Your privacy is important to us. It is Magical Design’s policy to respect your privacy regarding any information we may collect from you across our website, https://www.magicaldesign.co.uk.
Magical Design respect the EU’s General Data Protection Regulations (GDPR) and this policy explains how we collect and treat any information you give us. We endeavour to keep your data safe and want to make it quick and easy for you to request copies of your data. You can also request your data be deleted at any time.
We value your privacy as much as we do our own, so we’re committed to keeping your personal and business information safe. We’ll never use your personal information for any reason other than why you gave it, and we’ll never give anyone access to it unless we’re forced to by law.
How we collect information
We collect information by fair and lawful means, with your knowledge and consent. We also let you know why we’re collecting it and how it will be used. You are free to refuse our request for this information, with the understanding that we may be unable to provide you with some of your desired services without it.
We ask for contact information including your name, email address and telephone number on our website so that we can reply to your project enquiry. When you send an enquiry to Magical Design from our online enquiry form we do not save or store this data online. The enquiry arrives to us via secure email and if you choose to not proceed with a website or design project we will permanently delete all information sent to us. We will not add your contact details to our mailing list and will never pass on or sell and of the data sent to us on our enquiry form.
Magical Design may collect the following personal information when you contact us via our online enquiry form:
- Contact information (eg. name, email address, telephone number)
- Information about your business or company
- Billing information when any payments are required for our services (these are not processed or stored on our website server)
- We will not ask for or collect any Sensitive Data about you.
This data may be collected from you when you fill in our online enquiry form for the specific reason of being able to provide you with an estimate or quote for your website project or receiving a request to contact you.
What information we collect
- When you contact us by email or through our website, we collect your name, email address, phone number and the company you work for (if applicable)
- If we work on a design or development project we will collect information related to the project to help us do the work required.
- If you sign up for our newsletter, we only collect your email address.
- If you do business with us, we also collect your business information for the invoices we send you and the payments you make.
- All payments are processed by either Bank Transfer, PayPal or Stripe and a processed using Harvest invoicing software. We never have access to your credit card information.
This data is considered “identifying information”, as it can personally identify you. We only request personal information relevant to providing you with a service, and only use it to help provide or improve this service.
When you visit our website, our servers may automatically log the standard data provided by your web browser. This data is considered “non-identifying information”, as it does not personally identify you on its own. It may include your browser type and version, the pages on our website that are visited, the time and date of your visit, the time spent on each page, and other anonymous details.
Data processing and storage
The personal information we collect is stored and processed in, or where we or our partners, affiliates and third-party providers maintain facilities. We only transfer data within jurisdictions subject to data protection laws that reflect our commitment to protecting the privacy of our users.
If you request your personal information be deleted, or where your personal information becomes no longer relevant to our operations, we will erase it from our system within a reasonable time frame.
When you contact us by email or through our website enquiry form, we store your your information for the project we are working on in our email software and our contacts software (for basic contact information about you and your business) which are both secured via both password protection and two factor authentication. We only keep information that is relevant to the project we are working on with you and do no not store or save any sensitive information.
Any files related to a project we are working on with a client is stored securely on an encrypted hard drive. We may use online storage to save copies of the project details or to backup files for the project. The online storage account is secured using password protection alongside two factor authentication for extra security.
Our website may link to external sites that are not operated by us. Please be aware that we have no control over the content and policies of those sites, and cannot accept responsibility or liability for their respective privacy practices.
What we use your information for
In most cases, the information supplied to Magical Design will be in relation to a design or development project we are working on with a client or for internal record keeping.
We keep a mailing list with MailChimp of our active web design and web hosting clients so we can alert you to important information about our services. These may include notifying you of any changes to your domain name or web hosting package or to make you aware of any holiday time where we will not be available. We regularly review this and remove any clients who no longer work with us or no longer have a domain or web hosting package with us.
You will always have the option to unsubscribe from these communications and we won’t send them to you again.
We will use your information to send you invoices, statements, or reminders.
Who has access to information about you
When we store information in our own systems, only the people who need it have access. If a project requires us to outsource the work to another person or company we will inform you first and will always request permission first.
The steps we take to keep your information private
If we store your information in third-party services, we restrict access only to people who need it. We store passwords in an encrypted password manager and use a different, randomly generated password for each service, and never use the same password twice.
The computers we use have encrypted encrypted hard drives and are protected by a passcode access. Our mobile devices are also protected by a fingerprint or facial recognition.
We do not otherwise share or supply personal information to third parties. We do not sell or rent your personal information to marketers or third parties.
SSL secure server certificate
Our website is hosted on a secure server so traffic between your web browser and our website is encrypted to increase data security. This is important to secure any data you may send to us via an enquiry form on our website.
Our website contains links to our profile pages on Facebook, Twitter, Google+, Instagram, LinkedIn and Dribbble. Any content on these websites is not in our control and visitors should be aware they are leaving our website when clicking these links.
In the event of a data breach we will contact all clients and inform the relevant supervising bodies within 72 hours.
We use “cookies” to collect information about you and your activity across our site. A cookie is a small piece of data that our website stores on your computer, and accesses each time you visit, so we can understand how you use our site. This helps us serve you content based on preferences you have specified.
No personal details are stored or shown to us (please see the following section about Google Analytics for further details of how this data is kept anonymous)
You can control cookies (or disable them entirely) in your web browser if you wish. If you do disable cookies please be aware that some parts of the website may not function correctly.
Cookies set by the website you are visiting are normally referred to as “first-party cookies”, and typically only track your activity on that particular site. Cookies set by other sites and companies (ie. third parties) are called “third-party cookies”, and can be used to track you on other websites that use the same third-party service.
Essential cookies are crucial to your experience of a website, enabling core features like user logins, account management, shopping carts and payment processing. We use essential cookies to enable certain functions on our website.
Performance cookies are used in the tracking of how you use a website during your visit, without collecting personal information about you. Typically, this information is anonymous and aggregated with information tracked across all site users, to help companies understand visitor usage patterns, identify and diagnose problems or errors their users may encounter, and make better strategic decisions in improving their audience’s overall website experience. These cookies may be set by the website you’re visiting (first-party) or by third-party services. We use performance cookies on our site.
Functionality cookies are used in collecting information about your device and any settings you may configure on the website you’re visiting (like language and timezone settings). With this information, websites can provide you with customised, enhanced or optimised content and services. These cookies may be set by the website you’re visiting (first-party) or by third-party service. We use functionality cookies for selected features on our site.
We review the privacy policies of all our third-party providers before enlisting their services to ensure their practices align with ours. We will never knowingly include third-party services that compromise or violate the privacy of our users.
Like most websites, some data is collected via Google Analytics including browser type, the page you entered or exited our website and what pages were viewed and the dates and times of visits. We have configured our Google Analytics account to only track the very basic anonymous information about what pages visitors to our website view. Our Google Analytics account is configured to NOT track IP addresses or personal data by using the following settings:
- anonymise IPs while tracking (IP address data is NOT sent to Google Analytics)
- enable support for user opt-out (website visitors can opt-out of Google Analytics tracking at any time)
- exclude tracking for users sending Do Not Track header (ensures web browser settings for Do Not Track are obeyed)
You can opt out of Google Analytics tracking on the Magical Design website by clicking the link below:Click here to opt-out of Google Analytics
We do not use any remarketing, demographics or interests reports in Google Analytics.
Your data rights
As our user, you have the right to be informed about how your data is collected and used. You are entitled to know what data we collect about you, and how it is processed. You are entitled to correct and update any personal information about you, and to request this information be deleted. You may amend or remove your account information at any time, using the tools provided in your account control panel.
You are entitled to restrict or object to our use of your data, while retaining the right to use your personal information for your own purposes. You have the right to opt out of data about you being used in decisions based solely on automated processing.
Under the GDPR you have the rights to:
- The right to be informed
- The right of access
- The right to rectification
- The right to erasure
- The right to restrict processing
- The right to data portability
- The right to object
- Rights in relation to automated decision making and profiling.
If you’d like to request a copy of any personal data held on your or to request the deletion of any data please email firstname.lastname@example.org
Feel free to contact us if you have any concerns or questions about how we handle your data and personal information.
Changes to the policy
If we change the contents of this policy, those changes will become effective the moment we publish them on our website.