Filming Privacy Notice

Introduction
Schwartz Patrick Media Ltd. (“Schwartz Patrick Media”) is committed to protecting the privacy and security of personal data in accordance with the General Data Protection Regulation (GDPR) and the Data Protection Act 2018.

This Data Protection Policy outlines how Schwartz Patrick Media collects, processes, and protects personal data in the course of its operations.

Scope
This policy applies to all personal data processed by Schwartz Patrick Media, including that of employees, clients, suppliers, and individuals participating in our productions.

Data Controller
Schwartz Patrick Media acts as the data controller for the personal data we collect and process. Our contact details are as follows:

Schwartz Patrick Media Ltd.
Unit 70T, North East BIC
Wearfield
Sunderland
SR5 2TA
UK

E: ben [at] schwartzpatrick.com
T: +44 7802 848213

Principles of Data Protection
We adhere to the following principles of data protection:

– Lawfulness, fairness, and transparency
– Purpose limitation
– Data minimisation
– Accuracy
– Storage limitation
– Integrity and confidentiality
– Accountability

Lawful Basis for Processing
We process personal data based on one or more of the following lawful bases:

– The data subject has given consent to the processing of their personal data for one or more specific purposes.
– Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.
– Processing is necessary for compliance with a legal obligation to which the controller is subject.
– Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
– Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject.

Data Security
We implement appropriate technical and organisational measures to ensure the security of personal data, including measures to protect against unauthorised or unlawful processing and accidental loss, destruction, or damage.

Data Subject Rights
Data subjects have the following rights regarding their personal data:

– Right of access
– Right to rectification
– Right to erasure
– Right to restrict processing
– Right to data portability
– Right to object
– Rights related to automated decision making and profiling

Data Breach Management
We have procedures in place to detect, report, and investigate personal data breaches. In the event of a breach, we will notify the relevant supervisory authority and affected data subjects without undue delay.

Data Protection Impact Assessments (DPIAs)
We conduct DPIAs where processing is likely to result in a high risk to the rights and freedoms of data subjects, ensuring that appropriate measures are taken to mitigate such risks.

Training and Awareness
We provide regular training to employees involved in the processing of personal data to ensure awareness of data protection requirements and compliance with this policy.

Review and Update
This Data Protection Policy is reviewed and updated regularly to ensure ongoing compliance with data protection laws and any changes to our processing activities.

Contact Information
For inquiries or concerns regarding data protection, please contact Benjamin Ryan Schwartz at ben [at] schwartzpatrick.com or +44 7802 848213.

Document Control
This policy is maintained and controlled by Benjamin Ryan Schwartz and is accessible to all relevant personnel.