Privacy Policy

Last updated: April 2026

Applies to: Scotland and the wider United Kingdom

1. Introduction

This Privacy Policy explains how we collect, use, store, and protect your personal information. It reflects the requirements of the UK GDPR, the Data Protection Act 2018, and the updated rules introduced under the Data (Use and Access) Act 2025, effective from February 2026.

We are committed to being transparent, responsible, and fair in how we handle your data.

2. Who We Are

Argyll Web Design

Argyll, Scotland

We act as the Data Controller for the personal information you provide to us.

3. How We Collect Personal Data

We collect personal information when you interact with us, including when you:

Personal data we may collect

If you provide us with someone else’s personal information, you must ensure you have their permission to do so.

4. How We Use Your Personal Data

We only use your information where we have a lawful basis to do so. Under UK GDPR, our lawful bases include contract, legitimate interests, consent, and legal obligation.

A. Contract Performance

We use your information to:

B. Legitimate Interests

We use your information to:

These uses are balanced against your rights and interests.

C. Consent

We rely on consent for:

You may withdraw consent at any time.

D. Legal Obligations

We may process or disclose your information where required to:

5. How We Share Your Data

We do not sell or rent your personal information.

We may share your data with trusted third parties who help us operate our business. These providers only receive the information necessary to perform their services and must keep it secure and confidential.

Categories of third‑party recipients

We ensure all third‑party processors meet UK GDPR standards.

6. International Data Transfers

Your information may be stored or processed in the UK or outside the European Economic Area (EEA).

Where data is transferred internationally, we ensure appropriate safeguards are in place, such as:

All staff and service providers operate under the same security standards regardless of location.

7. Data Security

We take data protection seriously and use appropriate technical and organisational measures to safeguard your information, including:

Although no system is 100% secure, we take all reasonable steps to protect your data.

8. Data Retention

We keep your personal information only for as long as necessary to fulfil the purposes outlined in this policy, including:

After this period, your data is securely deleted or anonymised.

9. Your Data Rights

Under UK GDPR, you have the following rights:

To exercise any of these rights, contact us at: [insert email].

10. Your Choices and Control

You are always in control of your personal information.

If you wish to:

Simply contact us and we will respond promptly.

11. Links to Other Websites

Our website may contain links to third‑party sites. We are not responsible for their privacy practices, and we encourage you to review their policies.

12. Changes to This Policy

We may update this Privacy Policy to reflect changes in law, technology, or our services.

Significant updates will be communicated via our website or email.