Rosiest Design Privacy Policy

Rosiest Design is committed to protecting your personal data, and will use any personal or sensitive data we collect from you in line with the General Data Protection Regulations (GDPR).

Who’s responsible for data we collect?

Rosiest Design is a Data Controller under the GDPR. Rosiest Design’s Data Protection Officer is Rosemary Galton who can be contacted at

What data do we collect and what do we use it for?

Website visitors

We use cookies to collect anonymous data on how many people visited our site, what pages they accessed and other statistical information. This helps us analyse traffic and improve the website for all clients.

We use a pop-up banner to let users know about our use of cookies on their first visit, and they can at any time disable cookies in their browser if they do not wish their (anonymised) data to be tracked. A cookie in no way gives us access to your computer or any information about you, other than the data you choose to share with us. You can find out more about cookies at

Prospective clients

If you contact us through the contact form we collect your name, phone number and email address as volunteered by you. We collect copies of email exchanges, and notes of telephone calls or in-person meetings, in connection with your enquiry. This data will only be stored on a password-protected computer or secure email client (Gmail).

Paying clients

If required by the nature of the work undertaken, we may collect information about accounts you hold elsewhere, such as hosting providers and domain registrars. Sensitive data such as passwords are securely stored using a password manager.

We may collect feedback or testimonials that you choose to give us, and will publish these only with your permission.

Do we share your data with anyone else?

We will never pass your details on to third parties for marketing purposes.

We sometimes use third party services to process your data (e.g. Google Drive). We will always make sure any third parties we use are reputable, secure, and process your data in accordance with your rights under GDPR.

Are there special measures for children’s data?

We do not knowingly collect or store any personal data about children under the age of 13.

How can you update your data?

You can contact us at any time at to update or correct the data we hold on you.

How long we will hold your data?

We will store your data for as long as necessary for the purpose of processing. The data may be deleted in the following circumstances:

What rights do you have?

Under the GDPR, you have the right to:

Though unlikely to apply to the data we hold and process on you, you also have rights related to portability and automated decision making, including profiling.

To revise your consent, access, amend or remove your records or assert any of your rights set out above, you should send your request in writing to us by email at

You can find out more about your rights on the Information Commissioner’s Office website.

What will we do if anything changes?

If we change our privacy statements or processes, we will post the changes here. If changes are significant, we may also choose to email individuals affected with the new details. Where required by law, will we ask for your consent to continue processing your data after these changes are made.