Data Protection/GDRP

Effective Date: 05 May, 2025
Last Updated: 05 May, 2025

1. Who We Are

Nonnye's


Email: info@nonnyes.com

2. What Personal Data We Collect

Website Visitors: IP, cookies, location, form data
Clients: Contact details, billing, project data
Contractors: Legal name, payment details, work history

3. How We Collect Data

Through forms, emails, contracts, analytics, and cookies.

4. Why We Collect Data

To respond to enquiries, provide services, improve offerings, comply with law, and send communications (with consent).

5. Legal Bases

• Consent
• Contract
• Legal obligation
• Legitimate interest

6. Data Retention

Up to 7 years for project data. 1 year for enquiries. Mailing data until unsubscribed.

7. Sharing Your Data

No selling of data. We share only with processors under agreement (e.g., AWS, Stripe, HubSpot). Transfers outside UK/EU follow SCCs or equivalent safeguards.

8. Your Rights (EU & UK GDPR)

Access, rectify, delete, restrict, port, object, avoid profiling. Contact: [Insert Email]

9. US Rights (CCPA/CPRA)

Access, delete, opt out, correct, and non-discrimination rights for US residents.

10. Data Protection Measures

SSL, secure servers, access control, staff training, and breach protocols.

11. Cookies and Tracking

See our Cookies Policy for detailed information.

12. Third-Party Links

We’re not responsible for external sites. Review their policies separately.

13. Changes to this Policy

We may update this policy. Changes will be published with revision date.