Skip to main content
Data Protection

Privacy Policy

We are committed to protecting your personal data and handling it with full transparency and care in line with UK law.

Last updated: 10 April 2026

In plain English

  • We only collect the information we need to reply to enquiries, deliver services, and run the site properly.
  • We do not sell your personal data.
  • You can email [email protected] to ask what data we hold or request changes.

1. Who We Are

TsvWeb is a web design and development service operating from the United Kingdom. We are the data controller responsible for your personal information collected through this website and during the delivery of our services.

Location

United Kingdom

2. What Personal Data We Collect

When you contact us, enquire about our services, or become a client, we may collect:

  • Full name
  • Email address
  • Phone number
  • Business name and details
  • Website requirements and project information
  • Basic analytics data (e.g. pages visited, browser type, device — collected anonymously)

Payment information is processed exclusively by secure third-party providers (e.g. Stripe). We never store card details on our servers.

3. How and Why We Use Your Data

We collect and process your personal data for the following purposes:

Service Delivery

To design, build, and manage your website as agreed.

Client Communication

To respond to enquiries, send project updates, and provide support.

Billing & Subscriptions

To manage your monthly subscription and process payments.

Analytics & Improvement

To understand how our website is used and improve user experience.

Legal Compliance

To meet our obligations under UK law.

4. Our Legal Basis for Processing (UK GDPR)

Under UK GDPR, we rely on the following lawful bases:

Art. 6(1)(b)

Contract

Processing is necessary to fulfil our service agreement with you.

Art. 6(1)(f)

Legitimate Interests

To operate, protect, and improve our business, where this doesn't override your rights.

Art. 6(1)(c)

Legal Obligation

Where we must process data to comply with applicable UK law.

5. Third-Party Service Providers

We use carefully selected third-party providers who may process your data on our behalf. These providers are contractually bound to protect your information and may only use it for the purposes we specify.

StripePayment processing
Website hosting providerInfrastructure and uptime
Google AnalyticsAnonymous website usage analytics
Google Calendar / Scheduling toolAppointment booking
Email communication providerClient correspondence

We do not sell your personal data to any third party.

6. International Data Transfers

Some of our third-party providers may process data outside the UK or EEA. Where this occurs, we ensure appropriate safeguards are in place — such as UK adequacy decisions, Standard Contractual Clauses, or equivalent protections — in full compliance with UK GDPR Chapter V.

7. How Long We Keep Your Data

We only retain personal data for as long as necessary for the purposes it was collected:

Active Clients

For the full duration of our service relationship.

Former Clients

Up to 24 months after services end, for legal and accounting purposes.

After the applicable retention period, data is securely deleted or anonymised, unless we are required by law to retain it longer.

8. Your Rights Under UK GDPR

You have the following rights regarding your personal data. To exercise any of them, contact us at [email protected]. We will respond within one calendar month.

Right of Access

Request a copy of the data we hold about you (Subject Access Request).

Right to Rectification

Request correction of inaccurate or incomplete data.

Right to Erasure

Request deletion of your data where there is no lawful reason to retain it.

Right to Restriction

Ask us to restrict processing in certain circumstances.

Right to Portability

Receive your data in a structured, machine-readable format.

Right to Object

Object to processing based on legitimate interests.

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk if you believe your data has been mishandled.

9. Cookies

We use cookies and similar tracking technologies on our website to:

  • Ensure the website functions correctly
  • Analyse how visitors use our site (via Google Analytics)
  • Improve performance and user experience

You can control or disable cookies through your browser settings at any time. For full details, see our Cookie Policy.

10. Security

We take the security of your personal data seriously. We apply appropriate technical and organisational measures — including secure connections (HTTPS), access controls, and vetted third-party processors — to protect your data against unauthorised access, loss, alteration, or disclosure. No method of transmission over the internet is 100% secure, but we strive to use commercially acceptable means to protect your information.

11. Age Restrictions

Our services are intended for individuals aged 18 and over. We do not knowingly collect personal data from minors. If you believe a minor has provided us with personal data, please contact us immediately and we will take steps to delete it.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. Material changes will be communicated by updating the date at the top of this page and, where appropriate, by direct notification. We encourage you to review this page periodically.

Contact Us

Questions or concerns about this Privacy Policy or how we handle your data? Get in touch.

Email

[email protected]

Jurisdiction

England & Wales