top of page

Privacy Policy

​

Updated Privacy Policy [Velden Marketing]
 

Velden Marketing Privacy Policy

Last Updated:  [June 23, 2025]

At Velden Marketing, we are committed to protecting your privacy and handling your personal data responsibly.

This Privacy Policy explains how we collect, use, disclose, and protect your information when you visit our website ([Your Website Address]), engage with our services, and how we handle data when providing SEO, Social Media Marketing, Advertisement Campaigns, and Website Development services and others.
 

1. Who We Are

Velden Marketing is a digital marketing agency based in the UK, specialising in SEO, social media, advertising, and web development and other services. Contact Details:

  • Email: [Your Email Address]

  • Phone: 07423 790716
     

2. The Data We Collect About You

We may collect, use, store, and transfer different kinds of personal data about you, which we have grouped together as follows:

  • Identity Data: Includes first name, last name, company name, job title, and potentially social media handles.

  • Contact Data: Includes email address, telephone number, billing address, and potentially physical business addresses.

  • Technical Data: Includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website.

  • Usage Data: Includes information about how you use our website, products, and services (e.g., pages visited, time spent on pages, referral sources).

  • Marketing and Communications Data: Includes your preferences in receiving marketing from us and your communication preferences.

  • [NEW] Client Data (relevant to your services): When you become a client, we will collect additional data necessary to provide our services. This may include:

    • Business Contact Information: Names, emails, phone numbers of your key contacts within your client's organisation.

    • Access Credentials: Usernames and passwords for client's marketing platforms (e.g., Google Analytics, Google Ads, social media accounts, CMS). Crucially, these should be managed securely and ideally not stored directly by you, but used to access their platforms.

    • Website Performance Data: Data from Google Analytics, Google Search Console, SEO tools (e.g., traffic, rankings, user behaviour on client websites).

    • Social Media Performance Data: Engagement metrics, audience demographics from client's social media accounts.

    • Advertisement Campaign Data: Performance metrics, audience targeting data from client's ad platforms (e.g., Google Ads, Facebook Ads).

    • Website Content Data: Information provided by clients for website development, including content, images, and user data collected on their sites (which you may have access to).
       

We also collect, use, and share Aggregated Data such as statistical or demographic data for any purpose. Aggregated Data could be derived from your personal data but is not considered personal data in law as this data will not directly or indirectly reveal your identity.
 

3. How Your Personal Data is Collected
 

We use different methods to collect data from and about you, including:

  • Direct Interactions: You may give us your Identity, Contact, and Marketing and Communications Data by filling in forms or by corresponding with us by post, phone, email, or otherwise. This includes personal data you provide when you:

    • Enquire about our services.

    • Book a discovery call through our Calendly integration.

    • Sign up for our newsletter.

    • Request marketing to be sent to you.

    • Give us feedback.

    • [NEW] Enter into a service agreement with us (as a client).

  • Automated Technologies or Interactions: As you interact with our website, we automatically collect Technical and Usage Data about your equipment, Browse actions, and patterns. We collect this personal data by using cookies, server logs, and other similar technologies. Please see our [link to Cookie Policy or Cookie section below] for more details.

  • Third Parties or Publicly Available Sources: We may receive personal data about you from various third parties, such as analytics providers (e.g., Google Analytics), social media platforms, or public sources.

    • [NEW] From your clients when providing services: We may be provided with access to data held by your organisation on platforms like Google Analytics, Google Ads, or social media, which may contain personal data about your customers or users. In such cases, we act as a "Processor" for your data, as detailed below.
       

4. How We Use Your Personal Data
 

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

  • To respond to your inquiries and provide you with information about our services.

  • To facilitate and conduct discovery calls you book with us via Calendly. (When you book a discovery call through our website, we use Calendly, a third-party scheduling service. To facilitate your booking, Calendly collects your name, email address, and any additional information you provide in the booking form. This information is processed by Calendly in accordance with their privacy policy, which can be found [link to Calendly's Privacy Policy]. We receive this information from Calendly to enable us to prepare for and conduct your scheduled call.)

  • To send you marketing communications (if you have opted in).

  • To improve our website, products, and services.

  • For internal record keeping and administrative purposes.

  • To comply with a legal or regulatory obligation.

  • [NEW] To deliver our core services:

    • SEO: Analysing website traffic, user behaviour, and keyword performance to improve organic search rankings. This may involve processing IP addresses and other technical data.

    • Social Media Marketing: Managing social media profiles, analysing audience engagement, and running campaigns. This may involve processing public social media data or data provided by the client.

    • Advertisement Campaigns: Setting up, managing, and optimising paid advertisement campaigns (e.g., Google Ads, Facebook Ads). This involves processing campaign performance data and audience targeting information. We do not directly collect personal data for targeting, but use platform-provided targeting options based on aggregated data.

    • Website Development: Building and maintaining websites, which may involve handling content provided by you (the client) that contains personal data, or setting up analytics and tracking tools on your behalf that collect data from your website users.
       

Our lawful bases for processing your personal data include:

  • Consent: Where you have given clear consent for us to process your personal data for a specific purpose (e.g., newsletter sign-ups, specific cookies). You have the right to withdraw consent at any time by contacting us.

  • Legitimate Interests: Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests (e.g., for website analytics, direct marketing to existing business contacts where appropriate, and responding to general enquiries, and for the internal management and improvement of our marketing services).

  • Performance of a Contract: Where processing is necessary for the performance of a contract to which you are a party or in order to take steps at your request before entering into such a contract (e.g., facilitating your discovery call booking, and for delivering our agreed-upon marketing services to you as a client).

  • Legal Obligation: Where we need to comply with a legal or regulatory obligation.
     

5. Disclosures of Your Personal Data
 

We may share your personal data with the following categories of recipients:

  • Service Providers: Third-party service providers who provide services to us, such as website hosting, analytics, email marketing, CRM systems, scheduling platforms (like Calendly), project management tools, advertising platforms (e.g., Google Ads, Meta Ads), SEO tools, and social media management tools. These providers are only permitted to process your data on our instructions and are subject to strict confidentiality obligations.

  • Professional Advisors: Including lawyers, bankers, auditors, and insurers who provide consultancy, banking, legal, insurance, and accounting services.

  • Regulators and Other Authorities: Who require reporting of processing activities in certain circumstances.

  • Third Parties to whom we may choose to sell, transfer, or merge parts of our business or our assets. Alternatively, we may seek to acquire other businesses or merge with them.

We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.
 

6. Our Role as Data Controller and Processor
 

When you interact with our website directly [e.g., booking a discovery call] we act as the Data Controller for the personal data we collect from you. This means we determine the purposes and means of processing that data.

When we provide SEO, Social Media Marketing, Advertisement Campaigns, or Website Development services to you as a client, we generally act as a Data Processor on your behalf. This means we process personal data (e.g., your customer data accessed via Google Analytics, social media, or ad platforms) strictly according to your documented instructions as the Data Controller.

  • In such cases, your organisation remains the Data Controller for your customers' data.

  • We will have a separate Data Processing Agreement (DPA) in place with you, which outlines our obligations as a processor, including data security, international transfers, and assistance with data subject rights.

  • It is your responsibility as the Data Controller to ensure you have the appropriate lawful bases and privacy notices in place for your customers whose data we may process on your behalf.
     

7. International Transfers
 

We may transfer your personal data outside the UK. When we do so, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:

  • We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the UK government.

  • Where we use certain service providers, we may use specific contracts approved by the UK, which give personal data the same protection it has in the UK (e.g., Standard Contractual Clauses).
     

8. Data Security
 

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorized way, altered, or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors, and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

We have procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
 

9. Data Retention
 

We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting, or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.
 

10. Your Legal Rights
 

Under certain circumstances, you have rights under data protection laws in relation to your personal data. These include the right to:

  • Request access to your personal data.

  • Request correction of your personal data.

  • Request erasure of your personal data.

  • Object to processing of your personal data.

  • Request restriction of processing your personal data.

  • Request transfer of your personal data.

  • Withdraw consent at any time where we are relying on consent to process your personal data.

If you wish to exercise any of the rights set out above, please contact us at [Your Email Address].
 

11. Complaints
 

You have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues ([ICO Website Address, e.g., www.ico.org.uk]). We would, however, appreciate the chance to deal with your concerns before you approach the ICO, so please contact us in the first instance.
 

12. Changes to This Privacy Policy
 

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated "Last Updated" date. We encourage you to review this policy periodically.

bottom of page