Privacy Policy

The DPA & GDPR May 2018

This website complies with the DPA (Data Protection Act 1998) and already complies with the GDPR (General Data Protection Regulation) which comes into effect from May 2018. We will update this policy accordingly after the completion of the UK’s exit from the European Union.

Christine McNally t/a Christine McNally Photography takes your privacy very seriously. This privacy policy has been prepared in line with the EU’s General Data Protection Regulation (GDPR), which promotes fairness and transparency for all individuals in respect of their personal data. This privacy policy applies to all data we process, and by using Christine McNally t/a Christine McNally Photography you consent to our collection and use of such data.

* In non-boring terms *


I totally respect your personal information and will only ask you for what information I really need from you. I will look after it, in the same way, I would want mine looking after, keeping it secure! I will only share it with others where we need their help us deliver our service to you (such as our professional printing laboratory who may need your name and address to post your purchases). Be assured that I will never share your information in any other circumstances – nor will I/we sell it on elsewhere!

Website Visitor Tracking

I sometimes use a website visitor tracking service (when I can be bothered to pay for it) which tracks how people use my website. This is helpful to know if any pages or links are broken, any pages that might be turning lovely couples away and just in general monitors viewers behaviour. The software will save a cookie to your computers hard drive in order to track and monitor your engagement and usage of the website, but will not store, save or collect personal information. The tracking information doesn’t tell me your address or anything about the viewer except the city they’re viewing from, type of device and what pages they visit on my website. It doesn’t track any external links or sites. I also have a tracking service on my emails which alert me if an email has been delivered. This is to help inform me of emails that may have ended up in spam.

Contact & Communication (and storage thereof)

Users contacting me through this website do so at their own discretion and provide any such personal details requested at their own risk. Your personal information is kept private and stored securely until a time it is no longer required or has no use.

Basically, I get an enquiry through my contact form which links up to my customer database. In there I keep information such as date of the wedding, venue of the wedding, what I quoted you, your name, email address and phone number. Once you have booked me, I also store your invoice, contract and timeline on there which you can access anytime. Once your wedding is completed, or if you don’t go ahead, the information is digitally archived. If you wish for any information to be deleted, please email to request this. This data helps me monitor my business health year to year, keeps track of my income and outgoings and my workflow progress. Having this in place means that data is more secure than big binders and also better for the environment (ie digital contracts and invoices) The database is only accessible by me and is password protected on a password-protected computer.

If you’re a client/after booking – I will email you with reminders about invoices due, contract information, pre-wedding questionnaire, to see how your plans are coming along, to ask about your new puppy I spotted on Instagram, to send you something I thought might be helpful because of a conversation we had once. I might also email you about album offers or other products/services I offer. If you’d rather I literally only emailed you with immediate-wedding-related bits then please let me know – I’d hate to be a pest.

If you enquire with me –  I will email you my pricing brochure and maybe a wedding planning guide if I feel you’d find it useful. I may follow up after your initial enquiry, After a period of time, if I don’t hear back, I’ll assume you’ve found your dream photographer and I’ll proceed to archive your enquiry.

The night before a wedding I print off or write out the information I need that day to conduct my job such as: Names, addresses of where I need to be, times I need to be at these places, emergency contact information in case I need to contact someone, supplier information so I know who I am working with and a group shot list so I know what photos to take that will be on your parents mantlepiece.


Services I use that contain your information

I use Pixifi for my client database/storage of information. They are GDPR compliant

I use Shootproof for my client galleries & print orders. They are GDPR compliant

I use Wooden Banana for my custom-ordered USB sticks. They are GDPR compliant

I use Quickbooks for my accounting, however, do not store any client information on there.

I use Dropbox for backing up important information but do not store client information in there.

I use Polymail for my email client

I use Mouseflow for my website tracking as well as google analytics.

Email Mailing List & Marketing Messages

I don’t even think this applies because in 6 years I have meant to send out newsletters, but I barely manage to reply to the group chat on WhatsApp with interesting news in my life so I doubt I’ll have time to sit and email you all about it – unless of course, you ask 😉

but for legality sake: I operate an email mailing list program, used to inform subscribers about products, services and/or news we supply/publish. Users can subscribe through an online automated process where they have given their explicit permission. Subscriber personal details are collected, processed, managed and stored in accordance with the regulations named in ‘The policy’ above. Subscribers can unsubscribe at any time through an automated online service, or if not available, other means as detailed in the footer of sent marketing messages (or unsubscribe from all Mailchimp lists). The type and content of marketing messages subscribers receive, and if it may contain third party content, is clearly outlined at the point of subscription.

Email marketing messages may contain tracking beacons / tracked clickable links or similar server technologies in order to track subscriber activity within email marketing messages. Where used, such marketing messages may record a range of subscriber data relating to engagement, geographic, demographics and already stored subscriber data.

Our EMS (email marketing service) provider is: [Direct emailing & Mailchimp] and you can read their privacy policy here.

External Website Links & Third Parties

Although we only look to include quality, safe and relevant external links, users are advised to adopt a policy of caution before clicking any external web links mentioned throughout this website.

We cannot guarantee or verify the contents of any externally linked website despite our best efforts. Users should, therefore, note they click on external links at their own risk and we cannot be held liable for any damages or implications caused by visiting any external links mentioned.