Privacy Policy
How Siete collects, uses, and protects personal data. UK GDPR & Data Protection Act 2018. Version 1.0.
1. Who we are
This Privacy Policy is issued by Nicolas De Battista, a sole trader operating under the trading name Siete Design (“Siete”, “we”, “us”, “our”), of 24 Buccaneer Street, Penzance, TR18 2GD, United Kingdom.
We are the controller of any personal data we collect through our website and our engagements, unless stated otherwise.
ICO registration number: 00013926861
2. Scope of this policy
This policy applies to personal data we collect when you visit siete-design.com, contact us, submit an enquiry, or engage us as a client. It does not cover third-party websites linked from our site.
3. The personal data we collect
We collect only what is necessary to operate our studio and deliver work to you:
Identity and contact data: name, business name, email address, phone number.
Project enquiry data: information you provide via our enquiry form, including company, project type, budget, timeline, and brief.
Engagement data: contractual information including invoicing details, communications, and feedback.
Technical data: IP address, browser type, device type, and basic analytics if you visit our site (collected via cookies and analytics where applicable).
Marketing data: preferences in receiving marketing from us, where you have opted in.
4. How we collect personal data
Directly from you when you contact us, complete the enquiry form, or engage us.
Automatically through our website, via cookies and similar technologies.
Occasionally from publicly available sources such as professional networks.
5. Why we use your data and our legal basis
We process personal data on the following lawful bases:
Contract — to enter into and perform an engagement, issue invoices, and deliver work.
Legitimate interests — to respond to enquiries, manage our studio, secure our systems, and improve our services.
Legal obligation — to comply with tax, accounting, and regulatory requirements.
Consent — for any marketing communications, where you have opted in. You can withdraw consent at any time.
6. Sharing your data
We do not sell personal data. We share it only with trusted third parties where necessary:
Professional advisors (accountants, legal advisors).
Service providers (hosting, email, analytics, cloud storage, payment processing).
Subcontractors engaged to deliver work, bound by equivalent confidentiality obligations.
Authorities, where required by law.
7. International transfers
Some of our service providers are based outside the UK. Where data is transferred internationally, we rely on lawful mechanisms such as the UK International Data Transfer Agreement, the EU Standard Contractual Clauses with UK addendum, or transfers to jurisdictions deemed adequate.
8. Retention
We retain personal data only as long as necessary for the purposes for which it was collected:
Enquiry data: up to 12 months from your last contact, unless we engage.
Engagement and accounting records: at least 6 years after the end of the engagement, in line with HMRC requirements.
Marketing data: until you unsubscribe or opt out.
9. Your rights
Under UK GDPR you have the right to:
Access — request a copy of the personal data we hold about you.
Rectification — ask us to correct inaccurate or incomplete data.
Erasure — ask us to delete your data, subject to legal exceptions.
Restriction — ask us to restrict processing in certain circumstances.
Objection — object to processing based on legitimate interests or for direct marketing.
Portability — receive your data in a machine-readable format.
Withdraw consent — where consent is the lawful basis.
10. Security
We use appropriate technical and organisational measures to protect personal data, including access controls, encryption in transit, and secure cloud storage with reputable providers. No system is completely secure; we will notify you and the ICO of any qualifying personal data breach without undue delay.
11. Cookies
Our website uses essential cookies required for the site to function, and may use analytics cookies to understand how the site is used. You can refuse non-essential cookies through the cookie banner or your browser settings.
12. Children
Our services are not directed at children under 16. We do not knowingly collect personal data from children.
13. Changes to this policy
We may update this policy from time to time. The current version is always available at siete-design.com. Material changes will be notified to active clients by email.