Privacy Policy

1. Who we are

This privacy policy is issued by Studio Mono (ICO registration ZC167952) ("Studio Mono", "we", "us", "our"). We are the data controller for the personal data described in this policy.

If you have any questions about this policy or how we handle your data, you can contact us at hello@studiomono.co.uk.

2. What data we collect

We collect and process the following categories of personal data:

Client data — name, business name, address, email address, telephone number and website domain, collected when you enquire about or sign up for our services.

Service data — information you provide for us to build and manage your website, including business descriptions, images, logos, contact details and any other content you supply.

Usage data — technical information such as IP address, browser type and version, time zone setting, browser plug-in types, operating system and platform, collected via cookies and similar technologies when you visit our website.

Communication data — records of correspondence between you and us, including emails, messages via our chat widget and WhatsApp communications.

3. How we use your data

We use your personal data for the following purposes, each with a valid legal basis under UK GDPR:

To provide our services — to build, host, maintain and update your website, and to communicate with you about your project (legal basis: performance of a contract).

To manage our relationship — to notify you about changes to our terms or privacy policy, and to respond to your queries (legal basis: performance of a contract and legitimate interests).

To improve our services — to analyse how visitors use our website and to develop new features (legal basis: legitimate interests).

For legal and regulatory compliance — to comply with applicable laws, regulations and ICO guidance (legal basis: legal obligation).

4. How we share your data

We do not sell your personal data. We may share it with:

Service providers — third-party suppliers who perform services on our behalf, such as web hosting, analytics, payment processing and email delivery. These providers are contractually bound to process your data only for specified purposes and in accordance with our instructions.

Legal and regulatory authorities — when we are legally required to disclose data, or to protect our rights, property or safety.

All third parties with whom we share data are required to respect the security of your personal data and to treat it in accordance with the law.

5. Data retention

We retain your personal data only for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting or reporting requirements.

Client project data is retained for the duration of your active subscription plus six years, to comply with contractual limitation periods and tax record obligations. Usage data collected via analytics is retained for 26 months.

When we no longer need your personal data, we will securely delete or anonymise it.

6. Your rights

Under UK data protection law, you have the following rights in relation to your personal data:

Access — the right to request a copy of the personal data we hold about you.

Rectification — the right to request that we correct any inaccurate or incomplete data.

Erasure — the right to request that we delete your personal data in certain circumstances.

Restriction — the right to request that we restrict the processing of your data.

Objection — the right to object to our processing of your data where we rely on legitimate interests.

Data portability — the right to receive your data in a structured, commonly used format and to transmit it to another controller.

To exercise any of these rights, please contact us at hello@studiomono.co.uk. We will respond to all legitimate requests within one month.

7. Cookies and tracking technologies

Our website uses cookies and similar tracking technologies to distinguish you from other users, analyse traffic and improve your experience.

Necessary cookies — essential for the website to function correctly (e.g. session management, security). These cannot be disabled.

Analytics cookies — help us understand how visitors interact with our website by collecting and reporting information anonymously. We use these to improve our services.

You can set your browser to refuse all or some browser cookies, or to alert you when cookies are being sent. If you disable or refuse cookies, some parts of our website may become inaccessible or not function properly.

8. Managing your cookie preferences

When you first visit our website, you will see a cookie notice banner allowing you to accept or decline non-essential cookies (including analytics and tracking cookies). You can change your preferences at any time.

Click here to reset your cookie preferences. This will clear your saved choice and show the cookie notice again on your next visit, so you can accept or decline analytics cookies.

Alternatively, you can manage cookies through your browser settings: most browsers allow you to see what cookies you have and to delete them on an individual basis, or to block cookies from particular or all websites. See your browser's help menu for instructions.

9. Data security

We have implemented appropriate technical and organisational measures to protect your personal data against unauthorised or unlawful processing, accidental loss, destruction or damage. This includes encryption in transit, access controls, and regular security reviews.

However, the transmission of information via the internet is not completely secure. While we do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our website; any transmission is at your own risk.

10. Changes to this policy

We may update this privacy policy from time to time to reflect changes in our practices or for operational, legal or regulatory reasons. The updated version will be indicated by a revised date at the top of this page.

We encourage you to review this policy periodically to stay informed about how we protect your data.

11. Complaints

If you have a complaint about how we handle your personal data, please contact us first so we can try to resolve it. You also have the right to complain to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues, at ico.org.uk.