GDPR Compliance Statement

1. Legal Basis

We process data under:
- Contract fulfillment (where applicable)
- Legitimate interests (responding to inquiries, business communication with an opt-out)
- Legal obligations (where applicable)

2. Data Subject Rights

You can: Access your data, correct inaccuracies, request deletion, restrict processing, data portability, object to processing.
To exercise these rights, contact [email protected]. Response within 30 days.

3. Data Protection contact

Contact: [email protected]. Response within 48 hours.

4. Data Processing

- Purpose: To respond to inquiries, provide services as per contracts, and send occasional marketing communications with an opt-out option.
- Location: Our email data is stored on Zoho servers, which are located in the EU - Zoho Privacy Policy.  Website data is stored on Cloudflare Pages servers.
- Duration: Project lifecycle + 24 months (for record keeping and potential follow-up).
- Security: Encryption in transit (TLS/SSL). Zoho employs industry-standard security measures to protect email data. Our website hosted on cloudflare employs HTTPS. We implement secure data handling practices.

5. International Transfers

- Data stays within UK/EU.

6. Breach Notification

- 72-hour ICO notification
- Immediate client notification

7. Data Records

We maintain records of our data processing activities, including the purpose, categories of data, and security measures.

Last Updated: 2025-02-07