Privacy Policy

This privacy policy explains how we collect, use, store, and protect your personal information when you use our website design services. We are committed to protecting your privacy and complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who We Are

We are a WordPress website design service operating in the United Kingdom. For the purposes of data protection law, we are the data controller of your personal information.

If you have any questions about this privacy policy or how we handle your data, please contact us through our contact page.

2. What Information We Collect

We collect the following types of personal information:

• Contact Information: Your name, email address, phone number, and business name
• Business Information: Details about your business, industry, and website requirements
• Payment Information: Billing address and payment details (processed securely through Stripe)
• Technical Information: IP address, browser type, device information, and pages visited
• Content: Text, images, and other materials you provide for your website
• Communications: Records of our correspondence with you

3. How We Collect Information

We collect information in the following ways:

• Contact Forms: When you enquire about our services or request a quote
• Design Questionnaire: When you provide details for your website design
• Email: When you communicate with us directly
• Payment Processing: When you make a payment through our secure payment provider
• Cookies and Analytics: Automatically when you visit our website (see Cookies section below)
• Account Creation: If you create a client account to manage your project

4. Legal Basis for Processing

We process your personal data on the following legal bases:

• Contract Performance: To provide our website design services
• Legitimate Interests: To improve our services, prevent fraud, and maintain security
• Legal Obligation: To comply with accounting, tax, and legal requirements
• Consent: For marketing communications (where required) and non-essential cookies

5. How We Use Your Information

We use your personal information to:

• Provide and deliver our website design services
• Communicate with you about your project
• Process payments and maintain financial records
• Host and maintain your website
• Provide customer support and respond to enquiries
• Improve our services and website functionality
• Detect and prevent fraud or abuse
• Comply with legal and regulatory obligations
• Send you service updates and important notices
• With your consent, send you marketing communications about our services

6. Who We Share Your Information With

We may share your personal information with:

• Payment Processors: Stripe (for secure payment processing)
• Hosting Providers: To host your website and our platform
• Email Services: For sending transactional and service-related emails
• Analytics Providers: Google Analytics and Microsoft Clarity (for website analytics)
• Domain Registrars: For domain registration and management
• Professional Advisors: Lawyers, accountants, and other professional advisors
• Law Enforcement: When required by law or to protect our legal rights

We ensure all third parties process your data securely and in accordance with data protection laws. We do not sell your personal information to third parties.

7. International Data Transfers

Some of our service providers are located outside the UK and European Economic Area (EEA). Where we transfer your data internationally, we ensure appropriate safeguards are in place, such as:

• Standard Contractual Clauses approved by the UK Information Commissioner's Office (ICO)
• Transfer to countries with an adequacy decision from the UK government
• Other legally approved transfer mechanisms

8. How Long We Keep Your Information

We retain your personal information for as long as necessary to fulfil the purposes outlined in this policy:

• Active Clients: For the duration of our service relationship
• Financial Records: For 7 years after the end of the financial year (tax and accounting requirements)
• Website Backups: For 90 days (rolling retention)
• Marketing Data: Until you unsubscribe or withdraw consent
• Enquiries: For 2 years if no service relationship is established

After these periods, we will securely delete or anonymise your personal information.

9. Your Rights Under UK GDPR

You have the following rights regarding your personal data:

• Right of Access: Request a copy of the personal data we hold about you
• Right to Rectification: Request correction of inaccurate or incomplete data
• Right to Erasure: Request deletion of your personal data ("right to be forgotten")
• Right to Restriction: Request that we limit how we use your data
• Right to Data Portability: Request transfer of your data in a machine-readable format
• Right to Object: Object to processing based on legitimate interests or for direct marketing
• Rights Related to Automated Decision-Making: We do not use automated decision-making or profiling
• Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent

To exercise any of these rights, please contact us. We will respond to your request within one month.

10. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to improve your experience and understand how our website is used.

You can control cookies through your browser settings. Note that disabling cookies may affect website functionality. For more information about cookies, visit www.allaboutcookies.org.

11. Security

We implement appropriate technical and organisational measures to protect your personal data, including:

• SSL/TLS encryption for data transmission
• Secure password protection and two-factor authentication
• Regular security updates and patches
• Access controls limiting who can access your data
• Regular backups to prevent data loss
• Monitoring for suspicious activity

While we take security seriously, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security of your data.

12. Children's Privacy

Our services are not intended for children under 16. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

13. Marketing Communications

We may send you marketing communications about our services if you have:

• Provided your consent (where required by law), or
• You are an existing customer and the marketing relates to similar services

You can unsubscribe from marketing emails at any time by clicking the "unsubscribe" link in any marketing email or by contacting us.

14. Links to Other Websites

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these websites. We encourage you to read their privacy policies.

15. Changes to This Privacy Policy

We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. We will notify you of significant changes by email or through a notice on our website. The "Last Updated" date at the bottom of this page indicates when the policy was last revised.

16. How to Contact Us

If you have any questions, concerns, or requests regarding this privacy policy or how we handle your personal data, please contact us.

17. Complaints

If you believe we have not handled your personal data properly, you have the right to lodge a complaint with the UK Information Commissioner's Office (ICO):