Privacy & Cookies
1. Who we are
Blackpool Web Design (“we”, “us”), of Blackpool Enterprise Centre, Lytham Road, Blackpool, Lancashire FY4 1EW, is the “data controller” for the personal data described here. Questions or requests: [email protected] or WhatsApp.
2. What we collect
- Enquiry & sign-up details - name, business name, email, phone/WhatsApp number, and the answers you give in your website brief.
- Billing details - billing address and payment records. Card details are entered directly into Stripe and stored by them as a secure token; we do not store or see your full card number.
- Account & project data - your domain, hosting details, logins you choose to share with us, and correspondence (email, WhatsApp, tickets).
- Website analytics - anonymous, cookieless usage data from our own site (see analytics & cookies below).
3. Why we use it & our legal basis
| Purpose | Legal basis |
|---|---|
| Provide the service - design, host and support your website | Performance of our contract with you |
| Take payment and manage recurring billing | Performance of contract / legal obligation |
| Respond to enquiries and provide support | Legitimate interests / contract |
| Keep accounting and tax records | Legal obligation |
| Understand how our website is used (anonymous, cookieless analytics) | Legitimate interests |
| Occasional service updates or offers | Consent (you can opt out any time) |
4. Who we share it with
We only share data with the providers we need to run the service, each under their own data-protection terms:
- Stripe - payment processing and secure card storage.
- WHMCS - our billing and client-account system.
- Brixly - website hosting infrastructure.
- ENOM - domain registration and management.
- Email and messaging tools we use to support you.
We never sell your personal data. We may disclose data if required by law.
5. How long we keep it
We keep your account and project data while you're a client and for a reasonable period afterwards. Financial records are kept for at least 6 years to meet UK tax rules. Enquiry data that doesn't become an account is deleted once it's no longer needed.
6. Your rights
Under UK data-protection law you can ask to access, correct, delete or restrict your personal data, object to certain processing, or receive a copy to take elsewhere. Email [email protected] and we'll respond within one month. You can also complain to the Information Commissioner's Office (ICO), though we'd rather sort any concern with you first.
7. Analytics & cookies
We use Matomo, a privacy-friendly analytics tool that we host ourselves, to see which pages are visited and where visitors come from. It runs in cookieless mode: it sets no cookies and stores nothing on your device, your IP address is anonymised before it's stored, and nothing is shared with or sent to any third party. Because it can't identify or follow you - here or anywhere else - UK cookie rules (PECR) don't require a consent banner for it, which is why you won't see one. If your browser sends a “Do Not Track” signal, we honour it and don't record your visit at all.
The site itself uses only essential cookies - the ones needed for sign-up and checkout to work, which can't be switched off. You can control or delete cookies in your browser settings. Note that the checkout uses Stripe, which sets its own cookies to process payments and prevent fraud.
8. Your customers' data
Where we build a website that collects data from your customers (enquiry forms, bookings, shop orders), you are the data controller for that information and responsible for your own privacy policy. We act as your processor and will help you set this up.
9. Changes
We may update this policy from time to time; the “last updated” date above shows when. Material changes will be notified to active clients.
10. Contact
Any privacy question: [email protected] or WhatsApp us.