Privacy & Data Protection Statement

Plain English, no sneaky bits

Hi! I’m Susi. At Susify, I treat your data like I’d treat my own: with respect, common sense, and a solid lock. Here’s what I collect and how I handle it.

Jurisdiction & Compliance

I’m based in England, so this privacy policy follows UK data protection laws (UK GDPR and the Data Protection Act 2018). If you’re from outside the UK, just know your data will be stored and processed here – where tea is plentiful and privacy rules are strict.  

Why I am Allowed to use Your Data

Here’s exactly why I’m allowed to handle your data under UK law:

  1. You asked me to (a.k.a. consent):  When you message me via my contact form or email, you’re giving me permission to reply. Simple as that.

  2. We’ve got a contract (or might do):  If we work together, I’ll need your details to, well, do the work. This includes invoices, project notes, and all that necessary paperwork.

  3. Legal obligations:  Like keeping client records for 7 years for HMRC. (I’d rather not, but hey—taxman’s rules.)

  4. Explicit consent (for anything sensitive):  If sensitive data ever comes up, I’ll ask for your clear go-ahead before touching it.

What I Collect (& Why) 

  • Website Visitors: My site uses one cookie (`wp-settings`), but it’s only for me (so I
    don’t have to reset my dashboard every time I log in). You? Cookie-free.
  • Contact Form: If you message me, I’ll see your name, email, and what you wrote.
    Submissions land in my email and, if we work together, in your client file.
    Sensitive info? Never sent via plain email – we’ll use a more secure route.
  • Clients: Just the essentials – contact details, contract terms, and project notes. Nothing extra.

How Long I Keep It 

  • Contact enquiries: Until we’re done chatting (or you tell me to bin it).
  • Client data: For 7 years after our project wraps up (tax/legal reasons).  After that?  Poof.  Gone.

Sharing? Only with Your Say-So

I don’t do data handoffs unless: 

  • You ask me to (e.g., introducing you to another professional).
  • It’s legally required (I’ll grumble about it first).
  • A third-party service helps with our work – but only if we’ve agreed upfront, and they’re as fussy about security as I am.

Your Rights (Because It’s Your Data) 

Under UK law, you can: 

  • Ask what I’ve got about you.
  • Fix any mistakes.
  • Request I delete it (unless HMRC or the law says I must keep it).

 

Just email info@susify.com, and I’ll handle it – no bots, no runaround. 

Security: No Wild West Here 

  • Encrypted client files.
  • Password-protected devices (even my phone is Fort Knox).
  • Onsite + offsite backups (because accidents happen).

 

If a breach ever occurs (unlikely, but I’m paranoid), you’ll hear from me immediately. 

Updates

I’ll tweak this policy if things change. The latest version will always live here. 

Last updated: May 2025