Privacy Policy — lm created it

01 · Who We Are

lm created it is a web design and digital marketing service operating in the UK. For the purposes of UK GDPR, we are the data controller for personal data collected through this website.

Contact: lm.created.it@gmail.com

If you have any questions about how we handle your data, you can reach us at the email above. We will respond within 30 days.

02 · What Data We Collect & Why

We only collect personal data that is necessary to provide our services. Here's a breakdown of what we collect, how, and why:

What	How	Why (Legal Basis)
Name, email, phone number, business name, enquiry details	Contact / quote form on this website	Legitimate interests — to respond to your enquiry
Name, email address, time zone, booking preferences	Calendly scheduling link (when booking a call)	Legitimate interests — to arrange a consultation call
Payment details (card number, billing address)	Stripe payment processor (we never see or store your card details)	Contract performance — to process payment for services
IP address, browser type, pages visited	Vercel hosting (basic server logs)	Legitimate interests — site security and performance

      Important: We do not use cookies for advertising or tracking. We do not sell, rent, or share your personal data with third parties for marketing purposes. Ever.
    

03 · Third-Party Services

To operate this website and deliver our services, we use the following third-party platforms. Each has its own privacy policy governing the data they process on our behalf:

Calendly (calendly.com) — booking and scheduling. Privacy policy →
Stripe (stripe.com) — payment processing. We never store your card details. Privacy policy →
Vercel (vercel.com) — website hosting and delivery. Privacy policy →
Google Fonts — typography served from Google's CDN. Privacy policy →

All third-party providers are required to process your data in compliance with UK GDPR.

04 · How Long We Keep Your Data

Type of data	Retention period
Enquiry data (contact form, emails)	12 months from last contact, then deleted
Client project data (briefs, correspondence)	7 years (UK legal / tax requirement)
Payment records	7 years (HMRC requirement) — held by Stripe
Calendly booking records	Managed by Calendly per their policy

05 · Your Rights Under UK GDPR

Under UK data protection law, you have the following rights:

Right to access — request a copy of the personal data we hold about you
Right to rectification — ask us to correct inaccurate data
Right to erasure — ask us to delete your data (where legally possible)
Right to restrict processing — ask us to limit how we use your data
Right to object — object to processing based on legitimate interests
Right to portability — request your data in a portable format

To exercise any of these rights, contact us at lm.created.it@gmail.com. We will respond within 30 days.

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk if you believe your data has been handled unlawfully.

06 · How We Protect Your Data

We take reasonable technical and organisational measures to protect your personal data, including:

All website traffic is encrypted via HTTPS (SSL/TLS)
Payment data is handled exclusively by Stripe — we never see your card details
Email communications are stored in Google Workspace with two-factor authentication
We do not store sensitive personal data in spreadsheets or unencrypted files

No method of transmission over the internet is 100% secure. If you have security concerns, please contact us directly.

07 · Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we'll update the "Last updated" date at the top of this page. Continued use of this website after any changes constitutes acceptance of the updated policy.

Significant changes — such as new types of data collection — will be communicated via a notice on the homepage.

08 · Contact Us

For any privacy-related questions or to exercise your data rights:

lm created it
Email: lm.created.it@gmail.com
Based in England, UK
Response time: within 30 days