This privacy notice is intended to help you understand and will explain how your personal information is collected and used when you visit KelseyFarish.com, which is a website powered by WordPress. Importantly, please also see my T&Cs, which explains – amongst other things – that this website contains general information only and does not constitute legal or other professional advice.
CONTACT DETAILS
KelseyFarish.com (my website) is written, owned and operated by Kelsey Farish (I, me). I am a solicitor qualified in England and Wales. This blog is prepared and maintained by me in my personal capacity.
Under applicable data protection law, I am the data controller. If you have any questions about this privacy notice, including any requests to exercise your legal rights, please contact me using my online form. For the avoidance of doubt, I do not make any money from this website; it is intended for general information and educational purposes only.
Nevertheless, I take data protection seriously. You have the right to make a complaint at any time to the Information Commissioner’s Office, or your country’s relevant supervisory authority for data protection issues. I would, however, appreciate the chance to deal with your concerns before you contact the regulator, so please contact me in the first instance.
THIRD PARTY LINKS
The website contains links to visit other websites, but I do not have any control over these websites. Links ≠ endorsement. You should exercise caution and look at the privacy statement applicable to the website in question.
PERSONAL DATA
Personal data (also known as personally identifiable information or PII), means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data). When you visit my website, the tools and features on my website may collect, use, store and transfer different kinds of personal data about you, which I have grouped together as follows:
- Identity Data includes first name, last name, and username.
- Contact Data includes your email address.
- Technical Data includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website.
- Profile Data includes any comments you leave on my website, or other preferences you indicate through the WordPress platform..
- Usage Data includes information about how you use my website.
- Communications Data includes your preferences in receiving newsletters and other updates from me, and your communication preferences.
I do not collect Special Category Data (also known as “sensitive personal data”), Financial Data, nor Payment Transaction Data.
If you fail to provide personal data, you will still be able to view my website. However, you might not be able to take advantage of the social media, commenting or other sharing features.
The way my website collects personal data is as follows:
- Direct interactions. You may give us your Identity and Contact Data by filling in forms or by corresponding with me by email or comments left on this site.
- Automated technologies or interactions. As you interact with my website, it will automatically collect Technical Data about your equipment, browsing actions and patterns through the use of cookies, Google Analytics, and other similar technologies.
I will use your personal data in the following circumstances:
- Where it is necessary for my legitimate interests (for example, to better understand how my website is used) and your interests and fundamental rights do not override those interests.
- Where you have consented to me using your personal data, for example when you leave a comment on my blog posts.
- Where I need to comply with a legal obligation (although this is rare).
A description of all the ways your personal data is used:
- Purpose? To manage my relationship with you which will include notifying you about new blog posts.
Type of Data? Identity, Contact, Profile, Marketing and Communications
Lawful basis for processing? Necessary for my legitimate interests (to study how visitors use my website) - Purpose? To enable you to interact with my website.
Type of Data? Identity, Contact, Technical.
Lawful basis for processing? Necessary for my legitimate interests (to study how visitors use my website) - Purpose? To administer and protect this website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data)
Type of Data? Identity, Contact, Technical.
Lawful basis for processing?Necessary for my legitimate interests (for running my blog, network security, and other IT functions) - Purpose? To use data analytics to improve my website.
Type of Data? Technical, Usage.
Lawful basis for processing? Necessary for our legitimate interests (to define types of visitors to my website, to keep my website updated and relevant, to develop my social media marketing strategy)
Change of purpose
I will only use your personal data for the purposes for which we collected it. If I need to use your personal data for a new purpose, I will notify you and will explain the legal basis which allows me to do so. Please note that I may process your personal data without your knowledge or consent, where this is required or permitted by law.
MARKETING
You will receive marketing communications from me if you have requested information from me or and you have not opted out of receiving that marketing. You can unsubscribe from receiving email notifications at any time, by following the instructions on the email.
Cookies
You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this website may become inaccessible or not function properly.
DISCLOSURES AND SECURITY
My website may share your personal data with WordPress, Google Analytics, and other social media platforms (such as Twitter, Facebook, LinkedIn) if you choose to interact with them also.
To the best of my knowledge I am not aware of any transfers of personal data made outside of the European Economic Area. If my website transfers your personal data out of the EEA, a similar degree of protection will be afforded to it by ensuring at least one of the following safeguards is implemented:
- Only transfering your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission.
- Transferring data to the United States, if the recipient is part of the Privacy Shield which requires them to provide similar protection to personal data shared between Europe and the US.
Security
WordPress has put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements.
YOUR LEGAL RIGHTS
Under certain circumstances, you have rights under data protection laws in relation to your personal data. You have the right to:
- Request access to your personal data. This enables you to receive a copy of the personal data I hold about you.
- Request correction of the personal data. This enables you to have any incomplete or inaccurate data I hold about you corrected.
- Request erasure of your personal data. Please just let me know if you would like anything deleted, and I will do my best to accommodate you.
- Object to processing of your personal data where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground as you feel it impacts on your fundamental rights and freedoms.
- Request restriction of processing of your personal data.
- Request the transfer of your personal data to you or to a third party.
- Withdraw consent at any time where we are relying on consent to process your personal data. However, as explained above, I do not normally rely on consent as a basis for processing your personal data.
Please note that I may need to request specific information from you to help me confirm your identity. This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. I will try to respond to all legitimate requests within one month, although it could take me longer if your request is particularly complex or you have made a number of requests.