My Privacy Policy

 

My name is Trudi Murray. You can contact me about any of the details in the following privacy policy at trudi@trudimurray.com, and I will do my very best to help you.

 

My website is www.trudimurray.com.

 

In my work as an artist, illustrator and writer, I collect the following data, in the following ways. 

 

When you contact me directly to buy work or commission work

Names, addresses, post codes, phone numbers, email addresses, shipping addresses. I need this information to fulfil the transaction. If I didn’t receive it, you wouldn’t be able to buy a lovely piece of art.

I store all data securely and carefully. I retain it for six years for legal or tax purposes, after which your data will be deleted from my records.

 

When you buy my work through Folksy.com

When you order my work through Folksy.com, I receive names, addresses, post codes, phone numbers, email addresses, from Folkys.com, paypal or Stripe (for credit card transactions). I may also receive names of gift recipients, and their addresses and possibly email addresses.

I need this information to fulfil the transaction. If I didn’t receive it, you wouldn’t be able to buy a lovely piece of art.

I store all data securely and carefully. I retain it for six years for legal or tax purposes, after which your data will be deleted from my records.

You can find the privacy notice on my Folksy shop here.

 

 

When you use my website

Like other websites you may visit, my website, trudimurray.com, hosted by Squarespace, uses cookies. Cookies are small pieces of data that websites store on a device. Cookies can improve browsing experience because they help websites remember preferences and understand how people use different features.

 

You can turn off cookies in your browser at any time by using your browser settings. You can delete any existing cookies by clearing your cache.

 

My Squarespace website automatically collects data. The data I can see in my analytics panel is: which website referred you to mine, your device type, IP address, geographical location, which pages you looked at on my site, times and operating systems.

 

I use this data to help me understand how visitors are moving round the site, and to see the effect of advertising or marketing campaigns I may have run.

 

Website security

My website is hosted by Squarespace. Squarespace transfers, processes and stores data in multiple Tier III data centers across the United States. By using my website you acknowledge that your data may be transferred and stored and processes outside of the European union. 

Squarespace have self-certified to the EU-US and Swiss-US Privacy Shield, which allows the lawful transfer of EU and Swiss personal data to the US, including to Squarespace's US-based data centers. You can read more about Squarespace’s Privacy Shield certifications here.

 

With SSL enabled automatically, all supported browsers can access a constant, secure connection on every page of my site. Through SSL, you will see a lock icon next to your URL in the browser, showing that your information is safe. SSL has the following security benefits:

 

·       Privacy: Encrypts the connection between the browser and web server and securely transmits information (like login credentials) to prevent unauthorized parties from eavesdropping.

·       Data integrity: Prevents unauthorized parties from altering data during transmission (like during a Form Block submission).

·       Authentication: Protects against impersonation by requiring web server proof of identity.

 

All Squarespace sites are hosted across a private cloud with full redundancy. 

The transmission of information via the internet is not completely secure and therefore I cannot guarantee the security of data sent to me electronically and transmission of such data is therefore entirely at your own risk.  

 

Third Party Links

You mind find links to third party websites on my website. These websites should have their own privacy policies which you should check. I do not accept any responsibility or liability for their policies whatsoever as I have no control over them.

 

 

Retaining your data

You have the right under GDPR to access, alter, amend, download or delete your data at any time. Please contact me if you would like to do any of this and I will assist you. You also have the right to lodge a complaint with the ICO if you think I am not handling your data correctly.

 

 

Mailing lists

I do not currently have a mailing list, but when I do arrange one, you can be sure it will be GDPR compliant with correct consents from the start. I would never put you on a mailing list without your consent.

 

Sharing your data

For the purposes of fulfilling a transaction, I must share your data (eg. name, address, postcode, email address, and sometimes phone number) with third party payment providers such as Paypal, or Stripe, or delivery companies such as Royal Mail. 

Paypal's privacy policy

Stripe's privacy policy

 

I would also have to share information when legally obliged to do so.

 

I will never sell your information to anyone. Gosh, no. It would be so wrong and I would never do it.

 

Updates to this policy

There may be periodic updates to this policy and so I advise you check it from time to time. Fun!