RoseConnect
← Back to Home

Privacy Policy

Last updated: April 2026

1. Introduction

RoseConnect ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website roseconnect.co.uk or use our services.

We comply with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and all applicable data protection laws.

Data Controller: Sunny (RoseConnect)
Contact: hello@roseconnect.co.uk
Location: London, United Kingdom

2. Information We Collect

Information You Provide

  • Contact Information: Name, email address, phone number when you fill out our contact form or message us via WhatsApp.
  • Project Details: Information about your business, website, IT needs, or project requirements that you share during consultations.
  • Communications: Content of messages, emails, and correspondence between you and RoseConnect.
  • Payment Information: Billing details for invoicing (we do not store credit card details).

Information Collected Automatically

  • Usage Data: Pages visited, time spent on site, referring URLs via Google Analytics 4.
  • Device Information: Browser type, device type, operating system, IP address (anonymised).
  • Cookies: See our Cookie Policy for details.

3. How We Use Your Information

We use your information for the following purposes:

  • To provide and deliver our services (web development, IT support, SEO, e-commerce, automation).
  • To communicate with you about projects, quotes, and support.
  • To process invoices and payments.
  • To improve our website and services through analytics.
  • To comply with legal obligations.
  • To send marketing communications (only with your explicit consent).

4. Legal Basis for Processing

Under UK GDPR, we process your data on the following legal bases:

  • Contract: Processing necessary to fulfil a contract with you (e.g., building your website, providing IT support).
  • Legitimate Interests: Improving our services, website analytics, business operations.
  • Consent: Marketing emails, newsletter subscriptions, cookies (where required).
  • Legal Obligation: Compliance with tax, accounting, and other UK laws.

5. Data Sharing & Third Parties

We do not sell your personal data. We may share your information with:

  • Hosting Providers: Vercel, AWS (for website hosting and deployment).
  • Analytics: Google Analytics 4 (anonymised data).
  • Communication Tools: WhatsApp (for messaging), email service providers.
  • Accounting Software: For invoicing and tax compliance.
  • Legal Authorities: If required by law or to protect our rights.

All third-party providers are vetted for GDPR compliance and data security.

6. Data Retention

We retain your personal data only for as long as necessary:

  • Client Data: Retained for the duration of our business relationship plus 6 years after (for tax and legal compliance).
  • Marketing Data: Retained until you unsubscribe or withdraw consent.
  • Analytics Data: Anonymised and aggregated; no personal identifiers retained beyond 14 months in Google Analytics.
  • Contact Form Data: Retained for 2 years from last interaction unless a business relationship is established.

7. Your Rights

Under UK GDPR, you have the following rights:

  • Right of Access: Request a copy of the personal data we hold about you.
  • Right to Rectification: Request correction of inaccurate or incomplete data.
  • Right to Erasure: Request deletion of your personal data ("right to be forgotten").
  • Right to Restrict Processing: Request that we limit the way we use your data.
  • Right to Data Portability: Request transfer of your data to another organisation.
  • Right to Object: Object to our use of your data for direct marketing.
  • Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent.

To exercise any of these rights, contact us at hello@roseconnect.co.uk. We will respond within 30 days.

8. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. This includes encryption, access controls, and regular security reviews.

9. International Transfers

Your data is primarily stored and processed within the United Kingdom. If any third-party service providers process data outside the UK, we ensure appropriate safeguards are in place (e.g., EU Standard Contractual Clauses, adequacy decisions).

10. Children's Privacy

Our services are not directed to individuals under 16. We do not knowingly collect personal information from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated revision date. We encourage you to review this policy periodically.

12. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

RoseConnect

Email: hello@roseconnect.co.uk

WhatsApp: +44 7832 757195

London, United Kingdom

13. Complaints

If you are not satisfied with how we handle your personal data, you have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk.