Effective Date: 09 May 2025
Last Updated: 09 May 2025
At Bean Creative Marketing Ltd (“Bean”, “we”, “us”, or “our”), your privacy is important to us. This Privacy Policy outlines how we collect, use, store, and protect your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
- Who We Are
Bean Creative Marketing Ltd is a creative agency based in the United Kingdom, offering web design, branding, and digital services. We are the data controller for personal data we collect.
Our Virtual Data Protection Officer is BeanSecure. You can contact them at:
📧 [email protected]
- The Data We Collect
We collect and process the following categories of personal data:
Full name
Business name and job title
Email address
Postal address
IP address
CRM-stored information related to services
Payment references (via Stripe or invoice, not card details)
We do not collect special category data.
- How We Collect Data
Data is collected through:
Website forms (WordPress)
Stripe for payments
ClickUp and SuiteCRM for project and client management
Office 365 email communications
Google Analytics 4 and Tag Manager
Google Ads and tracking pixels
- Lawful Bases for Processing
We rely on the following lawful bases under Article 6 of the UK GDPR:
Contract – where processing is necessary to deliver our services.
Consent – for email marketing and cookie-based tracking (where required).
Legitimate Interests – including analytics, CRM management, and business development.
- How We Use Your Data
We use your data to:
Deliver services under our contract
Communicate project updates and support
Send invoices and manage payments
Track performance and site analytics
Send occasional marketing emails (if consented)
- Data Sharing
We do not sell or trade your data. We may share personal data with:
Google (Analytics, Ads)
Stripe (payment processor)
Mailchimp (email marketing platform)
All providers comply with international data protection safeguards (e.g. SCCs).
- International Transfers
Some of our service providers (e.g. Google, Mailchimp, Stripe) may store or process your data outside the UK. In such cases, we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs).
- Data Retention
We retain personal data:
For 6 years after project completion or payment, to comply with HMRC requirements
Or as long as necessary for service and support
Or until you request erasure, where appropriate
- Your Rights
You have the right to:
Access your data
Rectify inaccurate data
Erase your data (in certain cases)
Restrict or object to processing
Data portability
Lodge a complaint with the ICO (Information Commissioner’s Office)
To exercise your rights, email: [email protected]
- Cookies and Tracking
We use cookies and similar tracking technologies for performance, analytics, and advertising purposes. A cookie banner and separate Cookie Policy are in place on our website.
- Data Security
We implement appropriate technical and organisational measures to protect your data, including secure servers (e.g. Amazon Lightsail, RDS), encryption protocols, and access control on internal systems (SuiteCRM, ClickUp, etc.).
- Changes to This Policy
We may update this Privacy Policy occasionally. Any changes will be posted on this page with the revised effective date.
Contact Us
If you have any questions or concerns, or wish to exercise your rights:
📧 [email protected]
📍 Bean Creative Marketing Ltd
Bartle House, Oxford Court, Manchester, M2 3WQ
Registered in England and Wales: 15933045
© 2025 Bean Creative Marketing Ltd. All rights reserved.
Unauthorised reproduction of any part of these Terms is strictly prohibited.