Legal / 01

Privacy
Policy.

Plain English. No dark patterns. We collect the minimum we need to run the business, we protect it, and we don't sell it.

Last updated

10 April 2026

Data controller

Hamlet Digital Ltd

Questions

[email protected]

Policy

What we collect

When you contact us via the website form, email or phone, we collect:

  • 01Your name, email address, and (if provided) phone number and company name
  • 02The message you write — including any project details you choose to share
  • 03Your IP address and basic browser information, logged by our hosting provider for security
  • 04Basic analytics (page views, source) to understand what content is useful

Why we collect it

We use your information only to:

  • 01Reply to your enquiry and discuss a potential project
  • 02Deliver services you've agreed to (contracts, invoices, project communications)
  • 03Keep the site secure and working properly

We do not use your data for targeted advertising. We do not share it with any third parties for marketing. We do not sell it. Ever.

Lawful basis (UK GDPR)

We process your data under the "legitimate interest" basis — you contacted us first and we need the information to respond. If you become a client, we process data under the "contract" basis for the duration of our engagement.

Where we store it

  • 01Enquiry data is stored in our own database on UK/EU-based servers
  • 02Email correspondence is held in our business email system
  • 03Transactional emails (quotes, invoices, contracts) are sent via Mailgun (EU region)
  • 04Nothing is transferred outside the UK or EU without your consent

How long we keep it

  • 01Enquiry messages that don't become clients: deleted after 12 months
  • 02Client records, contracts and invoices: retained for 7 years to meet UK tax and accounting law (HMRC requirement)
  • 03Server logs: retained for 30 days

Your rights

Under UK GDPR, you have the right to:

  • 01Ask what data we hold about you
  • 02Ask us to correct anything that's wrong
  • 03Ask us to delete your data (subject to legal retention requirements above)
  • 04Ask us to export your data in a portable format
  • 05Withdraw consent at any time (where processing is based on consent)
  • 06Complain to the ICO (ico.org.uk) if you think we've mishandled your data

To exercise any of these rights, email [email protected]. We'll respond within one working day.

Cookies

We group cookies into three categories. You control which categories are active using the cookie banner that appears when you first visit, or at any time via the Cookie Settings link.

Essential Cookies (always on)

Required for the site to function. Cannot be disabled.

  • 01PHPSESSID — session cookie. Expires when you close your browser.
  • 02CSRF token — protects form submissions from cross-site forgery. Session-only.
  • 03hamlet_consent — stores your cookie preferences. Expires after 1 year.

Analytics Cookies (requires your consent)

Help us understand how visitors use the site so we can improve it. Data is aggregated.

  • 01Google Analytics (GA4) — page views, traffic sources. Cookies expire after up to 2 years.
  • 02Microsoft Clarity — anonymous interaction heatmaps. Cookies expire after up to 1 year.

Marketing Cookies (requires your consent)

Used to measure the effectiveness of our advertising. We do not use these for remarketing or retargeting.

  • 01Google Tag Manager — manages when other scripts load. Session-based.
  • 02Facebook / Meta Pixel — measures ad effectiveness. Cookies expire after up to 2 years.

When you make or change a cookie choice, we record the decision (timestamp, anonymised identifier, IP address, and which categories you chose) as proof of consent. This record is required by UK GDPR and is retained even if you later withdraw consent.

You can change your preferences at any time using the Cookie Settings link in the footer.

Security

  • 01The site runs on HTTPS (TLS) at all times
  • 02Enquiry data is stored in a UK/EU-hosted database with regular backups
  • 03Passwords are hashed using industry-standard algorithms; we never store them in plain text
  • 04Only the founder has access to the production admin

Changes to this policy

If we change this policy, we'll update the "Last updated" date at the top. Material changes will be communicated directly to active clients by email.

Contact

Questions about privacy or your data? Email [email protected].

Hamlet Digital Ltd is registered in England & Wales.

We use cookies to keep the site working and, with your permission, to understand how you use it. Privacy policy