Privacy notice.

We're a small UK studio. We collect very little, we don't sell anything to advertisers, and we'd rather you know exactly what happens with the data you share with us.

last updated · 13 may 2026governing law · england & walesquestions ↦ hello@neondigital.co.uk

01 · who we areThe data controller

Neon Digital Limited (“Neon”, “we”, “us”) is the data controller for personal data collected through neondigital.co.uk and through direct correspondence with us.

We're registered in England and Wales under company number 05248836. Our registered office is Station House, 27 Railway Street, Chelmsford CM1 1QS, United Kingdom. You can reach us at hello@neondigital.co.uk for anything privacy-related, including subject-access requests.

02 · what we collectWhat data we collect and why

We try to keep this minimal. In practice, we collect personal data in three ways:

Enquiries and correspondence

When you email us or book a call, we receive whatever you choose to share — typically your name, work email, company, and a description of the project you're considering. We use this to reply to you, to assess whether we're a fit, and to keep a record of our conversation.

Lawful basis: legitimate interests (responding to a business enquiry you initiated) and, if we end up working together, performance of a contract.

Calendly bookings

“Book a call” opens a Calendly widget. If you book a meeting, Calendly collects your name, email, scheduled time, and any answers you give to its booking questions, and shares them with us. Calendly LLC is an independent controller for the booking process and a processor when passing booking data to us. Read their privacy notice at calendly.com/privacy.

Lawful basis: legitimate interests (arranging a meeting you requested).

Server logs

Our hosting provider records standard request logs — IP address, user agent, timestamp, requested URL — for security, abuse prevention, and basic operational diagnostics. These are kept for a short rolling window and aren't used to profile visitors.

Lawful basis: legitimate interests (keeping the site running and secure).

Site analytics

We use a privacy-respecting, cookieless analytics tool that records aggregated, anonymised traffic patterns (pages viewed, country at a country level, referrer). It does not set cookies, does not use device fingerprinting, and does not identify individual visitors. We don't combine it with any other data we hold about you.

03 · what we don't doWhat we don't do with your data

We don't sell, rent, or share personal data with advertisers or data brokers.
We don't run advertising trackers, retargeting pixels, or social media beacons on this site.
We don't send marketing emails to enquirers without explicit, separate consent.
We don't use your data to train machine-learning models, ours or anyone else's.

04 · sub-processorsThird parties who process data on our behalf

A small number of trusted service providers help us operate. Each is bound by appropriate data-processing terms.

Calendly — meeting scheduling. Data is processed in the United States under the UK Extension to the EU–US Data Privacy Framework and standard contractual clauses.
Email and productivity — our business email and document storage provider, used to receive and store correspondence with you.
Hosting — our infrastructure provider, used to serve this website.

We're happy to disclose the specific providers in use on request — just email hello@neondigital.co.uk.

05 · international transfersWhere your data goes

Some of our service providers are based outside the UK, including in the United States and the European Economic Area. Where personal data is transferred outside the UK, we rely on UK-approved transfer mechanisms — adequacy regulations, the UK International Data Transfer Agreement, or the UK Addendum to the EU Standard Contractual Clauses — together with appropriate technical and organisational safeguards.

06 · how long we keep itRetention

Enquiries that don't become work: up to 24 months, then deleted.
Client records: for the duration of our engagement and for 7 years afterwards, to meet our legal and tax obligations.
Server logs: a short rolling window, typically no more than 90 days.
Calendly booking records: retained per Calendly's policy and removed from our systems when no longer needed.

07 · your rightsYour rights under UK GDPR

You have the right to:

Access the personal data we hold about you.
Have inaccurate data corrected.
Have your data erased, where one of the grounds for erasure applies.
Restrict or object to certain processing, including processing based on legitimate interests.
Receive your data in a portable, machine-readable format.
Withdraw consent, where we rely on it, at any time.

To exercise any of these rights, email hello@neondigital.co.uk. We'll respond within one month.

You also have the right to complain to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection — ico.org.uk/make-a-complaint. We'd appreciate the chance to put things right first, but it's your call.

08 · securityHow we protect data

We apply proportionate technical and organisational measures — encryption in transit, access controls, least-privilege accounts, and routine review of who has access to what. No system is perfectly secure, and we won't pretend otherwise; if a breach occurs that puts your rights at risk, we'll notify the ICO and affected individuals as required by UK GDPR.

09 · childrenChildren's data

This site is aimed at businesses. We don't knowingly collect personal data from anyone under 18.

10 · changesChanges to this notice

We'll update this notice from time to time. Substantive changes will be reflected in the “last updated” date at the top, and material changes will be flagged on the site for a reasonable period.

Neon Digital Limited · registered in England & Wales, company no. 05248836 · Station House, 27 Railway Street, Chelmsford CM1 1QS