Privacy Policy

Charlotte Davies - Helping Businesses Grow, One Click at a Time

Privacy Policy

Charlotte Davies Ltd
Last updated: 31 May 2026

Charlotte Davies Ltd is committed to protecting your privacy and handling your personal information responsibly. This Privacy Policy explains what information we collect, how we use it, and your rights under UK data protection law.

Who We Are

Charlotte Davies Ltd provides digital marketing consultancy services, including search engine optimisation (SEO), Google Ads management, analytics, conversion optimisation, website audits, and related consultancy services.

Charlotte Davies Ltd
Company Number: 13431717
VAT Number: 399229736
ICO Registration Number: ZB661631
Email: data@charlottedavies.com
Website: www.charlottedavies.com

For any questions about this policy or your personal data, please contact us at the email address above.


Information We Collect


Information You Provide

We may collect information when you:

  • Contact us through our website
  • Email us directly
  • Book a consultation
  • Request a proposal or quote
  • Subscribe to our marketing communications
  • Become a client

This may include your name, business name, email address, telephone number, website address, and information about your business and marketing requirements.

Information Collected Automatically

When you visit our website, we may automatically collect:

  • IP address
  • Device and browser type
  • Pages visited and time spent on the site
  • Referring websites
  • General location information

This information helps us understand how visitors use our website and improve the services we provide.


How We Use Your Information

We use personal information to:

  • Respond to enquiries
  • Provide consultancy services
  • Prepare proposals and contracts
  • Manage client relationships
  • Deliver reports and recommendations
  • Improve our website and services
  • Send relevant marketing communications where you have consented
  • Meet legal, accounting, and regulatory obligations

We do not sell your personal information to third parties.


Legal Basis for Processing

Under UK GDPR, we rely on the following lawful bases for processing personal data:

Contract

Where processing is necessary to provide services you have requested or agreed to purchase.

Legitimate Interests

We rely on legitimate interests to:

  • Respond to enquiries from prospective clients
  • Improve our website and services
  • Manage client relationships
  • Maintain website security and monitor performance

We have carried out a Legitimate Interests Assessment to ensure that our use of personal data does not override your rights and freedoms. A copy of this assessment is available on request.

Consent

Where you have chosen to:

  • Accept non-essential cookies
  • Subscribe to marketing emails
  • Request certain downloadable resources

You may withdraw your consent at any time by contacting us or using the unsubscribe link in our emails.

Legal Obligation

Where we are required to retain information for tax, accounting, or regulatory purposes.


Marketing Communications

If you subscribe to our marketing communications via MailerLite, we may send occasional emails containing:

  • Marketing and SEO insights
  • Search and AI visibility updates
  • Service updates
  • Relevant resources and guides

We will only send marketing emails where you have given your explicit consent. You can unsubscribe at any time using the link included in any of our emails, or by contacting us directly at data@charlottedavies.com.


Cookies and Website Analytics

Our website uses cookies and similar technologies to improve your experience and understand how visitors use the site. You can manage your preferences through our cookie consent banner.

We use CookieYes to manage cookie consent preferences on our website. CookieYes records and stores visitor consent choices to help us comply with UK GDPR and the Privacy and Electronic Communications Regulations (PECR).

CookieYes is configured with Google Consent Mode v2 so that non-essential analytics and advertising tags are not used until the appropriate consent has been given.

Essential Cookies

Required for website functionality and security. These cannot be disabled.

Analytics Cookies

Used to understand website performance and visitor behaviour. We use Google Analytics 4 and Google Tag Manager for this purpose.

Advertising Cookies

Where applicable, used to measure advertising effectiveness and improve our marketing campaigns. These may include Google Ads conversion tracking and Google remarketing technologies.


Third-Party Service Providers

We use trusted third-party providers to support our business operations. Our key providers include:

  • MailerLite — email marketing and subscriber management
  • CookieYes — cookie consent management
  • Google Analytics 4 — website analytics
  • Google Ads — advertising and conversion tracking
  • Google Tag Manager — tag and tracking management
  • Google Workspace — email and business productivity
  • Microsoft 365 — document and productivity tools
  • Website hosting provider(s)
  • Scheduling and video conferencing platforms

These providers only process personal data where necessary and under appropriate contractual safeguards, including Data Processing Agreements where required by law.


International Data Transfers

MailerLite primarily stores subscriber data within the European Economic Area (EEA). Where personal data is transferred outside the UK or EEA by any of our service providers, appropriate safeguards are used in accordance with UK GDPR.

For other service providers that may process data outside the United Kingdom, we ensure appropriate safeguards are in place, including:

  • UK International Data Transfer Agreements (IDTA)
  • UK Addendum to Standard Contractual Clauses
  • Other lawful transfer mechanisms recognised under UK GDPR


How Long We Keep Information

We retain personal information only for as long as necessary for the purpose it was collected, or as required by law. Our typical retention periods are:

Data Type

Retention Period

Website enquiries

Up to 24 months

Client records

Up to 7 years

Accounting records

Up to 7 years

Marketing subscribers (MailerLite)

Until unsubscribed

Website analytics data

Up to 14 months

Where information is no longer required, it is securely deleted or anonymised.


Data Security

We take appropriate technical and organisational measures to protect personal information from unauthorised access, loss, misuse, alteration, or disclosure. These measures include using reputable, certified service providers and following industry-standard security practices.

While no online system can guarantee absolute security, we take our obligations seriously and review our security practices regularly.


Your Rights

Under UK GDPR, you have the right to:

  • Access your personal information
  • Correct inaccurate or incomplete information
  • Request deletion of your information (“right to be forgotten”)
  • Restrict how we process your information
  • Object to processing based on legitimate interests
  • Data portability — request a copy of your data in a commonly used format
  • Withdraw consent at any time, where processing is based on consent

To exercise any of these rights, please contact us at data@charlottedavies.com. We will respond within one month of receiving your request.


Complaints

If you are unhappy with how we handle your personal information, please contact us in the first instance so we can try to resolve the matter.

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO):

Information Commissioner’s Office
Website: www.ico.org.uk
Helpline: 0303 123 1113


Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our services, legal obligations, or technologies we use. The latest version will always be available on our website at www.charlottedavies.com.

Where changes are material, we will take reasonable steps to bring them to your attention.