Who we are
Our website address is: https://ambercrewes.com.
What personal data we collect and why we collect it
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
We use a contact form to make sending us a message easier. When you submit your data to us via a contact form, it’s contents are encrypted but will be received by us via email, so we always advise never to send any sensitive data via this method. The data we receive is only ever used to deal with your enquiry and will then be removed from our systems, unless you ask us not to.
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Who we share your data with
To help us to improve our website, process orders and contact you with relevant information, we do share a very limited amount of data with external suppliers. These are:
Aweber allows us to automate certain parts of our marketing, such as sending you emails when we launch new publications, or to ask you to leave a review once you’ve received your order. We’ll only share your data with Aweber if you explicitly sign up at checkout, or on our home page, and you can unsubscribe at any time either on our website, or by clicking the Unsubscribe link in the bottom of every email we send.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
Visitor comments may be checked through an automated spam detection service.
Your contact information
How we protect your data
All data submitted to us, is over an encrypted connection, using an SSL certificate. We use two factor authentication for our admin control panel, and never have access to, store or edit your payment information. We also provide tools for you to access, edit and request removal of all data we hold for you. Finally, we ensure that you choose a secure password that is not easily guessed, to ensure the security of your account.
What data breach procedures we have in place
In the event of a data breach, we have an established protocol in place. We have a notification template prepared to email all customers, regardless of their marketing preferences, informing them of the nature of the breach, what data may be affected, with information on how to secure your account and best practice steps to prevent your data being misused.
Under certain circumstances, dependent on the nature of the breach, we may be required to inform the Information Commissioners Office (the ICO), so they are aware of the nature of the breach, what data may be at risk, the steps we’ve taken to minimise this risk, and how we believe the breach occurred. We have templates in place for this eventuality.
What third parties we receive data from
We do not receive any data from third parties.
What automated decision making and/or profiling we do with user data
We do not use personal data to make any decisions or profile our users in any way.
Industry regulatory disclosure requirements
Due to the size and nature of our business, we do not have any industry regulatory disclosure requirements at this time, however we will update this page if or when this changes.