Privacy Policy

This privacy policy is for this website {} and served by John Starns Photography and governs the privacy of those who choose to use it.

What Information is being collected?

I will only receive details that you choose to send to me – typically your name, address, email address and phone number or any combination of this data and specifics of a party venue  or shoot location for instance.

Who is Collecting it?

Data will primarily be collected by me as described above. There are a few notable exceptions however. If you order a print or prints via an online gallery on my website, or if you pay for one of my photography courses, your details will be added to the Pixieset (gallery provider) or Stripe (online payment platform) databases. They will both have their own privacy policies and will be GDPR compliant, so there will be nothing to worry about with regard to privacy.

How is it Collected?

Your data reaches me when you phone, email me, use my contact form or sign up to receive my newsletter. You may also register using your email to view a gallery or place an order.

Why is it being Collected?

In all of the instances described above, I am only collecting your details so that I can contact and communicate with you regarding your enquiry. I am not doing this for any other purpose.

Who will you Share my Data with?

Your data is not shared. The only exceptions as mentioned earlier are Pixieset (gallery provider) or Stripe (online payment platform) databases. You could not register to view one of my password protected galleries for instance without submitting your email address and you would have to provide your credit card and personal details in order to make an online purchase. These companies in question are GDPR compliant. 


My website uses Google Analytics which I use to view which pages and blog posts attract the most (or least) traffic. Aside from audience demographics, that is the extent of my use of this data.

Check out my Cookie Policy here

How is your Data kept Secure?

All of my IT infrastructure is secured using a mixture of alphanumeric and symbols.

I use Backblaze to archive data and Dropbox and (occasionally) Wetransfer to securely transfer data. All are GDPR compliant.

Photographs are stored online on remote servers and no personal information other than an identifying surname is stored on them.

All servers, routers, computers and smartphones are software updated as and when manufacturers make it available and are password protected.

My website uses HTTPS security protocol where all information transmitted to and from it is encrypted.

Contact and Communication

I take a proactive approach to user privacy. The use of this website is possible without any need to divulge personal data. If you wish to contact me via my website contact page or by email, processing of your personal data will become necessary.

I make every effort to create a safe and secure communication process, either by my website contact form or via email, but users do so entirely at their own risk. Internet-based data transmissions may not be totally secure, so absolute protection cannot be guaranteed. For this reason, anyone wishing to make contact is free to transfer personal data to us via alternative means, e.g. by telephone.

The processing of your personal data, such as your name, address, e-mail address, or telephone number, will always be in line with the General Data Protection Regulation (GDPR), and in accordance with UK specific data protection regulations.

Electronic Newsletters

This website occasionally sends out newsletters via email to inform subscribers of services and special offers. Subscribers sign up via an online automated process at their own discretion. Some subscriptions may be manually added via sign ups at fairs and other events where they might register interest. All personal details are held securely in accordance with the Data Protection Act. No personal details will be shared with third parties or anyone outside of this website. Subscribers may request a copy of personal details held by writing to the business address at the bottom of the document. Email marketing campaigns may contain facilities to track within the email. Tracked activity may include the opening of emails, clicking of links within emails along with dates, times and frequency of activity. 

Once I have consented for you to collect my data can I withdraw my consent?

Absolutely, subscribers may unsubscribe at any stage they wish either by responding to the automated email unsubscription system (email will contain an ‘unsubscribe’ link) or by contacting me directly requesting I do so.

Newsletters are sent via Mailchimp’s marketing automation platform which is GDPR compliant.

Storage of Data

Digital images are stored online for a minimum of 3 years. If you wish your images to be removed from my system at any time, please contact me and I will do so. It is your responsibility to ensure that you have back ups of your digital images. I do not use any form of software such as facial recognition to process your biometric data.

External Links

John Starns Photography cannot guarantee the contents of any external links appearing on this website. Users are advised to proceed with caution before clicking on any links, although they are to the best of my knowledge, secure at the time of writing. Any user clicking on an external link does so entirely at their won risk.

Name and Address of the controller

Controller for the purposes of the General Data Protection Regulation (GDPR), other data protection laws applicable in member states of the European Union and other provisions related to data protection is:

John Starns Photography

Cypress Cottage,

Chart Road,

Sutton Valence



United Kingdom

Phone: 07790634140




Interested in booking a shoot with me? That's great! Call me, send an email or use the Contact Form and I'll get back to you as soon as possible!

07790 634140