Simple statement about the data I hold about you as a customer

Cookies: When you use this website, it may leave cookies on your computer. I cannot use them them to identify you personally, and use them to improve the experience of website visitors (like most websites in the world).

Read more about cookies

Your personal data: As one of my customers I hold some data on you (so I can keep in touch). Your personal information is kept private and stored securely until a time it is no longer required or has no use. At no time do I sell or pass your personal data to other companies/ people to use, unless required to do so by law.

Read more about your data

Marketing: I will not use your personal data to market to you unless you give explicit permission and tell me what subjects you are interested in. Such data, is never passed or sold to third parties.

My beliefs regarding your privacy and data protection

Your privacy and your data protection are human rights.

  1. I have a duty of care to all those people I store data on
  2. Data is a liability, it should only be collected and processed when necessary
  3. I detest spam as much as you do!
  4. I will never sell, rent or otherwise distribute or make public your personal information

The data controller for this website, my marketing, and my operations is me, Lucy Long.

The following policy gives more details on the subjects above.

My privacy and data policy.

This policy shows what data my business holds on you as a customer and my website visitors, why and what I do with it. I hold this data as I have a legitimate interest in doing so. If you have any questions on this, or wish to review any data I hold on you, you should contact me.

To read individual sections of this policy, click on the + sign to open them.

1.0 External Website Links & Third Parties

Although I attempt to only include quality, safe and relevant external links, users are advised to adopt caution before clicking any external web links in this website.

External links are clickable text / banner / image links to other websites, for example this one) I cannot guarantee or verify the contents of any externally linked website despite my best efforts.

You click on external links at your own risk and I cannot be held liable for any damages or implications caused by visiting any external links mentioned.

2.0 Social Media Policy & Usage

I adopt a Social Media Policy to ensure the business and any representatives/ staff conduct themselves accordingly online. While I have official profiles on social media platforms you are advised to verify authenticity of such profiles before engaging with, or sharing information with such profiles.

I never ask for user passwords or personal details on social media platforms. You are advised to conduct yourself appropriately when engaging with me on social media.

This website may feature social sharing buttons, enabling you to share web content directly from this website to social media platforms. You use social sharing buttons at your own discretion and accept that doing so may publish content to your social media profile feed or page.

I may ask if I can share a recommendation (if you are kind enough to give me one) with other people via the website and my social media. I will only share such recommendations if you give your permission, and I will remove said recommendations at any time, if you want me to.

3.0 My core beliefs regarding user privacy and data protection

  • User privacy and data protection are human rights
  • I detest spam as much as you do!
  • I will never sell, rent or otherwise distribute or make public your personal information
  • I have a duty of care to the people whose data I hold
  • Data is a liability, it should only be collected and processed when absolutely necessary

4.0 Relevant legislation

This website is designed to comply with the following legislation with regards to data protection and user privacy:

My business and internal computer systems also are designed to comply with the same legislation.

5.0 Personal information I collectand why I collect it

As a business owner I process personal data, this could be of website visitors, or on my customers. I do this for the following reasons:

5.1 Cookies

Cookies are small files saved to the your (and all user’s) computer that track, save and store information about the user’s interactions and use of the website. This website uses cookies to improve the user experience of visitors, and to collate anonymous information about how you (and other users) use the website.

All visitors give permission or to deny the use of/ saving of cookies on computer/ device. This is done when you first visit the website.

The cookies I use are (click down arrow to see details:

CookieTypeDurationDescription
DYNSRV1st PartySessionHelps load balancer to track which web server to send the visitor to. Its purpose is to improve the performance of the website. This is an essential cookie to the operation of the site that is always set by the load balancer and does not store any personal information. Personally identifiable information: 
  • The data controller for this site is unable to access any personally identifiable information from this cookie.
Google Analytics3rd PartyI use Google Analytics to monitor traffic levels, search queries and visits to this website. Google Analytics stores IP address anonymously on its servers in the US. These cookies enable Google to determine whether you are a return visitor to the site, and to track the pages that you visit during your session. Personally identifiable information: 
  • The data controller for this site is unable to access any personally identifiable information from this cookie Google cannot associate your IP address with any personally identifiable information
Viewed cookie policy1st party1 yearStops the cookie warning message coming up each time you visit the site.Personally identifiable information: 
  • The data controller for this site is unable to access any personally identifiable information from this cookie.
If you accept the cookie policy, clicking accept will stop you being asked about it each time you visit this site. AcceptIf you want to delete the cookie left by the cookie policy, click here. This will only affect ‘view cookies’ cookie and will mean you are asked to accept cookies again next time you visit this site.

You can disable cookies on your internet browser, it will stop cookies from tracking any part of your visit to pages in this website.

5.2 Website visitor tracking.

Like most websites, this site uses Google Analytics to track user interaction (via the use of cookies). I use this data to determine how many visitors use the site, to better understand how they find and use the web pages and to see their journey through the website.

Google Analytics records data such as your geographical location, device, internet browser and operating system; however, none of this information personally identifies you to me.

Google Analytics also records your computer’s IP address which could be used to personally identify you, but Google do not grant me access to this. I consider Google to be a third-party data processor (see section 6.0 below).

5.3 Contact forms and email links

Should you choose to contact us using the contact form on our ‘Contact us’ page or an email link like this one, the data that you supply will NOT be stored by this website.  It will be processed by the third party data processors defined in section 7.0 that relates to email conversations.

Your data will be collated into an email and sent to us over the Simple Mail Transfer Protocol (SMTP). My SMTP servers are protected by TLS (sometimes known as SSL) meaning that the email content is encrypted using SHA-2, 256-bit cryptography before being sent across the internet. The email content is then decrypted by our local computers and devices. I ONLY use your email address to respond to you, and don’t keep the email for more than 6 months, unless the email goes on to form the basis of a contract or a marketing request (these are separate reasons for holding your data).

5.4 Downloads & Media Files

Any downloadable documents, files or media on this website are provided to users at their own risk. All precautions have been undertaken to ensure only relevant downloads are available virus free. You are advised check all files with third-party anti-virus software or similar applications.

When you request a download you will be explicitly told if your data is being stored for marketing purposes (occasional, related emails). If the form does not make this explicit, I do not keep data on you as somebody who has downloaded material from the website.

5.5 Data I hold on customers

As one of my customers I need to hold some information on you. I limit this to the minimum I need to carry out the work you ask me to, and any legal requirements (e.g. storing invoices for the tax man).

The information I store is:

  • Your name, phone number, email and physical address.
  • Details of the work we did together
  • Copies of your invoices.

None of this information is passed, or sold, to any third parties unless I am legally required to (e.g. show HMRC copies of my invoices).

6.0 Your personal information

Your personal information falls into two categories:

  1. As a website visitor. this is treated the same as all of my website visitors.
  2. As a custmer. Where I need to keep information on you, to do the work you ask me to.

6.1 How this website stores your personal information

If you enter a comment to the blog on this site some personal information will be stored within this website’s database (your name, email address and your comment). This is the only occasion where personal data is stored on this website.

This data is currently stored in an identifiable fashion (this is a limitation of website system we and most websites use –  Wordpress).

6.2 This website’s server

This website is hosted by TSO Host within a UK data centre (Maidenhead, Milton Keynes and Slough).

6.2 How I store the personal information of customers.

So I can complete the work you ask me to I have a legitimate interest in keeping data on you. You may examine this data, by asking me in writing.

I store your contact details on my phone, and in my notebook. Both of these are kept on my person. When my notebook is full up I keep old copies in a locked safe.

Copies of your invoices, with your data, are kept on my computer which is locked in my office. I store a backup of this computer in ‘in the cloud’.

Invoice copies are kept for the period required by HMRC.

If I contact you by email, your emails and email address will be stored for me by my email provider (see third party data processors). I delete old emails each year.

7.0 My third party data processors

I use the following third parties to process personal data on my behalf. These third parties all comply with the legislation set out in section 2.0.

These third parties are based in the EU. They are:

These third parties are based in the USA and are EU-U.S Privacy Shield compliant. They are:

8.0 Data breaches

I will report any unlawful data breach of this website’s database or the database(s) of any of our third-party data processors to any and all relevant persons and authorities within 72 hours of the breach if it is apparent that personal data stored in an identifiable manner has been stolen.

9.0 Data controller

The data controller of this website is Lucy Long, of Lucy Long Solutions Ltd:

06506018 – Incorporated on 18 February 2008

The Cockerels Roost, Mounts Road, Greenhithe, Kent, DA9 9LY

10.0 Data protection officer

Lucy Long, contact details as above.

11.0 Changes to this policy

This website privacy and data policy may change from time to time to keep up to date with legislation or industry developments. We will not always explicitly inform clients or website users of these changes.

I recommend you check this page occasionally for any policy changes. Specific policy changes and updates are mentioned in the change log below.

11.1 20/4/18

This policy was first created.