Privacy Policy

1. Introduction

The Bearded Developer (“we,” “us,” or “our”) is a UK-based web development company providing Shopify development, bespoke web applications, and web consultancy services. We are committed to protecting your privacy and ensuring the security of any personal data we collect. This Privacy Policy explains how we collect, use, store, and share your personal data when you visit our website or engage with our services.

2. Who We Are

Data Controller: The Bearded Developer Limited, a company registered in England and Wales.
Contact: Email: info@thebeardeddeveloper.co.uk; Address: 47 York Gardens, Braintree, Essex, CM7 9NF, UK.
For data protection queries, contact our Data Protection Officer at the above email.

3. What Data We Collect

We may collect the following personal data:

• Contact Information: Name, email address, phone number, and company name when you submit our contact form or inquire about our services.
• Correspondence Data: Details from emails or messages you send us.
• Technical Data: IP address, browser type, device information, and usage data (e.g., pages visited) collected automatically via cookies or analytics tools (see Cookie Policy).
• Service-Related Data: Information provided during project discussions (e.g., business requirements), which may include personal data if you are a sole trader.

We do not collect sensitive personal data (e.g., health, political opinions) unless explicitly provided by you for a specific purpose.

4. How We Collect Data

We collect data:

• Directly: When you fill out our contact form, email us, or engage with our services.
• Automatically: Through cookies and analytics tools (e.g., Google Analytics) when you visit our website.
• From Third Parties: Rarely, we may receive data from clients or partners (e.g., a referral contact), with your consent.

5. How We Use Your Data

We use your data to:

• Respond to inquiries and provide quotes or services.
• Manage client relationships and deliver projects (e.g., Shopify store development).
• Improve our website and services (e.g., analysing usage data).
• Comply with legal obligations (e.g., record-keeping for tax purposes).
• Send marketing communications (only with your explicit consent, e.g., via a newsletter sign-up).

Legal Basis:

• Consent: For marketing emails or non-essential cookies.
• Contract: To fulfil service agreements (e.g., project delivery).
• Legitimate Interests: For website analytics, responding to inquiries, or improving services.
• Legal Obligation: For compliance with UK laws (e.g., tax records).

6. How We Share Your Data

We do not sell your data. We may share data with:

• Service Providers: Trusted third parties (e.g., hosting providers, email platforms like Mailchimp) who process data on our behalf, under strict data protection agreements.
• Legal Authorities: If required by law (e.g., HMRC, courts).
• Business Partners: Only with your consent (e.g., a collaborator on a project).

All third parties are UK GDPR-compliant, and data transfers outside the UK (if any) use safeguards like Standard Contractual Clauses.

7. How We Store and Protect Your Data

Storage: Data is stored securely on UK-based servers or reputable cloud platforms (e.g., AWS, Google Cloud) with encryption.
Retention: We keep contact data for 6 years (for tax and legal purposes) or until you request deletion. Technical data (e.g., analytics) is retained for up to 26 months.
Security: We use industry-standard measures (e.g., SSL encryption, secure passwords) to protect your data. However, no system is 100% secure, and we cannot guarantee absolute security.

8. Your Rights

Under UK GDPR, you have the right to:

• Access: Request a copy of your personal data.
• Rectification: Correct inaccurate data.
• Erasure: Request deletion of your data (subject to legal obligations).
• Restriction: Limit how we use your data.
• Objection: Object to processing (e.g., marketing).
• Data Portability: Receive your data in a machine-readable format.
• Withdraw Consent: Opt out of marketing or non-essential cookies at any time.

To exercise these rights, email info@thebeardeddeveloper.co.uk. We will respond within 30 days. If dissatisfied, you can contact the Information Commissioner’s Office (ICO): www.ico.org.uk.

9. Third-Party Links

Our website may include links to third-party sites (e.g., LinkedIn, Shopify). We are not responsible for their privacy practices. Review their policies before sharing data.

10. Changes to This Policy

We may update this Privacy Policy to reflect legal or operational changes. Updates will be posted on this page with the effective date. Check back periodically for changes.

11. Contact Us

For questions or concerns about this Privacy Policy, contact:
Email: info@thebeardeddeveloper.co.uk
Address: 47 York Gardens, Braintree, Essex, CM7 9NF, UK