Let's Connect

Privacy Policy

Effective date: 2nd February 2026

Lazuleye (“we”, “us”, “our”) is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect personal information when you interact with our website, services, and communications.

This policy is written in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

  1. Who We Are

Lazuleye Marketing is a business operating in the United Kingdom and is the data controller responsible for your personal data.

If you have any questions about this policy or how we handle your data, you can contact us via the Contact page on our website or directly at hello@lazuleye.com. 

  1. What Personal Data We Collect

We may collect and process the following types of personal data:

Information you provide directly

  • Name
  • Email address
  • Phone number
  • Business name
  • Information submitted via enquiry forms, bookings, or contact requests
  • Information provided when purchasing products or services

Information collected automatically

  • IP address
  • Browser type and device information
  • Pages visited and actions taken on our website
  • Referral sources

This information is collected through cookies and similar technologies (see Section 9).

  1. How We Use Your Personal Data

We use your personal data to:

  • Respond to enquiries and requests submitted through our website
  • Provide products and services you have requested or purchased
  • Manage client relationships, onboarding, and service delivery
  • Process payments and manage transactions
  • Send relevant marketing communications where you have opted in or where otherwise permitted by law
  • Improve our website, content, and overall user experience
  • Meet legal, regulatory, accounting, or reporting obligations

We only use personal data where it is necessary, relevant, and proportionate to the purpose for which it was collected.

If you choose not to provide certain personal information, we may be unable to respond to your enquiry or provide the requested products or services.

  1. Lawful Bases for Processing

Under UK GDPR, we rely on the following lawful bases to process personal data:

  • Contract – where processing is necessary to provide a product or service
  • Legitimate interests – to operate and grow our business, provided your rights are not overridden
  • Consent – for email marketing and certain cookies
  • Legal obligation – where required by law (e.g. tax and accounting records)
  1. Marketing Communications

If you opt in to receive marketing communications, we may send you emails containing updates, insights, or offers related to our services.

You can withdraw your consent at any time by using the unsubscribe link in our emails or by contacting us directly.

We use Kartra to manage email communications and subscriber data.

  1. Payments and Financial Data

Payments made through our website or invoicing systems may be processed via:

  • Stripe
  • PayPal
  • Wise
  • Direct debit providers
  • Bank transfer

We do not store full payment card details on our servers. Payment providers process your data in accordance with their own privacy policies.

  1. Third Party Service Providers and International Transfers

Lazuleye acts as the data controller for personal data collected through this website and our services. Trusted third party providers act as data processors on our behalf.

We use trusted third party service providers to help operate our business and deliver services, including:

  • Website hosting and management (WordPress)
  • Email marketing and CRM (Kartra)
  • Analytics and performance tracking (Google Analytics; Meta Pixel planned)
  • Payment processing providers

Some of these service providers, or members of our delivery team, are located outside the UK, including in the United States.

Where personal data is transferred outside the UK, we ensure appropriate safeguards are in place, such as standard contractual clauses or equivalent protections, to comply with UK data protection law.

  1. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting, and operational requirements. Data is not kept indefinitely.

In general:

  • Enquiry data (such as contact form submissions or discovery call requests) is retained for up to 12 months where no further engagement takes place.
  • Client and transactional data is retained for the duration of our working relationship and for a reasonable period afterwards where required for contractual, legal, or accounting purposes
  • Marketing data is retained until you withdraw consent or unsubscribe from our communications.

Retention periods may vary depending on the nature of the data, the purpose for which it was collected, and our legal obligations. When personal data is no longer required, it is securely deleted or anonymised.

  1. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to improve functionality, analyse website traffic, and support marketing activities.

Cookies may be used for:

  • Website performance and analytics (e.g. Google Analytics)
  • Marketing and advertising (e.g. Meta Pixel, once implemented)

Marketing cookies, including Meta Pixel, will only be activated where you have provided the appropriate consent.

You will be given the opportunity to manage your cookie preferences when visiting our site.

A separate Cookie Policy will provide full details of the cookies used and how you can control them

  1. Your Data Protection Rights

Under UK data protection law, you have the right to:

  • Request access to the personal data we hold about you
  • Request correction of inaccurate or incomplete personal data
  • Request deletion of your personal data in certain circumstances
  • Request restriction of processing in certain circumstances
  • Object to the processing of your personal data in certain circumstances
  • The transfer of your personal data to you or to another organisation where applicable
  • To withdraw consent at any time where processing is based on consent
  1. How To Complain

If you have any concerns about how we use your personal information, we encourage you to contact us first so we can try to resolve the issue.

You can contact us via the Contact page on our website or directly at hello@lazuleye.com.

You are not required to pay a fee to exercise your data protection rights. We will respond to valid requests within one month, unless an extension is permitted under UK data protection law.

If you remain unhappy with how we have handled your personal data, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK’s data protection regulator.

Further information about your rights and how to complain can be found at: https://www.ico.org.uk.

  1. Data Security

We take reasonable technical and organisational measures to protect personal data against unauthorised access, loss, misuse, or alteration.

However, no online system can be guaranteed to be completely secure, and data is shared at your own risk.

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify affected individuals and the Information Commissioner’s Office (ICO) where we are legally required to do so.

  1. Changes to this Policy

We may update this Privacy Policy from time to time. The latest version will always be available on our website and will apply from the date it is published.

  1. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your data protection rights, please contact us via the Contact page on our website or directly at hello@lazuleye.com.