Privacy Policy – Mendip Creative

Last updated: 20.05.26

Mendip Creative (“we”, “us”, “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our website or services.

We operate in accordance with the UK GDPR, Data Protection Act 2018, and all relevant UK privacy laws.

1. Information We Collect

We may collect the following types of information:

1.1 Personal Information

Provided directly by you when you:

  • contact us

  • request a quote

  • sign a contract

  • send files or project content

  • use our services

This may include:

  • name

  • email address

  • phone number

  • business name

  • project details

  • billing information

1.2 Technical Information

Collected automatically when you visit our website:

  • IP address

  • browser type

  • device information

  • pages visited

  • cookies (see Section 7)

1.3 Project Data

If you provide access to:

  • hosting accounts

  • CMS logins

  • website files

  • databases

  • branding assets

…we treat this information as confidential and use it only for the purpose of completing your project.

2. How We Use Your Information

We use your information to:

  • respond to enquiries

  • provide quotes

  • deliver design and development services

  • manage projects

  • send invoices and receipts

  • maintain business records

  • improve our website and services

We do not sell or share your data with third‑party marketers.

3. Legal Basis for Processing

We process your data under the following lawful bases:

  • Contract – to deliver the services you request

  • Legitimate Interest – to operate and improve our business

  • Consent – for optional marketing communications

  • Legal Obligation – for accounting and tax purposes

4. Data Storage & Security

We take reasonable steps to keep your data secure, including:

  • encrypted devices

  • secure passwords

  • limited access to project files

  • secure hosting providers

However, no system is 100% secure. We cannot guarantee absolute protection against hacking, breaches, or third‑party failures.

5. Sharing Your Information

We may share your information with:

  • hosting providers

  • domain registrars

  • email service providers

  • payment processors

  • subcontractors working on your project

Only when necessary to deliver your project.

We do not sell or rent your information to any third party.

6. Data Retention

We keep:

  • project files for as long as needed to provide services

  • invoices and financial records for 6 years (legal requirement)

  • emails and communication for reference and project history

You may request deletion of your data at any time (unless we are legally required to keep it).

7. Cookies

Our website may use cookies to:

  • improve performance

  • analyse traffic

  • remember preferences

You can disable cookies in your browser settings.

8. Your Rights (UK GDPR)

You have the right to:

  • access your data

  • correct inaccurate data

  • request deletion

  • restrict processing

  • object to processing

  • request data portability

To exercise these rights, contact us at:

info@mendipcreative.co.uk

9. Third‑Party Links

Our website may contain links to external sites. We are not responsible for the privacy practices of those websites.

10. Changes to This Policy

We may update this Privacy Policy from time to time. The latest version will always be available on our website.

11. Contact Us

For privacy questions or data requests:

Mendip Creative Email: info@mendipcreative.co.uk Location: Radstock, Somerset, UK