top of page

Privacy Policy – SEMNRA. Atelier

Effective Date: 11/12/2025

SEMNRA. Atelier (“we”, “us”, “our”) is committed to protecting your privacy and handling your personal information with transparency, integrity, and care. This Privacy Policy explains how we collect, use, store, and protect your personal data in compliance with the UK General Data Protection Regulation (UK GDPR), the EU General Data Protection Regulation (GDPR), and all relevant UK and European data protection laws.

 

Who We Are

Data Controller:
SEMNRA. Atelier
Cheltenham GL50
giorgiaseminara95@gmail.com

We decide how and why your personal information is processed.

 

Personal Data We Collect

We collect only what is necessary to operate SEMNRA. Atelier and provide you with our artistic, photographic, and creative services.

Information You Provide to Us

  • Name

  • Email address

  • Phone number

  • Billing and shipping address

  • Payment details (securely processed by third parties — we do not store full card information)

  • Information provided via contact forms, email, or direct communications

  • Reference materials or project details for creative direction, photography, or art commissions

Information Collected Automatically

  • IP address

  • Browser type and device information

  • Website usage data (pages visited, time spent, etc.)

  • Cookies and similar tracking technologies (see Section 10)

Service-Specific Data

For photographic or creative projects, you may voluntarily provide:

  • Visual references

  • Project requirements

  • Mood boards, concepts, or personal preferences

 

How We Use Your Personal Data

We process your data lawfully to:

  • Fulfil art purchases, commissions, and service agreements

  • Process payments and manage transactions

  • Communicate regarding orders, bookings, or enquiries

  • Provide photography, creative direction, and bespoke artistic services

  • Send newsletters or updates (only with your consent)

  • Improve our website, services, and user experience

  • Maintain records for accounting and legal compliance

  • Detect and prevent fraud or misuse

We will never sell your personal information.

 

Legal Basis for Processing

We rely on the following lawful bases under UK GDPR & EU GDPR:

  • Contract – To process purchases, commissions, or service bookings

  • Consent – For newsletters, marketing materials, and non-essential cookies

  • Legitimate Interests – Website optimisation, fraud prevention, customer support

  • Legal Obligation – Record-keeping, tax requirements, regulatory compliance

 

Data Retention

We keep personal data only for as long as necessary:

  • Transaction and order records: 6 years (legal requirement)

  • Client enquiries: 12 months

  • Creative project files: up to 3 years unless otherwise agreed

  • Newsletter mailing lists: until you unsubscribe

After the retention period, your data is securely deleted, anonymised, or archived where required.

 

Sharing Your Information

We may share your data only with trusted third parties necessary to provide our services:

  • Secure payment processors (e.g., Stripe, PayPal)

  • Delivery and courier services

  • Email and newsletter platforms

  • Website hosting and analytics providers

  • Legal or financial authorities if required by law

All third-party providers meet GDPR and UK GDPR compliance standards.

 

International Data Transfers

If personal data is transferred outside the UK or EEA, we ensure appropriate safeguards such as:

  • UK Addendum to the EU Standard Contractual Clauses

  • Approved adequacy regulations

  • GDPR-compliant data processing agreements

 

Your Rights Under GDPR & UK GDPR

You have the right to:

  • Access your personal data

  • Request correction of inaccurate information

  • Request deletion (“right to be forgotten”)

  • Restrict processing

  • Object to processing

  • Request data portability

  • Withdraw consent at any time

  • Lodge a complaint with a supervisory authority

To exercise any of these rights, contact us at:
[Insert Contact Email]

We may request proof of identity before processing your request.

 

How We Protect Your Data

We implement technical and organisational measures such as:

  • Secure server hosting

  • SSL encryption on our website

  • Encrypted payment processing

  • Controlled access to personal data

  • Regular security checks and updates

Although no system is completely secure, we work hard to protect your data.

 

Cookies & Tracking Technologies

Our website uses cookies to function smoothly and analyse performance.

Types of cookies:

  • Essential cookies – Required for site functionality

  • Analytics cookies – Optional; help us understand how visitors use our site

  • Marketing cookies – Used only with explicit consent

You may adjust your cookie preferences through your browser settings or our cookie banner.

 

Children’s Privacy

SEMNRA. Atelier does not knowingly collect personal data from children under 16 years old.
If you believe such data has been collected, please contact us for immediate removal.

 

Updates to This Privacy Policy

We may update this Privacy Policy from time to time.
The most recent version will always be available on this page with an updated effective date.

bottom of page