Privacy Policy

01Who we are

NE1 Digital (also trading as NE1 Web Design) is a website design and SEO agency based in North Shields, Tyne and Wear. Our registered address is Suite 2.6a, North Tyneside Business Centre, 54a Saville Street, North Shields, NE30 1NT.

We are the data controller for the personal information we hold about you. If you have any questions about this policy or the data we hold, please get in touch.

02What information we collect

We only collect information that helps us deliver our services and run our business. The categories of information we may collect include:

Information you give us directly

• Your name, email address, phone number and business name when you fill in a contact form, request a quote or book a call
• Project information you share with us by email, phone or in meetings
• Billing details when you become a client (name, address, payment information, processed via our secure payment provider)

Information collected automatically

• Anonymised analytics data via Google Analytics 4: pages visited, time on site, approximate location, device type, browser version
• Cookie data, see our cookie policy for details
• IP address, used purely for security and fraud prevention

Information from third parties

• Reviews and ratings from Google Business Profile, when you choose to leave a public review
• Referrals from existing clients (when they pass on your contact details with your permission)

03How we use your information

We use your personal information to:

• Respond to your enquiries and provide quotes
• Deliver the services you have asked us to provide
• Send invoices and process payments
• Send service-related emails (project updates, hosting renewal reminders, support messages)
• Improve our website and services through aggregated, anonymised analytics
• Comply with our legal and regulatory obligations

We do not sell, rent, or trade your personal information to anyone, ever.

04Legal basis for processing

Under UK GDPR we must have a lawful basis to process your personal information. The bases we rely on are:

• Contract: processing necessary to provide the services you've engaged us for
• Legitimate interests: running our business effectively, responding to enquiries, and improving our services
• Consent: for non-essential cookies and marketing communications, where you've actively opted in
• Legal obligation: for tax, accounting and other regulatory requirements

05Who we share your information with

We share your data only with trusted third parties who help us deliver our services. These include:

• Hosting providers (e.g. 20i, Cloudways) for website and email hosting
• Email service providers for transactional and notification emails
• Payment processors (Stripe, GoCardless) for handling payments securely
• Analytics providers (Google Analytics 4) for anonymised website usage statistics
• Our accountant for tax and bookkeeping purposes

All third parties we use are GDPR-compliant and bound by strict data processing agreements. We never share your information for marketing purposes.

06How long we keep your information

We keep your personal information only for as long as we need it:

• Enquiry data from contact forms: up to 24 months if you don't become a client
• Client records (project files, invoices, correspondence): 7 years from the end of our engagement, to meet UK accounting requirements
• Analytics data: retained per Google Analytics 4 default settings (currently 14 months for anonymised event data)
• Newsletter subscribers: until you unsubscribe

After these periods, your data is securely deleted or anonymised.

07Your rights

Under UK GDPR, you have the following rights regarding your personal data:

• Right to access: request a copy of the information we hold about you
• Right to rectification: ask us to correct any information that is inaccurate or incomplete
• Right to erasure: ask us to delete your information (subject to legal retention requirements)
• Right to restrict processing: ask us to stop processing your data in certain circumstances
• Right to data portability: receive your information in a structured, machine-readable format
• Right to object: object to our use of your data, particularly for direct marketing
• Right to withdraw consent: if we are processing on the basis of your consent, you can withdraw it at any time

To exercise any of these rights, email us at hello@ne1webdesign.co.uk. We will respond within 30 days.

08Data security

We take the security of your personal data seriously. Our measures include:

• SSL/TLS encryption on our website and all client portals
• Secure password storage and access controls on all systems
• Regular software updates and security patches
• Limited access to personal data, only those who need it for their role
• Encrypted backups stored separately from primary systems

However, no system is 100% secure. If we ever experience a data breach affecting your personal information, we will notify you and the Information Commissioner's Office (ICO) within 72 hours, as required by law.

09How to complain

If you're unhappy with how we've handled your personal data, we'd really like the chance to put it right. Please email us first.

You also have the right to lodge a complaint with the UK's data protection regulator, the Information Commissioner's Office (ICO):

• Website: ico.org.uk
• Helpline: 0303 123 1113

10Updates to this policy

We may update this privacy policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons.

If we make significant changes, we'll let active clients know by email and will update the "last updated" date at the top of this page. We encourage you to review this page periodically.