Expressive Arts Productions: Video Production Birmingham

VIDEO PRODUCTION & PHOTOGRAPHY

Privacy policy

1. Introduction

1.1 We are committed to safeguarding the privacy of our website visitors, service users, individual customers and customer personnel.

1.2 This policy applies where we are acting as a data controller in relation to personal data; in other words, where we determine the purposes and means of the processing of that personal data.

1.3 We use cookies on our website. Insofar as those cookies are not strictly necessary for the provision of our website and services, we will ask you to consent to our use of cookies when you first visit our website.

1.4 In this policy, “we”, “us” and “our” refer to Expressive Arts Productions Limited, also known as EAP Films.

2. The personal data that we collect

2.1 In this Section 2 we have set out the general categories of personal data that we may process.

2.2 We may process data enabling us to get in touch with you (“contact data”). This may include your name, email address, telephone number and/or social media account identifiers. If you log into our website using a social media account, we will obtain elements of this data from the relevant social media account provider.

2.3 We may process your website user account data (“account data”). This may include your account identifier, name, email address, business name, account creation and modification dates, website settings and marketing preferences. The primary source of this data is you and/or your employer, although some elements may be generated by our website.

2.4 We may process information relating to transactions that you enter into with us (“transaction data”). This may include your name, contact details, and details of the services purchased.

2.5 We may process information contained in or relating to any communication that you send to us or that we send to you (“communication data”). This may include the content of communications and associated metadata. Our website generates metadata relating to communications submitted via website contact forms.

2.6 We may process data about your use of our website and services (“usage data”). This may include your IP address, geographical location, browser type and version, operating system, referral source, length of visit, page views, navigation paths, and information about timing, frequency and patterns of use. The source of this data is our analytics tracking systems.

3. Purposes of processing and legal bases

3.1 In this Section 3 we set out the purposes for which we process personal data and the legal bases relied upon.

3.2 Operations – We may process personal data for the purposes of operating our website, providing our services, fulfilling contracts, generating invoices and administering payments. The legal basis for this processing is our legitimate interests, namely the proper administration of our business and services.

3.3 Relationships and communications – We may process contact data, account data, transaction data and communication data to manage relationships, communicate with you by email, telephone or post, provide customer support and handle complaints. The legal basis for this processing is our legitimate interests in maintaining and managing business relationships.

3.4 Record keeping – We may process personal data for creating and maintaining internal records, databases and backups. The legal basis for this processing is our legitimate interests in the effective and compliant operation of our business.

3.5 Security – We may process personal data for security purposes, including preventing fraud and unauthorised access. The legal basis for this processing is our legitimate interests in protecting our website, services and users.

3.6 Legal claims – We may process personal data where necessary for the establishment, exercise or defence of legal claims. The legal basis is our legitimate interests in protecting our legal rights and interests.

3.7 Legal compliance and vital interests – We may also process personal data where required to comply with a legal obligation or to protect the vital interests of any individual.

4. Providing your personal data to others

4.1 We may disclose your personal data to our insurers and professional advisers where reasonably necessary for insurance coverage, risk management or professional advice.

4.2 Personal data held within our website systems may be stored and processed by our hosting and software service providers, including Wix.com, Google Workspace, and HubSpot.

4.3 We engage carefully selected third-party partners and service providers who act as data processors on our behalf and process personal data in accordance with applicable data protection laws, including the UK GDPR. From time to time, we appoint digital marketing agencies to conduct outreach and marketing activities on our behalf. As part of these activities, personal data may be processed lawfully and securely.

Our appointed data processors include:

(a) Prospect Global Ltd, trading as Sopro, registered in England and Wales under company number 09648733. Sopro is registered with the Information Commissioner’s Office (ICO) under registration number ZA346877. You can view Sopro’s privacy policy at http://sopro.io. Their Data Protection Officer can be contacted at dpo@sopro.io.

4.4 In addition to the disclosures set out above, we may disclose personal data where required to comply with a legal obligation, or where necessary to establish, exercise or defend legal claims.

5. Retaining and deleting personal data

5.1 This Section sets out our data retention policies, designed to ensure compliance with legal obligations.

5.2 Personal data shall not be retained for longer than is necessary for the purposes for which it is processed.

5.3 We will retain personal data as follows:

(a) Contact data: minimum of 24 months and maximum of 60 months following the most recent contact;

(b) Account data: minimum of 24 months and maximum of 60 months following account closure;

5.4 We may retain personal data for longer where required to comply with a legal obligation or to protect vital interests.

6. Your rights

6.1 You have the following rights under data protection law:

(a) the right to access your personal data;
(b) the right to rectification of inaccurate or incomplete data;
(c) the right to erasure;
(d) the right to restrict processing;
(e) the right to object to processing;
(f) the right to data portability;
(g) the right to complain to the ICO; and
(h) the right to withdraw consent where processing is based on consent.

6.2 These rights are subject to certain legal limitations.

6.3 You may exercise your rights by contacting us at dan@eapfilms.com.

6.4 Further information about your rights is available from the Information Commissioner’s Office at https://ico.org.uk.

7. About cookies

7.1 A cookie is a small file placed on your device when you visit a website.

7.2 Cookies may be persistent or session-based and may be linked to personal data stored by us.

8. Cookies that we use

8.1 We use cookies for the following purposes:

(a) advertising and marketing;
(b) analytics and performance monitoring; and
(c) recording cookie consent preferences.

9. Cookies used by our service providers

9.1 Our service providers may place cookies on your device when you visit our website.

9.2 We use Google Analytics to analyse website usage. Information collected is used to compile reports on website activity. Google’s privacy policy is available at https://policies.google.com/privacy.

9.3 We use Facebook Pixel for advertising and re-targeting purposes. Facebook’s privacy policy is available at https://www.facebook.com/legal/FB_Work_Privacy.

10. Managing cookies

10.1 Most browsers allow you to manage or delete cookies via browser settings. Information is available at:

10.2 Blocking cookies may affect website functionality.

11. Amendments

11.1 We may update this policy from time to time by publishing a revised version on our website.

11.2 You should review this policy periodically.

11.3 Where appropriate, we may notify you of significant changes by email.

12. Our details

12.1 This website is owned and operated by Expressive Arts Productions Limited.

12.2 We are registered in England and Wales under company number 06832913.

12.3 Our registered office and principal place of business is:

International House,
The McLaren Building,
46 The Priory Queensway,
Birmingham,
B4 7LR

12.4 You can contact us:

(a) by post at the address above;
(b) via our website contact form;
(c) by telephone on 0121 630 3607; or
(d) by email at info@eapfilms.com.

13. Data protection contact

13.1 Our data protection contact can be reached at dan@eapfilms.com.