Data Protection



From 25 May 2018 new General Data Protection Regulations (GDPR) apply to all businesses in the UK.

At SO-Photography your data and privacy has always been a confidential element of our client relationships, but to comply with the new Regulations we have set out below what data we hold and how it is, or is not, used. If you have any questions please do get in touch.

What type of information do we collect?

We receive, collect and store any information you enter on our website or provide to us in any other way. We may use software tools to measure and collect session information, including page response times, length of visits to certain pages, page interaction information, and methods used to browse away from the page. We also collect comments and personally identifiable information (including name, email and phone numbers) if you use the contact section of this website.


How do we collect the information?

When you communicate with us directly or via the contact section of our website, as part of the process we collect personal information you give us such as your name, address, email address and telephone numbers.


Why do we collect such personal information?

We collect such Non-personal and Personal Information for the following purposes:

·      To provide and operate our client services

·      To provide our users with ongoing customer assistance and technical support

·      To be able to contact our visitors and users with general or personalised service-related messages

·      To create aggregated statistical data which we may use to provide and improve our services

·      To comply with any applicable laws and regulations


How do we store, use, share and disclose your site visitors' personal information?

Our company is hosted on the platform. provides us with the online platform that allows us to display and sell our products and services to you. Your data may be stored through’s data storage, databases and the general applications. They store your data on secure servers behind a firewall. 

All direct payment gateways offered by and PayPal as used by our business adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by its service providers. Neither our business nor retain specific details of customer bank accounts or credit cards.


How do we communicate with you?

We may contact you regarding your enquiries, to confirm assignments and orders, to issue invoices, to poll your opinions through surveys or questionnaires, to send updates about our business, or as otherwise necessary to contact you in relation to our User Agreement, applicable national laws, and any contracts we may have with you. For these purposes we may contact you via email, telephone, text messages, and postal mail.


How do we use cookies and other tracking tools?

Our website may track personal browsing information through the use of cookies, for example. Full details of what tracking tools (e.g. cookies, flash cookies, web beacons, etc.,) our website employs and what personal information they gather can be provided upon request.

How can you withdraw your consent to us retaining your data?

If you don’t want us to save and process your data anymore, please contact Simon Ovenden at


Privacy policy updates

We reserve the right to modify this privacy policy at any time, so please review it from time to time. Changes and clarifications will take effect immediately upon their posting on the website. If we make material changes to this policy we will notify you here that it has been updated, so that you are aware of what information we collect and how we use it.