Privacy Policy

Effective Date: 16th March 2025 | Last Reviewed: 16th March 2025

ADD Digital Ltd ("we," "our," "us," "the company") is committed to protecting the privacy and security of personal data. This Privacy Policy outlines how we process personal data in compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018 (DPA 2018).

Scope of Policy

This Privacy Policy applies to:

  • All personal data processed by ADD Digital Ltd in connection with digital marketing, website development, and related services.
  • All employees, contractors, consultants, and third-party service providers acting under our instruction.
  • Any processing of personal data conducted within the UK, the European Economic Area (EEA), or involving data subjects within the scope of the UK GDPR.

1. Personal Data

Information that identifies a person, such as name, email, phone number, and IP addresses.

2. Data Processing

Any operation performed on personal data, such as collection, storage, access, modification, transfer, or deletion.

Principles of Data Protection

  • Lawfulness, Fairness, and Transparency: Data is processed lawfully and transparently.
  • Purpose Limitation: Data is collected for specific, legitimate purposes.
  • Data Minimisation: Only necessary data is processed.
  • Accuracy: Data is kept accurate and up to date.
  • Storage Limitation: Data is retained only as long as required.
  • Integrity and Confidentiality: Security measures protect against unauthorised access and breaches.

Data Collection and Processing

We collect data via:

  • Direct Collection: Data provided voluntarily by clients and website visitors.
  • Automated Collection: Data captured via cookies, analytics tools, and tracking technologies.
  • Third-Party Sources: Data from authorised partners or publicly available sources.

Data Sharing and Transfers

We may share personal data with:

  • Service Providers: Hosting providers, email platforms, analytics services.
  • Clients: As part of contracted website development deliverables.
  • Legal Authorities: When required by law.

Data Subject Rights

Under the UK GDPR, data subjects have the following rights:

  • Right to Access: Request a copy of personal data.
  • Right to Rectification: Correct inaccuracies in personal data.
  • Right to Erasure: Request deletion of data (subject to legal exemptions).
  • Right to Restrict Processing: Limit processing in certain situations.
  • Right to Data Portability: Obtain and reuse data.
  • Right to Object: Object to processing for marketing or profiling.

Data Security Measures

To protect personal data, we implement:

  • Access Control: Role-based access restrictions.
  • Encryption: Secure encryption for data storage and transmission.
  • Regular Audits: Ongoing security assessments.
  • Incident Response: A structured breach response plan.

Complaints Handling

If you have concerns regarding data processing, contact us at:

Alternatively, you can contact the Information Commissioner’s Office (ICO):

Policy Review

This policy is reviewed annually or in response to significant changes. Updates will be published on our website.

ADD Digital Ltd
The Willow Centre Unit 3 Kingsdale Business Centre, Regina Road, Chelmsford, Essex, England, CM1 1PE
Registered number: 16224711