data storage

protection

Introduction

This overview explains how RED CHERRY PHOTOGRAPHY meets applicable privacy and data-protection obligations. Our approach aligns with the Australian Privacy Act (including the Australian Privacy Principles) and, where relevant, incorporates GDPR-style rights and controls that are equal to or stricter than local requirements.

RED CHERRY PHOTOGRAPHY takes data protection seriously. We partner with software providers that undergo regular independent security testing (including penetration testing) and operate on a privacy-by-design and privacy-by-default basis.

Our software partner, Netlife AS (org. nr. 983 501 605), acts as a processor and processes personal data on behalf of [Company Name] as the controller. The controller determines the purposes and means of processing personal data.

 

Individual Rights We Support

  • The right to erasure (“right to be forgotten”)
  • The right to be informed
  • The right of access
  • The right to rectification
  • The right to restrict processing
  • The right to data portability
  • The right to object
  • The right not to be subject to automated decision-making

Cookie Notice

We display a cookie/consent notice in the webshop footer. Users must acknowledge this notice before creating an account. A dedicated page linked in the footer provides details on cookie purposes and management.

 

data storage - server security

Information regarding server security provided by our software partner Netlife AS (org. nr 983 501 605). To get a fully controlled and monitored environment, and to provide the uptime and reliability necessary for the service, Netlife have built their own dedicated server rack, where all data is stored.

“Netlife store all data in a server center located in a designated underground facility in Norway. This facility is also used by other national and international telcos and the national archive of Norway. Access to the facility is secured with 24-hour manned security, biometric access & intruder alarms. We have electronic access control systems with per-rack resolution and camera monitoring. The servers are protected with automatic non-destructive fire suppression. The data center has a Tier 2-3 certification.”

data storage - timeframe

Timeframe of Data & Image Storage and Destruction

  • All data and images are deleted from business devices after 12 months.
  • Data and images are retained for no longer than 7 years after the last year of attendance at a school, childcare, kindergarten, sports club, or event.
  • Users can request deletion through the “Delete Me” feature in My Account.

NSW photographer specialising in preschool photography

FOLLOW ME

T. 0407 836 079

info@redcherryphotography.com.au