Privacy Policy


Data Protection / Privacy Policy
This Privacy Policy was created in line with the GDPR (General Data Protection Regulation) issued May 2018. While this legislation formally applies only to European citizens, we choose to apply it to everyone we deal with.

Who I am
My name is Sue Brown. I manage the websites and newsletters listed below, including acting as Data Protection Officer for them. I solely own all of the sites. Note that for the purpose of this policy, “website” includes all social media operated by me.
You can contact me at any time sue@suebrownstories.com.
Official sites:
§  Sue Brown’s Stories – includes a blog subscription option
§  Patreon – includes a blog subscription option for certain rewards
§  Other social media:
Facebook Facebook Page | Twitter Amazon Goodreads | Google + | Pinterest | Instagram
The purpose of these sites and newsletter is to discuss and promote my own writing, and occasionally to promote other books and authors.
Websites
Data collection: visitor statistics
The IP address is collected for all visitors to the sites, as part of maintaining overall visitor / site traffic statistics. See below for how this information is used.
Data collection: comment forms
The websites may include comment forms on all posts and pages, which you can use to contact me or to participate in discussion, if you choose. The following personal data may be collected via the comment forms:
§  Your name as given by you.
§  Your email address.
§  Your current IP address.
§  Your website address, if you provide it.
Other visitors to the website will only see your name and your comment. If you provide a website address, it will be linked to your name so that people can visit your site if they wish.
I will never ask you to provide any other personal data. However, if you choose to do so via your comment text, that data will also be covered by this policy.
Data collection: other forms
From time to time, similar data may be collected via forms for giveaways, event pre-orders, opinion polls, and so on. I will always explain what the data is being collected for, and never ask for more data than is necessary for the purpose.
Opt-in checkboxes
Forms will now include an opt-in checkbox.
By selecting / checking this box, you are acknowledging that your personal data can be stored and used in line with this Privacy Policy.
You are also confirming that either you are at least 16 years of age or that you have parental consent for opting-in.
You will not be able to post a comment without selecting this checkbox.
Purpose of the data collection
Your name and email address enable notifications to be sent to you of any replies to your comment. Your name also helps organise and personalise any comment threads.
Your IP address also helps me automatically filter out spam comments.
Your IP address also feeds into my visitor statistics. I only view this data in the aggregate, but it is useful to know, for example, what proportion of visitors come from which countries. The IP address also helps me eliminate statistical data associated with bots rather than real people.
Your website address is only used to create a link to your site from your comment, as a courtesy.
Data storage
The data collected via the websites is stored securely via the web-host (currently Blogger) and is only accessed via a password-protected user account. If this stored data is ever downloaded to a local laptop or other device for a valid purpose as explained in this policy, it is immediately deleted after use.
Comment notifications are received by the site owner via email, and are deleted immediately after reading.
Newsletters
Data collection
You can subscribe to my newsletter, if you choose. Subscription forms are included on my blog, website, and other social media, or you can ask me to subscribe you directly. The following personal data is collected:
§  Your email address.
§  Your name(s), as you provide them.
§  Your current IP address.
I will never ask you to provide any other personal data.
Double opt-in
When you subscribe (or when I subscribe you) to the newsletter, you will be sent an email asking you to confirm that you definitely want to go ahead. This is known as double opt-in.
By confirming your subscription to the newsletter, you are acknowledging that your personal data can be stored and used in line with this Privacy Policy.
You are also confirming that either you are at least 16 years of age or that you have parental consent for opting-in.
You can unsubscribe (or ask me to unsubscribe you) at any time.
Purpose of the data collection
Your email address enables the newsletter to be sent to you. I personalise the greeting in each issue using your first name, if you’ve provided it.
Your IP address feeds into my subscriber statistics. I only view this data in the aggregate, but it is useful to know, for example, what proportion of subscribers come from which countries.
Data storage
The data collected via the newsletter subscription is stored securely via the newsletter application (currently MailChimp) and only accessed via a password-protected user account. If this stored data is ever downloaded to a local laptop or other device for a valid purpose as explained in this policy, it is immediately deleted after use.
Notifications of subscriptions and unsubscriptions are received by the site owner via email, and are deleted immediately after reading.
What I will and won’t do
I will collect only the minimal data needed to support what I believe are good business practices, as described above.
I will keep your personal data confidential and secure.
Personal data on a website will be held for the life of the website, unless you request otherwise.
At your request, or when a website or newsletter is closed, I will delete / destroy your personal data in all formats.
I will never subscribe you to a newsletter or group without your explicit consent.
I will never transfer your personal data to any other person or organisation.
I will respect your rights, as listed below and as detailed by the GDPR.
Your rights
The GDPR details a number of rights held by you. The ones discussed here seem the most relevant for my visitors and subscribers, but this list is not intended to limit your rights in any way.
You have the right to access your personal data held by me, and to know how I use it. This policy should help make that clear, but specific queries are always welcome.
You have the right to update or correct your personal data, if what I hold is incomplete or inaccurate.
You have the right to be forgotten, i.e. I will delete your personal data at your request or when I have finished processing it (whichever comes first).
You have the right to specify what I can and can’t do with your personal data.
Taking action!
In the footer of each newsletter, you will find an ‘unsubscribe’ link. There is also an ‘unsubscribe’ link on the subscription forms on the relevant websites. Click this if you want to ensure you don’t receive any further issues of the newsletter. This does not, however, delete your personal data; you will need to contact me if you would like me to make that happen as well.
You will also find an ‘update preferences’ link in the footer of each newsletter. This enables you to see what personal data is held for you in my MailChimp account, and to update / remove / add to it as you wish.
All queries and requests relating to your personal data can be directed to me, Sue Brown, via my email, sue@suebrownstories.com. I will always respond to such messages as soon as I possibly can.
Thank you for reading!


No comments:

Post a Comment