Privacy Policy

Last updated: January 2026

This Privacy Policy explains how Avalon Saas Ltd collects, uses, and protects personal data when you use our website or our services.

1 Who We Are

Company name: Avalon Saas Ltd
Country of operation: United Kingdom
Email: [email protected]

For the purposes of UK data protection law, Avalon Saas Ltd is the data controller.

2 What Personal Data We Collect

We only collect personal data that is necessary to provide our services.

Information you provide to us

  • Name
  • Business name
  • Email address
  • Telephone number
  • Website requirements or project details
  • Any information you submit via contact forms, email, or enquiries

Information collected automatically

  • IP address
  • Browser type and version
  • Device and operating system
  • Pages visited and usage data

This technical data is collected using cookies and standard analytics tools.

3 How We Use Your Personal Data

We use your personal data to:

  • Respond to enquiries
  • Provide website design and website-building services
  • Communicate about your project or service
  • Manage accounts, contracts, and invoices
  • Improve our website and services
  • Meet legal and regulatory obligations

We do not sell personal data.

4 Lawful Basis for Processing (UK GDPR)

Under the UK General Data Protection Regulation (UK GDPR), we process personal data on the following lawful bases:

  • Contract – where processing is necessary to deliver our services
  • Legitimate interests – to respond to enquiries and operate our business
  • Legal obligation – for tax, accounting, or regulatory compliance
  • Consent – where you have explicitly provided it (e.g. cookies)

You may withdraw consent at any time.

5 Website Hosting & Third-Party Services

Client websites and landing pages are hosted using Landingsite.ai, a third-party website hosting platform.

Personal data stored on hosted websites may be processed or stored by Landingsite.ai in accordance with their own privacy and security policies.

We only use third-party providers that implement appropriate technical and organisational measures consistent with UK GDPR requirements.

6 Data Sharing

We only share personal data where necessary, including with:

  • Website hosting providers (including Landingsite.ai)
  • Email and communication service providers
  • Accounting or invoicing software providers

We do not share personal data with third parties for marketing purposes.

7 International Data Transfers

Some third-party service providers may store or process data outside the United Kingdom.

Where this occurs, we ensure appropriate safeguards are in place, such as:

  • UK adequacy regulations
  • Standard contractual clauses or equivalent protections

8 Cookies

Our website uses cookies to:

  • Ensure the website functions correctly
  • Understand how visitors use the website
  • Improve performance and user experience

You can control or disable cookies through your browser settings. Where required by law, a cookie consent banner is displayed.

9 Data Retention

We retain personal data only for as long as necessary:

  • Enquiry data: up to 12 months
  • Client data: for the duration of the service relationship
  • Financial records: 6 years, in line with UK legal requirements

10 Your Data Protection Rights

Under UK GDPR, you have the right to:

  • Access your personal data
  • Request correction of inaccurate data
  • Request deletion of your data
  • Object to processing
  • Request data portability
  • Withdraw consent at any time

To exercise your rights, contact us at [email protected].

11 Complaints

If you are unhappy with how we handle your personal data, you have the right to complain to the UK regulator:

Information Commissioner's Office (ICO)

Website: https://www.ico.org.uk

We encourage you to contact us first so we can address your concerns.

12 Changes to This Policy

We may update this Privacy Policy from time to time. The latest version will always be published on this page.

Verification & Compliance Basis

This Privacy Policy is structured in line with:

  • UK General Data Protection Regulation (UK GDPR)
  • Data Protection Act 2018
  • ICO guidance for UK small businesses

Questions about your data? We're here to help.

Contact Us