information (these laws are referred to collectively in this Privacy Policy as the “data protection laws”).

My website(s) may contain hyperlinks to websites owned and operated by third parties. These third party websites have their own privacy policies and so you should probably review them. They will govern the use of personal information you submit when visiting these websites. I do not accept any responsibility or liability for the privacy practices of such third party websites and your use of such websites is at your own risk.

2. Information not contained in this policy

More details concerning the collection or processing of Personal Data may be requested from me, the Data Controller, at any time. Please see the contact information within this document.

3. The Owner and Data controller – Who am I?

I am Anja Poehlmann – photo and film. Because a lot of the work I do is in the field, my Registered Office is my home address. Because I don’t want to splurge that all over the internet I’m not going to list it here. But anyone can request it directly from me at any time and I will not reasonably withhold this information. At this point in time by business is a Sole Trader and therefore I don’t have a company registration number to give you you.

You can contact me, the Data Controller, by telephone on 07873 501955 or by email on anja@anjapoehlmann.com. My website is anjapoehlmann.com (but I guess you know that already, given you are reading this on here).

When we refer to “I” or “we” or “our” or “AP” I am referring to Anja Poehlmann – photo and film.

4. What information would AP collect about me?

When you visit my website(s) and provide contact information to me via electronic forms on the website(s), or contact me by phone, SMS, email, in letters and other correspondence and in person I may receive personal information about you. The data may include some, or all of the following information: your name, email address and mobile telephone number, together with information about you, your family and other information that you may deem personal.

I will always do my very best to ensure that this information is kept safe at all times. I will keep the data about you for as long as it is believed to be accurate and up to date. I may remind you periodically of your rights regarding your data, and to update your preferences so your changing wishes may be respected by me. You may object to your data being used by me at any time.

If you use The Brand Mirror tool on my website, I will collect your name, email address, website URL, business information and answers to questions about your visual presence. This information is used to generate a personalised online presence review. Your website’s publicly available content will be analysed by artificial intelligence (OpenAI) to produce your review. By submitting the form you consent to this processing.

5. Will you (AP) share my personal information with anyone else?

I will not share your personal information with any third parties for their own marketing or commercial purposes. However, in order to provide my services I use a number of trusted third party data processors who may handle your data on my behalf. These currently include:

OpenAI — AI analysis of website content via The Brand Mirror tool (data processed in the United States)
MailerSend — transactional email delivery
MailerLite — email marketing and subscriber management
Notion — internal data storage for lead management
Dubsado — CRM, client management and lead forms (data processed in the United States)
Pic-Time — online client gallery delivery and storage (data processed in the United States)
Stripe — payment processing (data processed in the United States)
TidyCal — call scheduling and booking (data processed in the United States)
Google Drive — occasional document and file storage (data processed in the United States)
Vimeo — video hosting and delivery (data processed in the United States)
Imagen AI — AI-assisted photo editing (data processed in the United States)

All third party processors are required to handle your data securely and in accordance with applicable data protection law. An updated list of these parties may be requested from me, the Data Controller, at any time.

Your privacy is of the highest importance to me and I will never release or transfer your personal details to anyone outside my company for their own mailing or marketing purposes without your prior and direct written consent.

6. Your choices and rights regarding the personal information you provide to me

Your privacy is very important to me which is why I make sure you’re always in control of what I do with your personal information. You will always have the right to withdraw your consent to me holding this data and using it to communicate with you. My keep-in-touch emails will always include an ‘unsubscribe’ link that once clicked will instantly remove your email address from any marketing mailing lists I have. You can contact me by email (using the contact details set out in this policy) to inform me that you wish to withdraw your consent and I will erase your personal information from my database.

You have the right to rectify inaccuracies in the data, to request restriction of processing through suppression from supplied data, to object to processing, to request an electronic copy of the data I hold about you (which we will supply in electronic form) to enable portability, and to request erasure.

You also have the right to lodge a complaint with the supervisory authority who is the Information Commissioner’s Office www.ico.org.uk. But hopefully you’ll never ever need to!

7. Data security

I take data security very seriously and all such information is held on secure servers. I’ll always comply with the relevant legislation, and I’ll treat all your personal information as fully confidential. In order to protect your privacy, I take appropriate security measures in the storage and disclosure of personal information so as to prevent unauthorised access by third parties. In some cases, your Data may be accessible to certain types of persons in charge, involved with the operation of our business (administration, sales, marketing, legal, system administration) or external parties (such as third-party technical service providers, mail carriers, hosting providers, IT companies, communications agencies) appointed, if necessary, as Data Processors by me. I will only choose to work with third party data processors that we are confident share the same approach to data security, privacy and GDPR. I will do everything we reasonably can to ensure your data remains safe with them. An updated list of these parties may be requested from me, the Data Controller, at any time.

However, do remember the Internet is not a totally secure medium and you acknowledge and agree that I shall not be responsible for any unauthorised use, distribution, damage or destruction of personal data, except to the extent I am required to accept such responsibility by data protection laws.

8. Website ‘Cookies’

Cookies are small files that a site or its service provider transfers to your computer’s hard drive through your web browser that enables sites or service providers to recognise your browser and to capture and remember certain information.

This website uses Google Analytics to help analyse how users use the site. Google Analytics uses ‘cookies’ to collect standard Internet log information and visitor behaviour information in an anonymous form. The information generated by the cookie about your use of the website (including your IP address if you have not opted out) is transmitted to Google. This information is then used to evaluate visitors’ use of the website and to compile statistical reports on website activity for our internal use.

I will never use the statistical analytics tool to track or to collect any Personally Identifiable Information of visitors to our site. Google will not associate your IP address with any other data held by Google. Neither we nor Google will link, or seek to link, an IP address with the identity of a computer user. You can read the Google Analytics Terms of Service here. Place of data processing: United States

My website is designed using WordPress. They are fully secure and ready to beat GDPR requirements. You can read their Terms of Service here. Place of data processing: United States.

9. AI Processing

The Brand Mirror Tool and AI Processing: The Brand Mirror is a free online presence review tool. When you submit the form, your website’s publicly available homepage content is analysed using artificial intelligence provided by OpenAI. No sensitive personal data is submitted to OpenAI — only your website’s publicly available content and your answers to general business questions. The review generated is AI-assisted and intended as a strategic starting point. By using this tool you consent to this processing.

10. Changes to this privacy policy

I reserve the right to make changes to this privacy policy at any time by giving notice to my users on this page. I recommend you check this page periodically, referring to the date of the last modification listed at the bottom. If you object to any of the changes to the Policy, it is your responsibility to cease using this Application and can request that we (the data controller) remove the Personal Data. Unless stated otherwise, the then-current privacy policy applies to all Personal Data we have about our users.

11. Contacting me about this Privacy Policy

If you any questions or comments about this Privacy Policy please contact Anja Poehlmann:

Tel: 07873 501955
Email: anja@anjapoehlmann.com