Privacy Policy
Effective Date: 1st February 2026
HTTP UX/UI Agency Ltd ("we," "us," "our," or "the Agency") is committed to protecting your privacy and ensuring you understand our practices regarding personal data collection and use. This Privacy Policy explains how we collect, use, disclose, and otherwise process personal information in connection with our website and the design services we provide.
1. Legal Basis & Regulatory Compliance
We operate in full compliance with the United Kingdom's General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We process personal information only when we have a lawful basis to do so. Our processing is based on one or more of the following legal bases:
- Legitimate interests: We process data when necessary for our legitimate business interests, such as managing client relationships and marketing our services
- Contract performance: We process data necessary to provide design services you've requested
- Legal obligation: We process data when required by law or regulatory requirements
- Consent: We process data only with your explicit consent where required
2. Information We Collect
Information You Provide Directly
When you contact us through our website, contact form, telephone, or email, we collect personal information you voluntarily provide, which may include:
- Your full name and professional title
- Company name and industry sector
- Email address and telephone number
- Project description, timeline, and business objectives
- Correspondence records including emails and meeting notes
Information Collected Automatically
When you interact with our website, we may automatically collect limited technical information:
- IP address and location data (general geographic location based on IP)
- Browser type, operating system, and device information
- Pages visited and time spent on our website
- Referrer information indicating how you accessed our site
Information from User Research Activities
When we conduct user research or usability testing as part of design services, we collect information about user behaviours and preferences. This data is collected with informed consent and limited to information necessary for understanding user needs.
3. How We Use Your Information
We use collected information for the following purposes:
- Service delivery: Processing your enquiries, providing design services, and managing project delivery
- Communication: Responding to your enquiries, providing project updates, and maintaining client relationships
- Business operations: Managing payments, invoicing, and maintaining project records
- Service improvement: Analysing website usage to improve user experience and website functionality
- Legal compliance: Meeting legal obligations, protecting rights, and preventing fraud
- Marketing communications: Sending information about our services to existing or prospective clients (only with consent or on legitimate interest basis)
4. Information Sharing & Disclosure
We do not sell or rent your personal information to third parties. We may share information only in the following circumstances:
- Service providers: We may share necessary information with third-party service providers who assist with business operations (e.g., website hosting, email services) under strict confidentiality agreements
- Client projects: When working on your design project, we may share limited information with your development team or other parties you explicitly authorise
- Legal requirements: We may disclose information when required by law, court order, or government request
- Business transfers: In the event of business restructuring or acquisition, information may be transferred as a business asset
5. Data Storage & Security
We implement comprehensive information security measures to protect your data against unauthorised access, alteration, disclosure, or destruction. These measures include:
- Encrypted file transfers using secure protocols (HTTPS)
- Secure cloud storage with access controls and authentication requirements
- Password protection and two-factor authentication where applicable
- Regular security assessments and updates
- Limited employee access restricted to those requiring information for job functions
- Confidentiality agreements with all staff and service providers
We store personal data for as long as necessary to provide services or meet legal obligations. Client project information is typically retained for 12 months following project completion, unless legal or contractual requirements require longer retention. We securely delete information when no longer required.
6. Your Data Rights Under UK GDPR
You have the following rights regarding your personal information:
- Access: Right to request a copy of the personal data we hold about you
- Rectification: Right to request correction of inaccurate or incomplete information
- Erasure: Right to request deletion of personal data (subject to legal retention requirements)
- Restrict processing: Right to request limitation of how we use your information
- Data portability: Right to request your information in a structured, machine-readable format
- Object to processing: Right to object to processing based on legitimate interests or marketing communications
- Withdraw consent: Right to withdraw previously provided consent to data processing
To exercise these rights, contact us using the details provided in Section 11. We will respond to data requests within the legally required timeframe (typically 30 days).
7. Cookies & Tracking Technologies
Our website uses minimal tracking technologies. We do not currently use cookies or similar tracking mechanisms. Our website analytics are limited to server-level statistics that do not identify individuals. Should we implement cookies in future, we will update this policy and provide appropriate consent mechanisms.
8. International Data Transfers
While HTTP UX/UI Agency is based in the United Kingdom, we may work with clients and service providers internationally. Any international data transfers are conducted in compliance with UK GDPR requirements, using appropriate safeguards such as Standard Contractual Clauses. We do not transfer data outside the UK to jurisdictions without adequate data protection unless you provide explicit consent.
9. Children's Privacy
Our services are designed for business use and are not directed towards children under 13 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child under 13, we will delete such information promptly.
10. Third-Party Websites & Links
Our website may contain links to third-party websites. This Privacy Policy applies only to HTTP UX/UI Agency's website and services. We are not responsible for the privacy practices of third-party websites. Please review their privacy policies before sharing personal information.
11. Privacy Contact & Data Subject Rights
If you have questions about our privacy practices, wish to exercise your data subject rights, or want to lodge a complaint regarding our data handling, please contact us:
HTTP UX/UI Agency Ltd
Flat 10, Classinghall House
Kersfield Rd, London SW15 3HB
United Kingdom
Email: privacy@httpuxuiagency.co.uk
Telephone:
We aim to resolve any privacy concerns within 30 days. If you are unsatisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's independent authority for data protection compliance.
12. Policy Updates & Changes
We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. Significant changes will be notified to you via email or prominent notice on our website. Continued use of our website or services following policy updates constitutes acceptance of the revised policy.
This Privacy Policy was last updated on 1st February 2026.