This Privacy Policy sets out how we, Digital Web London, collect, store, and use information about you when you use or interact with our website, https://www.digitalweblondon.com (our website), and where we otherwise obtain or collect personal data, cookies, and information about you. This information may also be used for the personalisation of ads. This Privacy Policy is effective from 14th July 2025.

Summary

• Our details
• Information we collect when you visit our website
• Information we collect when you contact us
• Information we collect when you interact with our website
• Our use of automated decision-making and profiling
• How we collect or obtain information about you from third parties
• Disclosure and additional uses of your information
• How long we retain your information
• How we secure your information
• Transfers of your information outside the European Economic Area
• Your rights in relation to your information
• Your right to object to the processing of your information for certain purposes
• Sensitive Personal Information
• Changes to our Privacy Policy
• Children’s Privacy
• California Do Not Track Disclosures
• Copyright, credit and logo

Summary

This section summarises how we obtain, store and use information about you. It is intended to provide a very general overview only. It is not complete in and of itself and must be read in conjunction with the corresponding full sections of this Privacy Policy.

Data controller: Digital Web London

How we collect or obtain information about you:
When you provide it to us (e.g. by contacting us through our contact form, by email or phone), from your use of our website, through cookies and similar technologies, and occasionally from third parties.

Information we collect:
Name, contact details, IP address, information from cookies, information about your device (e.g. browser type), and details about how you use our website (e.g. pages viewed, time spent, what you clicked on, and your general location based on IP address).

How we use your information:
For administrative and business purposes (especially to communicate with you), to improve our website and user experience, to understand website traffic and engagement, for marketing and advertising (e.g. retargeting via cookies), and in connection with our legal rights and obligations.

Disclosure of your information to third parties:
Only to the extent necessary to operate and manage our website and business—e.g. with hosting providers, analytics tools, or where required by law.

Do we sell your information to third parties (other than in the course of a business sale or purchase or similar event)?
No.

How long we retain your information:
Only as long as necessary, taking into account legal obligations and the purposes for which the data was collected (e.g. enquiry records for support, analytics data for website performance). For details, see How long we retain your information below.

Use of cookies and similar technologies:
We use cookies and similar tracking technologies (including essential, analytical, and targeting cookies) on our website. For more information, see our Cookies Policy: https://www.digitalweblondon.com/cookies

Transfers of your information outside the European Economic Area (EEA):
In some cases (e.g. use of Google Analytics or email servers), your data may be processed outside the EEA. We ensure appropriate safeguards are in place.

Use of automated decision-making and profiling:
We use profiling and automated decision-making technologies such as cookies, analytics tools, and remarketing (e.g. displaying our ads on other sites after you’ve visited ours).

Your rights in relation to your information:
You have the right to:

• Access your information and details about how we use it
• Have your information corrected or completed
• Request deletion of your information
• Restrict or object to our use of your information
• Receive your information in a portable format
• Withdraw your consent at any time
• Not be subject to decisions based solely on automated processing
• Lodge a complaint with a supervisory authority (e.g. the ICO)

Sensitive personal information:
We do not knowingly or intentionally collect sensitive personal data (e.g. racial or ethnic origin, health information). Please do not submit such information to us. For more, see the section entitled Sensitive Personal Information.

Our details

The data controller in respect of our website is Digital Web London, based in London, United Kingdom.
You can contact the data controller by:

• Writing to: Digital Web London, Kemp House, 152-160 City Road, London, EC1V 2NX, United Kingdom
• Emailing: hello@digitalweblondon.com

If you have any questions about this Privacy Policy, please contact the data controller using the details above.

Information we collect when you visit our website

We collect and use information from website visitors in accordance with this section and the section entitled Disclosure and additional uses of your information.

Web server log information

We use a third-party server to host our website, which is managed via WordPress. Our website server automatically logs your IP address and other information about your visit, such as:

• The pages accessed
• The information requested
• The date and time of the request
• The referring website (e.g., google.com)
• Your browser version and operating system

Use of website server log information for IT security purposes

We and/or our third-party hosting provider collect and store server logs to ensure the security and integrity of the network and website. This includes analysing log files to identify and prevent:

• Unauthorised access attempts
• Distribution of malicious code
• Denial of service attacks
• Other cyber threats

Unless we are investigating suspicious or potentially criminal activity, neither we nor our hosting provider attempt to identify you using the information collected via server logs.

Legal basis for processing: Compliance with a legal obligation (Article 6(1)(c) of the General Data Protection Regulation).
Legal obligation: We are required to implement appropriate technical and organisational measures to ensure a level of security appropriate to the risk of our processing activities involving personal data.

Recording

Access to our website using server log files is one of the technical measures we implement to ensure security.

Legal basis for processing: our and a third party’s legitimate interests (Article 6(1)(f) of the General Data Protection Regulation).
Legitimate interests: We and our third-party hosting provider have a legitimate interest in using your information to maintain network and information security.

Cookies and similar technologies

Cookies are small data files sent from a website to a user’s browser to record information for various purposes. We use cookies and similar technologies on our website, including:

• Essential cookies – necessary for core website functionality
• Functional cookies – help enhance usability and performance
• Analytical cookies – help us understand how visitors interact with our site
• Targeting cookies and web beacons – used for advertising and visitor behaviour analysis

For full details about how we use cookies, please refer to our Cookies Policy, which is available here:
👉 https://www.digitalweblondon.com/cookies

You can reject some or all of the cookies we use by adjusting your browser settings. Please note that blocking certain cookies may impair your ability to use our website or its features.

To learn more about cookies and how to manage your settings, please visit www.allaboutcookies.org or refer to our Cookies Policy.

Information we collect when you contact us

We collect and use information from individuals who contact us in accordance with this section and the section entitled Disclosure and additional uses of your information.

Email

When you send an email to any address displayed on our website (such as hello@digitalweblondon.com or via our contact form), we collect:

• Your email address
• Your name (if provided)
• Telephone number
• Any other personal information you include in the body of your message or in your signature block

Legal basis for processing: our legitimate interests (Article 6(1)(f) of the General Data Protection Regulation).
Legitimate interest(s): responding to enquiries, providing requested information, and keeping a record of our communications.

Legal basis for processing: necessary to perform a contract or to take steps at your request prior to entering into a contract (Article 6(1)(b) of the General Data Protection Regulation).
Reason why necessary: where your message relates to a potential project, consultation, or engagement of our services, we process your information to respond, prepare proposals, or take steps to begin a working relationship.

Transfer and storage of your information

We use a third-party email provider to store emails you send to us. Our current email service provider is Google Workspace (Gmail).
Emails you send to us are stored on secure servers located within the European Economic Area (EEA) or in compliance with appropriate data transfer mechanisms outside the EEA, such as the EU-U.S. Data Privacy Framework.

Contact Form

When you contact us using our contact form, we collect: Your name, Email address, Telephone number any other information you provide in your message

Legal basis for processing: our legitimate interests (Article 6(1)(f) of the General Data Protection Regulation).

Legitimate interest(s): responding to enquiries and messages we receive and keeping records of correspondence.

Legal basis for processing: necessary to perform a contract or to take steps at your request prior to entering into a contract (Article 6(1)(b) of the General Data Protection Regulation).

Reason why necessary: where your message relates to a potential project or digital service engagement, we process your information to provide relevant responses, quotes, or service details.

Transfer and storage of your information

Messages you send us via our contact form will be stored within the European Economic Area (EEA) on our third-party email provider’s servers. We currently use Google Workspace (Gmail) for email communications, and your messages are securely stored in accordance with applicable data protection laws.

Phone

When you contact us by phone, we collect your phone number and any other information you provide during the conversation.
We do not record phone calls.

• Legal basis for processing: our legitimate interests (Article 6(1)(f) of the General Data Protection Regulation).
  Legitimate interest(s): responding to enquiries and messages we receive and keeping records of correspondence.
• Legal basis for processing: necessary to perform a contract or to take steps at your request prior to entering into a contract (Article 6(1)(b) of the General Data Protection Regulation).
  Reason why necessary: where your phone enquiry relates to our digital services or a potential engagement, we process your information to provide details or follow-up accordingly.

Transfer and storage of your information

Information about your calls, such as your phone number and the date and time of your call, is processed by our third-party telephone service provider, BT.

Their privacy policy is available here: https://www.productsandservices.bt.com/privacy-policy/

Post

If you contact us by post, we will collect any information you include in your postal communications.

Legal basis for processing: our legitimate interests (Article 6(1)(f) of the General Data Protection Regulation).

Legitimate interest(s): responding to enquiries and keeping records of business correspondence.

Legal basis for processing: necessary to perform a contract or to take steps at your request prior to entering into a contract (Article 6(1)(b) of the General Data Protection Regulation).

Reason why necessary: if your correspondence relates to requesting digital services (e.g. website development, SEO), we will process your data in order to provide you with those services or to respond to your enquiry.

Information we collect when you interact with our website

We collect and use information from individuals who interact with specific features of our website in accordance with this section and the section entitled Disclosure and additional uses of your information.

Information collected or obtained from third parties

This section sets out how we obtain or collect information about you from third parties.

Information collected or obtained from third parties

This section sets out how we obtain or collect information about you from third parties.

Information received from third parties
Generally, we do not receive information about you from third parties. However, there may be situations where we receive such information from group companies, affiliates, partners, or other sources with whom we may or may not have had prior contact.

The information we receive from third parties will generally include your name and contact details, but may also include any additional information that they choose to provide us with.

Legal basis for processing: necessary to perform a contract or to take steps at your request to enter into a contract
(Article 6(1)(b) of the General Data Protection Regulation)
Why this is necessary: Where a third party passes on your details (e.g. name, email address) in order for us to provide services to you, we will use that information to take necessary steps or fulfill the contract between you and us.

Legal basis for processing: consent
(Article 6(1)(a) of the General Data Protection Regulation)
Consent: If you request a third party to share your personal data with us (for example, for an introduction or collaboration), and the purpose is not related to the performance of a contract, we will process your information based on your explicit consent. This consent is given through your instructions to the third party.

Legal basis for processing: our legitimate interests
(Article 6(1)(f) of the General Data Protection Regulation)
Legitimate interests:
In some cases, a third party may share your information with us without your direct consent. We will only process this information if:

• We are subcontracted to deliver services under a main contract held by the third party with you.
• We are investigating potential legal infringements or need to take legal action to protect our rights.
• We need to respond to reputational or security concerns based on third-party reports.

In each of these situations, our legitimate interest lies in meeting our contractual or legal obligations or protecting our business operations.

Where we receive information about you in error

If we receive personal information about you from a third party by mistake, and we do not have a lawful basis for processing it, we will delete the information promptly and securely.

Information obtained by us from third-party or public sources

In certain circumstances—for example, to verify contact details or enhance the quality of services—we may obtain information about you from publicly available or reputable third-party sources. These may include:

• Public databases (e.g. Companies House or the electoral register)
• Online directories or professional listings
• Media articles and press mentions
• Social media platforms or your company’s public website

Legal basis for processing: necessary to perform a contract or take steps at your request to enter into a contract
(Article 6(1)(b) of the General Data Protection Regulation)
Why this is necessary: For example, if you ask us to send a proposal via email but your email address is missing or unclear, we may verify or obtain it through your company website or an online listing to ensure accurate communication.

Legal basis for processing: our legitimate interests
(Article 6(1)(f) of the General Data Protection Regulation)
Legitimate interests: We may also process publicly sourced data where necessary to:

• Ensure business communication accuracy
• Investigate suspected breaches of our legal rights
• Protect or enforce our brand, intellectual property, or service terms

Our use of automated decision-making and profiling

We use limited automated decision-making and profiling on our website. We do not consider that this has any legal or similarly significant effect on you.

You have the right to object to our use of automated decision-making and profiling described in this section. You can do so by opting out of cookies and similar technologies—please refer to the instructions in our Cookies Policy.

If you do not want us to process your actual IP address (typically assigned by your Internet Service Provider), you can use a Virtual Private Network (VPN) or privacy tools such as Tor Browser.

For more information about the cookies we use, including the legal basis for using them and how to opt out, please see our Cookies Policy.

Automated decision-making

Automated decision-making refers to decision-making carried out solely by technological means (i.e. without human intervention).

Use of automated decision-making for analytics and remarketing
We may use third-party services (such as Google Analytics or Meta Pixel) to display ads or track engagement based on your interaction with our website. These technologies use cookies to identify if you’ve visited our site and may show you ads elsewhere online based on that activity. No personally identifiable information is shared in this process.

Logic involved: The technologies automatically detect that a user has previously visited our website. This helps us understand the performance of our website and marketing efforts.

Significance and envisaged consequences:
Cookies and tracking scripts may be used to identify that you’ve previously visited our website and may display advertisements or collect interaction data accordingly (unless you have opted out or blocked such cookies). No decisions with legal or significant consequences are made based solely on this data.

How to object

You can block or restrict these cookies via your web browser settings. For example:

• Block third-party cookies in your browser settings
• Use privacy-focused browser plugins or built-in features
• For Google Ads, opt out of personalised ads here

Please refer to our Cookies Policy for full details and opt-out options.

Profiling

Profiling refers to any form of automated processing of personal information used to evaluate certain personal aspects about an individual—particularly to analyse or predict preferences, interests, behaviour, location, or engagement patterns.

Use of profiling for web analytics

We use Google Analytics on our website to help us understand how visitors interact with the site. This service collects non-personally identifiable information such as your location (based on your IP address), device type, and on-site behaviour (for example, the pages you view, how long you stay, and the links you click).

We only process this information through cookies and similar technologies if you have consented to their use, in line with our Cookies Policy.

Information collected through analytics is anonymised and stored in an aggregated form. It is not used to identify you personally.

Logic involved

By automatically analysing patterns such as user location (via IP address), browser/device type, and on-site actions, we gain insight into how users engage with our website. This helps us:

• Improve the user experience
• Optimise website structure and content
• Identify popular content or features
• Ensure website performance across devices

Significance and consequences

This profiling has no legal or significant impact on you. It is solely used for operational and marketing performance insights and is conducted using anonymised, aggregate data.

If you wish to opt out of profiling via Google Analytics, you can do so through your browser settings or by using the Google Analytics Opt-out Browser Add-on.

For full details on how we use cookies and analytics, see our Cookies Policy.

Disclosure and additional uses of your information

This section outlines the circumstances in which we disclose your information to third parties and explains any additional ways in which we use your data.

Disclosure of your information to service providers

We work with a small number of trusted third-party service providers who help us operate and maintain our website and communications. These third parties process your information on our behalf and only in accordance with our instructions.

These include:

• Telephone provider: BT Privacy Policy
• Email providers: Google Workspace (Gmail), Shopify, and Klaviyo
• Website hosting provider: WordPress (and associated hosting provider, if applicable)

Your information is shared with these service providers only where necessary to:

• Maintain and host our website
• Respond to contact requests
• Operate our business effectively and securely

We ensure that all service providers comply with relevant data protection regulations.

Legal basis for processing:

• Legitimate interests – Article 6(1)(f) GDPR:
  Where we share your information with service providers to help operate, improve, or protect our website or systems, and it is not strictly required to fulfil a contract, we do so based on our legitimate interest in running our business efficiently and securely.
• Contract performance – Article 6(1)(b) GDPR:
  If you have asked us to contact you, provide a service, or enter into a working arrangement with you, we may need to share your information with third-party service providers in order to fulfil your request or obligations under that agreement.

Disclosure of your information to other third parties

We disclose your information to other third parties only in specific, limited circumstances, as described below.

Providing information to third parties such as Google Inc.

We use Google Analytics on our website to understand how visitors use our site. Google collects information through our use of Google Analytics, including IP addresses and information from cookies.

Google uses this information to improve its services, including Google Analytics. The information is shared with Google on an aggregated and anonymised basis. You can learn more about how Google processes this data here:
🔗 https://www.google.com/policies/privacy/partners/

• Legal basis for processing: Legitimate interests (Article 6(1)(f) GDPR)
• Legitimate interest: To meet our contractual obligations with Google and gain insights into how users interact with our website.

You can opt out of Google Analytics by installing the plugin here:
🔗 https://tools.google.com/dlpage/gaoptout

Transfer and storage of your information

Data collected by Google Analytics may be transferred to and stored on Google servers located outside the European Economic Area, including in the United States. See the section “Transfers of your information outside the European Economic Area” below for how such transfers are safeguarded.

Disclosure and use of your information for legal reasons

Indicating possible criminal acts or threats to public security

If we suspect criminal activity (e.g. cybercrime or fraud), we may need to notify the appropriate authorities, such as the police or other regulatory bodies.

• Legal basis for processing: Legitimate interests (Article 6(1)(f) GDPR)
• Legitimate interest: Preventing or reporting crime or suspected criminal activity.

Enforcement or potential enforcement of our legal rights

We may use your information in connection with the enforcement or potential enforcement of our legal rights. For example, this could include passing your details to a debt collection agency if you breach a contractual obligation with us.

• Legal basis for processing: Legitimate interests (Article 6(1)(f) GDPR)
• Legitimate interest: Enforcing our legal rights.

Legal or potential legal disputes or proceedings

We may use your data as necessary to resolve disputes or in relation to legal proceedings, including mediation, arbitration, or court action.

• Legal basis for processing: Legitimate interests (Article 6(1)(f) GDPR)
• Legitimate interest: Managing and resolving disputes.

Ongoing compliance with legal obligations

We may process and disclose your personal information in order to comply with legal obligations, such as responding to court orders or law enforcement requests (e.g. the National Crime Agency for anti-money laundering checks).

• Legal basis for processing: Compliance with a legal obligation (Article 6(1)(c) GDPR)
• Legal obligations: Disclosures required under the laws of England and Wales or international agreements incorporated into UK law.
• Legal basis for processing: Legitimate interests (Article 6(1)(f) GDPR)
• Legitimate interest: Complying with legal obligations from jurisdictions outside the UK where applicable.

How long we retain your information

This section sets out how long we retain your information. We have outlined specific retention periods where possible. Where that has not been possible, we have explained the criteria we use to determine how long your information is stored.

Retention periods

• Enquiry and correspondence information: When you contact us whether via email, our contact form, or phone we retain the information for as long as it is necessary to respond to and resolve your enquiry, and for a reasonable period thereafter for internal record-keeping purposes.
• E-Newsletter: We retain the information used to sign up for our e-newsletter for as long as you remain subscribed (i.e. until you unsubscribe), or until we discontinue our e-newsletter service, whichever comes first.
• Website interaction and technical data: Information collected through cookies, analytics, and other technical means may be retained for as long as it is necessary to fulfil the purposes outlined in this policy and our Cookies Policy.

💡 Please note: Digital Web London does not facilitate online ordering or collect payment details. Therefore, no order or transaction-based information is collected or retained.

Criteria for determining retention periods

In all other cases, we retain your information for no longer than is necessary, based on:

• The specific purpose(s) for which we collected your information and whether we still need it;
• Any legal, regulatory, or contractual requirements to retain the data (e.g., for audit or compliance);
• Whether consent has been given for longer-term processing (and whether that consent has been withdrawn);
• The value and relevance of the information over time;
• Industry best practices or guidance on data retention;
• Risk, cost, or liability associated with storing outdated or irrelevant information;
• Our ability to keep the data accurate and up to date;
• The nature of our relationship with you (e.g., active client, former client, or one-time visitor).

We regularly review our data retention practices to ensure we are not holding data longer than necessary.

How we secure your information

We take appropriate technical and organisational measures to secure your information and to protect it against unauthorised or unlawful use, accidental loss, alteration, or destruction. These include:

• Limiting access to your personal information to only those who need it for legitimate purposes;
• Implementing access controls and role-based permissions;
• Ensuring that any third parties we work with also have appropriate data protection practices in place;
• Storing data in secure environments and systems with firewall and encryption protection;
• Applying confidentiality agreements and data handling protocols where necessary;
• Using anonymisation or pseudonymisation where feasible to minimise identification risk.

Transmission of information to us by email

Please note that transmission of information over the internet is inherently insecure. If you choose to send information to us via email, through our website, or any other digital method, you do so at your own risk.

While we do take steps to protect information once it reaches our systems, we cannot guarantee the security of data while it is in transit. Digital Web London is not responsible for any loss, damages, liability, or harm resulting from the transmission of information to us via insecure channels.

Transfers of your information outside the European Economic Area (EEA)

In some circumstances, your information may be transferred and stored outside the European Economic Area (EEA). This may occur where:

• Our service providers (such as hosting, analytics, or email providers) store data on servers located outside the EEA;
• We use cloud-based platforms that operate internationally;
• It is necessary to comply with a legal obligation or enforce our rights in jurisdictions outside the EEA.

Whenever such transfers occur, we will ensure that appropriate safeguards are in place. These may include:

• Standard contractual clauses approved by the European Commission;
• Adequacy decisions confirming the receiving country’s data protection laws provide sufficient safeguards;
• Binding corporate rules or other legally approved transfer mechanisms.

We are committed to ensuring your data remains protected, regardless of where it is processed or stored.

Google Analytics

Information collected by Google Analytics  including your IP address and any actions you take while browsing our website may be transferred outside the European Economic Area (EEA) and stored on Google’s servers.

Country of storage: United States of America
This country is not currently subject to an adequacy decision by the European Commission.

Safeguards in place:
Google has previously self-certified under the EU-U.S. Privacy Shield, which served as a framework to ensure data protection standards. While the Privacy Shield was invalidated by the Court of Justice of the European Union in 2020 (Schrems II decision), Google now relies on Standard Contractual Clauses (SCCs) and additional technical and organisational measures for data transfers, in accordance with the GDPR.

You can access:

• Google’s Privacy Policy
• Google’s support documentation on data transfers
• European Commission’s information on international data transfers

If you wish to prevent Google Analytics from collecting data, you may opt out using this browser add-on.

For further details, please refer to our Cookies Policy (update the link if needed).

Your rights in relation to your information

Subject to certain limitations, you have the following rights in relation to your personal information, which you can exercise by writing to Digital Web London, Central London, United Kingdom or by emailing us at hello@digitalweblondon.com:

• To request access to your information and information related to our use and processing of your information;
• To request correction or deletion of your personal data;
• To request that we restrict our use of your information;
• To receive information which you have provided to us in a structured, commonly used and machine-readable format (e.g. CSV) and to have that information transferred to another data controller;
• To object to the processing of your information for certain purposes (see the section below titled Your right to object to the processing of your information for certain purposes);
• To withdraw your consent at any time, where we rely on your consent to process your personal data. Withdrawing consent does not affect the lawfulness of processing based on consent before withdrawal;
• The right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or significantly affects you.

In accordance with Article 77 of the UK General Data Protection Regulation (UK GDPR), you also have the right to lodge a complaint with a supervisory authority. In the UK, this is the Information Commissioner’s Office (ICO).

• ICO contact details: https://ico.org.uk/global/contact-us/

Further information on your rights is available at:

• https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/
• https://ico.org.uk/for-the-public/is-my-information-being-handled-correctly/

You can also review Articles 12–22 and 34 of the UK GDPR for a detailed legal overview:
http://ec.europa.eu/justice/data-protection/reform/files/regulation_oj_en.pdf

Verifying your identity
Where you request access to your data, we are legally required to take all reasonable steps to verify your identity before complying. This helps to ensure your data is protected against unauthorised access, identity theft, or fraud.

How we verify your identity

Where we possess sufficient information about you on file, we will attempt to verify your identity using that information. If this is not possible, or if we have insufficient information, we may request original or certified copies of certain documentation to confirm your identity before we can provide you access to your information.

We will inform you of the specific documents required to verify your identity if and when you make such a request.

Your right to object to the processing of your information for certain purposes

You have the following rights in relation to your information, which you can exercise by writing to Digital Web London, Central London, United Kingdom or by emailing us at hello@digitalweblondon.com:

• To object to our use or processing of your information where we process it to carry out a task in the public interest or for our legitimate interests, including profiling (i.e. analysing or predicting your behaviour based on your information) for these purposes; and
• To object to our use or processing of your information for direct marketing purposes (including any related profiling).

You can also exercise your right to object to direct marketing by:

• Clicking the unsubscribe link found at the bottom of any marketing email we send to you, and following the instructions; or
• Sending an email to hello@digitalweblondon.com with the subject line or content including the words “OPT OUT”.

For more information on how to object to cookies and similar technologies, please see the section titled How to accept or reject cookies in our Cookies Policy:
https://www.digitalweblondon.com/pages/cookies

Sensitive Personal Information

‘Sensitive personal information’ refers to details that reveal an individual’s:

• Racial or ethnic origin
• Political opinions
• Religious or philosophical beliefs
• Trade union membership
• Genetic data
• Biometric data used for the purpose of uniquely identifying a person
• Health-related information
• Information concerning an individual’s sex life or sexual orientation

Digital Web London does not knowingly or intentionally collect sensitive personal information through our website or services. You should not submit sensitive personal information to us under any circumstances.

However, if you do inadvertently or intentionally transmit sensitive personal data to us (for example, via email, forms, or uploads), you will be considered to have explicitly consented to our processing of that information under Article 9(2)(a) of the General Data Protection Regulation for the sole purpose of deleting it from our systems.

Changes to Our Privacy Policy

We may update or amend this Privacy Policy from time to time to reflect changes in our legal obligations, business practices, or services.

Minor changes

Where changes are minor and do not significantly impact your rights or the way we process your personal data, we will update the Privacy Policy with a new effective date stated at the top of the document. Any processing of your information will be subject to the terms of the revised Privacy Policy from the effective date onward.

Major changes or changes in purpose

Where we make significant changes to this Privacy Policy—such as changes in the purposes for which we process your data—we will notify you in advance where reasonably possible. This may be done by:

• Sending you an email notification (if we hold your email address), or
• Displaying a prominent notice on our website.

We will provide you with full details of the change and, where applicable, seek your prior consent before processing your personal data for any new purpose not previously outlined in this Privacy Policy.

Children’s Privacy

We are committed to protecting the privacy and safety of children online. In line with the Children’s Online Privacy Protection Act of 1998 (COPPA) and relevant data protection laws, our website and services are not intended for or directed to individuals under the age of 18.

We do not knowingly collect or process personal information from anyone under the age of 18. We also do not knowingly solicit data from, market to, or enter into communications with individuals under this age.

If we become aware that we have inadvertently received personal information from a child under the age of 18 through misrepresentation, fraud, or any other means we will take the following actions:

• Where required by law, obtain verified parental or guardian consent to retain and use the information; or
• If consent cannot be obtained in a timely manner, delete the information from our records.

If you believe we have collected information from or about a person under the age of 18, please notify us immediately at hello@digitalweblondon.com, and we will take prompt steps to investigate and respond appropriately.

Do Not Track Disclosures

“Do Not Track” (DNT) is a browser setting that allows users to express a preference not to be tracked across websites. For more information about Do Not Track, please visit www.allaboutdnt.org.

At this time, we do not respond to Do Not Track signals or browser settings. This is because there is currently no universally accepted standard for how to interpret or respond to such signals.

In addition to cookies, we may use common tracking technologies such as pixel tags, web beacons, and similar technologies. These may be used by us and third-party services (such as analytics or advertising providers) to collect information about your browsing activity across our website—even if you have enabled Do Not Track.

Copyright, Credit and Logo

This Privacy Policy is based on a General Data Protection Regulation (GDPR) compliant template provided by GDPR Privacy Policy.

The copyright in this Privacy Policy is owned by or licensed to us and is protected by international copyright laws and intellectual property rights. All rights in this document are reserved.

Where applicable, you may see the GDPR Privacy Policy logo displayed on our website. This indicates that we have adopted a policy template from GDPR Privacy Policy as the basis for this Privacy Policy.