BR Digital Solutions Ltd Customer Privacy Notice

This privacy notice tells you what to expect us to do with your personal information.

Contact Details Email: contact@brightpeak.agency

What Information We Collect, Use, and Why

We collect or use the following information to provide and improve products and services for clients:

• Names and contact details

• Gender

• Usage data (including information about how you interact with and use our website, products and services)

• Website user information

We collect or use the following personal information for information updates or marketing purposes:

• Names and contact details

• Profile information

• Marketing preferences

• Website and app user journey information

We collect or use the following personal information for research or archiving purposes:

• Names and contact details

• Website and app user journey information

  
  

Lawful Bases and Data Protection Rights

Under UK data protection law, we must have a "lawful basis" for collecting and using your personal information. There is a list of possible lawful bases in the UK GDPR. You can find out more about lawful bases on the ICO’s website.

Which lawful basis we rely on may affect your data protection rights, which are briefly outlined below. You can find more about your data protection rights and applicable exemptions on the ICO’s website:

• Your right of access – You have the right to ask us for copies of your personal information, including where we get it from and who we share it with.

• Your right to rectification – You can ask us to correct or delete personal information you think is inaccurate or incomplete.

• Your right to erasure – You can ask us to delete your personal information.

• Your right to restriction of processing – You can ask us to limit how we use your personal information.

• Your right to object to processing – You can object to the processing of your personal data.

• Your right to data portability – You can ask us to transfer your personal information to another organisation or to you.

• Your right to withdraw consent – When consent is our lawful basis, you can withdraw it at any time.

If you make a request, we must respond without undue delay and within one month. To make a data protection rights request, contact us using the details at the top of this privacy notice.

Our Lawful Bases for the Collection and Use of Your Data

To Provide and Improve Products and Services

• Consent – We have your permission after giving all relevant information.

• Contract – We need the information to enter into or carry out a contract.

• Legitimate interests – We use information in a way that benefits you or us without causing undue harm. Our interests include:

  • Understanding client needs

  • Delivering services effectively

  • Improving quality and usability

  • Personalising communication

  • Supporting client growth

This use is limited, relevant, and not sensitive in nature. Clients would reasonably expect us to use their data to improve services.

For Information Updates or Marketing

• Consent – We have your permission.

• Legitimate interests – We send occasional updates to existing clients and contacts to:

  • Share service changes or improvements

  • Offer relevant insights or promotions

  • Maintain professional relationships

Communications are relevant, minimal, and always include an opt-out option.

For Research or Archiving Purposes

• Consent – We have your permission.

• Legal obligation – We must keep data to meet legal requirements.

• Legitimate interests – We retain minimal data to:

  • Improve service quality

  • Analyse past work

  • Ensure continuity and accountability

This processing is necessary and proportionate. The data is often anonymised or pseudonymised, and the privacy impact is low.

Where We Get Personal Information From

• Directly from you (e.g., enquiries, forms, meetings)

• Public sources (e.g., websites, social media)

• Referrals from clients or partners

• Tools we use (e.g., domain registrars, analytics, CRM systems)

How Long We Keep Information [We retain client financial records for 6 years, project files for 2 years, and marketing contact data for no longer than 24 months without renewed consent.” ]

For more information on retention periods or criteria, contact us using the details provided.

Who We Share Information With

Data Processors Bradley Roberts and others who perform functions for us, including:

• Website hosting and domain services

• Email and marketing tools

• Payment and invoicing systems

• Cloud storage for project files

• IT and security services

• CRM systems

Each processor acts on our instructions and must keep information secure and confidential.

Others We Share With

• Financial or fraud investigation authorities

• Regulatory authorities

• Organisations we’re legally required to share data with

• Suppliers and service providers involved in delivering our services

  
  

How to Complain

If you have concerns about how we use your personal data, contact us using the details above.

If you remain dissatisfied, you can complain to the ICO: Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

Helpline: 0303 123 1113
Website: https://www.ico.org.uk/make-a-complaint

Last Updated 3/8/25