Last updated: 3rd December 2025
1. Who we are & Contact Information
This website is operated by Mark Burton Design (the “we”, “us”, “our”).
If you have any questions or concerns about how we handle your data, or wish to exercise your data-protection rights, you can contact us at:
- Email: hello@markburtondesign.com
2. What personal data we collect
Depending on how you interact with our website or business, we may collect and process the following types of personal data:
- Identity & contact data: name, email address, telephone number, company name or other contact information, when you submit an enquiry via a contact or enquiry form.
- Technical / usage data: IP address, browser and device information, pages visited, and other typical website analytics data, if we use analytics tools or tracking technologies.
- Communications data: any information you provide when you communicate with us (e.g. by email, contact form, messages), including the content of your messages.
- Optional marketing data: if you sign up to a newsletter or mailing list, we may store your preferences (only if you explicitly consent).
We do not collect (nor intend to collect) any special categories of sensitive personal data (e.g. health, religion, race etc.) unless explicitly stated.
3. How we collect data
We collect personal data in the following ways:
- Directly from you — when you submit a contact/enquiry form, send an email, or otherwise communicate with us.
- Automatically — when you browse our website, through cookies or analytics scripts (if implemented).
- From third-party services — only if you use third-party integrations (e.g. analytics, hosting, forms), and then only the data necessary to provide those services.
4. Why we collect your data & lawful basis for processing
We collect and process your data for the following purposes:
- To respond to your enquiries and provide design services.
- To communicate with you (e.g. scheduling, quotes, updates).
- To manage and operate the website (technical / analytics data) — e.g. to monitor website performance, improve user experience, and ensure security.
- With your consent (where required), to send marketing communications (e.g. newsletters).
Our lawful basis for processing personal data is your consent (for communications/marketing) and legitimate interest for managing enquiries and operating the website.
5. Cookies and tracking
Our website may use cookies or similar tracking technologies to collect technical and usage data (e.g. to log visits, analyse site performance) and improve user experience.
If we use cookies that are not strictly necessary (e.g. for analytics or marketing), we will ask for your consent before using them.
When cookies are used, you should be informed clearly about:
- What cookies are used
- Why they are used
- How you can withdraw consent or manage cookie preferences
6. Who we share data with
We will not sell or rent your personal data. We may share data only with trusted third-party service providers where necessary — for example:
- Web hosting providers
- Email service providers (for contact form submissions / communications)
- Analytics services (if used)
We will ensure any such third parties provide adequate protection for your data.
We do not share personal data for marketing or with unrelated third parties, unless you explicitly consent.
7. Data retention
We will retain your personal data only for as long as it is needed for the purposes set out above. Once data is no longer required (e.g. after completion of a project or long after our last contact), we will securely delete or anonymise it.
If you have signed up for marketing communications and later unsubscribe, we will remove your contact details from our marketing lists.
8. Data security & protection
We implement appropriate technical and organisational measures to protect your data — e.g. secure website hosting (HTTPS), restricted access, secure storage, and regular review of data-handling practices. We aim to follow the principle of “data protection by design and by default.” Information Commissioner’s Office+1
9. Your rights under data protection law
Under UK GDPR / Data Protection Act 2018 you have the following rights:
- Right to access: you may ask for a copy of personal data we hold about you.
- Right to rectification: you may ask us to correct inaccurate or incomplete data.
- Right to erasure (“right to be forgotten”): you may request deletion of your personal data where there is no compelling reason for us to keep it.
- Right to object or restrict processing: you may object to, or ask us to restrict, certain processing (e.g. marketing).
- Right to withdraw consent: where processing is based on consent, you may withdraw it at any time (e.g. unsubscribe from marketing).
- Right to lodge a complaint with the regulator, Information Commissioner’s Office (ICO), if you believe we are not processing your data lawfully. Information Commissioner’s Office+1
If you wish to exercise any of these rights, please contact us (see “Who we are & Contact Information”).
10. Changes to this Privacy Policy
We may update this Privacy Policy from time to time (e.g. if our data-processing practices change or we adopt new services). We will clearly indicate when the policy was last updated. Please check this page periodically to stay informed.
If changes are significant, we may also notify you directly (e.g. via email) if appropriate.
11. Use by minors
Our website and services are not intended for use by children under the age of 18. We do not knowingly collect personal data from minors.