PRIVACY POLICY 

2.1 Who we are.

Carole Crowe Interior Design Ltd is the data controller responsible for your personal data.
Company Number: 14474745
VAT Number: 460070723
Website: carolecrowe.co.uk
Email: carole@carolecrowe.co.uk

2.2 What personal data we collect and why we collect it

Enquiry and contact information
If you contact us through a form on this website, by email, or by booking a call, we may collect personal information such as your name, email address, phone number, location, and any information you choose to share about your home or project. We use this information to respond to your enquiry, communicate with you, and take steps at your request before entering into a contract.

Newsletter and marketing information
If you choose to sign up to our newsletter, we collect your name and email address in order to send updates, insights, news and occasional marketing communications about Carole Crowe Interior Design. We rely on your consent to do this, and you can unsubscribe at any time using the link in any email or by contacting us directly.

Website usage data
We may collect limited technical information about how visitors use the site, such as IP address, browser type, device information and browsing behaviour, through cookies and analytics tools. We use this information to understand website performance, improve user experience, and maintain the security of the site.

2.3 Lawful basis

Lawful bases for processing
We process personal data under one or more of the following lawful bases under UK GDPR:

  • Consent - when you sign up to receive newsletters or marketing communications.

  • Contract - when you enquire about, book or purchase services, or ask us to take steps before entering into a contract with you.

  • Legitimate interests - where it is necessary for the running and improvement of our business, website and services, provided those interests are not overridden by your rights and interests. This may include responding to enquiries, improving website performance, and maintaining records of client communications.

  • Legal obligation - where we need to keep records to comply with legal, tax or accounting requirements.

2.4 Retention

How long we keep your data
We only keep personal data for as long as reasonably necessary for the purpose for which it was collected, including to satisfy legal, tax, accounting or reporting requirements.

As a guide:

  • enquiry data may be kept for up to 12 months after our last contact;

  • newsletter subscription data is kept until you unsubscribe or ask us to remove it;

  • client project and transaction records may be kept for up to 6 years where required for accounting, tax or legal purposes.

We may keep anonymised information for business analysis and service improvement.

2.5 Sharing / third-party processors

Who we may share your data with
We do not sell your personal data.

We may share personal data with trusted third-party service providers where necessary to operate our website and business, for example:

  • website hosting and website platform providers;

  • email and newsletter providers;

  • analytics or cookie providers;

  • payment processors, where relevant;

  • professional advisers such as accountants, legal advisers or IT support.

These providers only process your data on our instructions or under their own lawful responsibilities where applicable.

2.6 Rights section

Your rights
Under UK GDPR, you may have the right to:

  • be informed about how your personal data is used;

  • request access to the personal data we hold about you;

  • request correction of inaccurate or incomplete data;

  • request erasure of your data in certain circumstances;

  • request restriction of processing in certain circumstances;

  • object to processing in certain circumstances;

  • request transfer of your data where applicable;

  • withdraw consent at any time where we rely on consent.

To exercise any of these rights, please contact us at carole@carolecrowe.co.uk.

You also have the right to complain to the Information Commissioner’s Office (ICO) if you are unhappy with how your data has been handled.

2.7 International transfers

International transfers
Some of our third-party providers may store or process personal data outside the UK. Where this happens, we take reasonable steps to ensure appropriate safeguards are in place so your data remains protected in line with UK GDPR requirements.