_
Updated On: 04/10/2025

Privacy Policy

Privacy policy and data handling for LATITUDE53

LATITUDE53 LTD

LATITUDE53 LTD (“we”, “us”, “our”) is a company registered in England and Wales. We are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and protect personal data when you visit our website and interact with us. It also explains your rights under UK data protection laws.

This policy is intended for website visitors, prospects, clients, suppliers, and partners. We operate B2B, but this policy applies to any individual whose personal data we process.

Note: This document is for general information and does not constitute legal advice. Please obtain independent legal review for compliance with UK GDPR and related laws.

1. Who we are and how to contact us

  • Controller: LATITUDE53 LTD (acts as the “controller” for website and marketing data; may act as “processor” for certain client services under a separate Data Processing Agreement).

  • Data Protection Lead: contact@studiolat53.com

2. What data we collect

2.1 Data you provide directly

  • Contact details: name, job title, company, email, phone.

  • Enquiry details: message content, preferences, meeting notes.

  • Account/contract data: billing address, PO numbers, signatures, authorised users.

  • Marketing preferences: opt-in/opt-out status, topics of interest.

  • Support/content data: assets you upload or share for projects.

2.2 Data we collect automatically

  • Usage data: pages viewed, links clicked, time on page, referring URLs.

  • Device/technical data: IP address, browser, device type, OS, screen size, language.

  • Cookies and similar tech: for analytics, performance, preferences, and advertising (see Cookie section).

2.3 Data from third parties

  • Lead sources: event registrations, referrals, partner introductions.

  • Advertising/analytics platforms: aggregated performance reports, audience insights.

  • Public sources: company websites, LinkedIn profiles, business directories.

We do not intentionally collect special category data (e.g., health, ethnicity) or children’s data. Please do not provide such data.

3. How we use your data and legal bases

We process personal data only where we have a lawful basis under UK GDPR:

  • Communicating and responding to enquiries

    • Purpose: handle contact requests, schedule meetings, provide information.

    • Legal basis: legitimate interests (to respond and run our business).

  • Marketing and business development

    • Purpose: send updates, invitations, case studies, and offers; personalise marketing; build look‑alike audiences.

    • Legal basis: consent (where required for email/SMS to individuals); legitimate interests for B2B marketing to corporate subscribers, observing PECR.

  • Providing services and managing contracts

    • Purpose: proposals, SOWs, delivery, support, invoicing, and account management.

    • Legal basis: contract and legitimate interests.

  • Analytics, CRO, and website performance

    • Purpose: measure and improve site performance, content, and conversions.

    • Legal basis: consent (for non‑essential cookies/trackers) and legitimate interests (for strictly necessary cookies and security).

  • Security and fraud prevention

    • Purpose: maintain the integrity of our services, detect abuse, and secure systems.

    • Legal basis: legitimate interests and legal obligation.

  • Legal compliance and claims

    • Purpose: comply with tax and accounting rules; establish, exercise, or defend legal claims.

    • Legal basis: legal obligation and legitimate interests.

4. Cookies and similar technologies

We use cookies, local storage, pixels, and tags to operate the website, analyse performance, and, where enabled, support advertising.

  • Categories:

    • Strictly necessary: site functionality, security, consent management.

    • Analytics/performance: usage measurement, A/B testing.

    • Advertising/retargeting: measure campaign performance, build audiences.

  • Consent: We use a consent banner to obtain your consent for non‑essential cookies. You can change your preferences at any time via the “Cookie Settings” link in the footer.

  • Control: You can also control cookies in your browser settings. Blocking some cookies may affect site functionality.

We will maintain a Cookie List in our Cookie Policy or consent banner detailing the specific tools (e.g., Google Analytics 4, PostHog, Meta/LinkedIn pixels) when enabled.

5. Sharing your data

We only share personal data as necessary for the purposes above:

  • Service providers (processors): hosting, CRM, email, analytics, payment, project management, customer support, and marketing tools. They act under our instructions and are bound by contracts.

  • Professional advisers: accountants, lawyers, insurers.

  • Advertising/analytics partners: where you consent to relevant cookies, we may share limited data/pseudonymous identifiers for measurement and optimisation.

  • Clients (when acting as processor): where you authorise us to process data on your behalf under a DPA.

  • Corporate transactions: in the event of a merger, acquisition, or asset sale.

  • Legal: where required to comply with law or protect rights, property, or safety.

We do not sell personal data.

6. International transfers

Our service providers may process data in the UK, EEA, and other countries.

  • If data is transferred outside the UK/EEA, we ensure appropriate safeguards such as the UK International Data Transfer Agreement (IDTA), UK Addendum to EU SCCs, or adequacy regulations, plus supplementary measures where needed.

  • You may request information about specific transfer mechanisms used for your data.

7. Data retention

We keep personal data only as long as necessary for the purposes collected, including to meet legal, accounting, or reporting requirements.

Indicative periods:

  • Enquiries and sales leads: up to 24 months from last meaningful interaction.

  • Contract and billing records: 6–7 years after the end of the financial year of the transaction.

  • Project files and deliverables: typically retained for the project term plus 24 months, unless otherwise agreed.

  • Cookie/analytics data: per tool configuration and your consent choices.

We will securely delete or anonymise data when it is no longer needed.

8. Your rights

Under UK GDPR, you have rights over your personal data, subject to conditions and exemptions:

  • Access: request a copy of your personal data.

  • Rectification: correct inaccurate or incomplete data.

  • Erasure: ask us to delete data in certain circumstances.

  • Restriction: ask us to limit processing in certain circumstances.

  • Portability: receive data you provided in a structured, commonly used format and ask us to transfer it to another controller where feasible.

  • Objection: object to processing based on legitimate interests and to direct marketing (including profiling).

  • Withdraw consent: where processing is based on consent, you can withdraw it at any time.

To exercise these rights, contact us using the details in section 1. We respond within one month (or up to three months for complex requests). We may ask for identification to verify your request.

9. Marketing choices

  • Email marketing: you can unsubscribe at any time via the link in our emails or by contacting us.

  • B2B marketing: we follow PECR rules for corporate subscribers. We honour opt-outs and suppression lists.

  • Advertising cookies: adjust preferences via our Cookie Settings or your browser.

10. Security

We implement appropriate technical and organisational measures to protect personal data, including access controls, encryption in transit, least‑privilege permissions, and regular reviews of suppliers and systems. No method of transmission or storage is 100% secure; we cannot guarantee absolute security.

11. Third‑party links

Our website may link to third‑party sites, plugins, or apps. Those sites have their own privacy policies, and we are not responsible for their practices.

12. Children

Our services are not directed to children. Do not provide us with data about anyone under 16.

13. When we act as a processor for clients

For certain services (e.g., analytics implementation, PPC management, CRO testing), we may process personal data on behalf of clients. In those cases:

  • The client is the controller; we act as processor.

  • A Data Processing Agreement (DPA) will govern our processing (purpose, scope, security, sub‑processors, international transfers, and assistance with data subject rights and breaches).

14. Changes to this policy

We may update this Privacy Policy from time to time. We will post the new version on this page and update the “Last updated” date. If changes are material, we will take reasonable steps to notify you.

15. How to complain

If you have concerns, please contact us first so we can try to resolve them. You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO):

  • Website: ico.org.uk

  • Phone: 0303 123 1113

  • Address: ICO, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF

16. Contact

For questions about this policy or our data practices, or to exercise your rights, please contact: contact@studiolat53.com

Free Video Audit – Worth £99

Unlock 5 Quick Wins Hiding On Your Website

Get a free, personalised video audit of your site. I'll pinpoint the key tweaks to boost conversions, increase visibility, and remove friction—no fluff, just quick wins you can implement today.

Free Website Video Audit