Who we are
Banny Digital Ltd is the data controller. We are registered in England & Wales (Company No. 14911385). You can contact us at hello@banny.co.uk.
What we collect
- Contact details you submit through our forms (name, business, email, phone, message).
- Account details for client portal users (email, name, hashed password, role).
- Usage data such as IP address, browser, pages viewed and referring site.
- Any information you send us by email, WhatsApp or during calls.
Why we use it
- To respond to enquiries and provide the services you have asked for.
- To operate, secure and improve our website and client portal.
- To send service-related messages (contracts, invoices, reports).
- To meet our legal, accounting and regulatory obligations.
Lawful bases
We process personal data under one or more of the following bases: your consent, performance of a contract, our legitimate interests in running the business, and compliance with legal obligations.
Who we share it with
We only share data with the processors that help us run the business — including our hosting, email, payments and analytics providers. All processors are bound by data-processing agreements and appropriate safeguards.
How long we keep it
We keep enquiry data for up to 24 months, client account and project data for the life of the engagement plus 7 years for tax records, and marketing data until you unsubscribe.
Your rights
You have the right to access, correct, delete, restrict or port your personal data, and to object to processing. Contact hello@banny.co.uk to exercise any of these. You may also complain to the Information Commissioner's Office (ICO) at ico.org.uk.
Security
We use industry-standard security controls including encryption in transit, access controls, backups and role-based permissions.
Changes
We may update this policy from time to time. Material changes will be highlighted on this page.
This document is provided as a plain-English starting point. Please review with your solicitor before relying on it in a dispute.