By /

Website Policies

UK GDPR

About UK GDPR – Key Facts

Who it applies to?

UK GDPR covers all organisations that handle personal data – from large companies to sole traders and charities.
It also applies to businesses outside the UK if they offer goods or services to UK residents, even for free.
If you collect information like names, emails, phone numbers, addresses, payments, or IP addresses – it applies to you.

What it means to implement

Implementing UK GDPR is more than just having an ICO registration.
It means:

  • Having the policies and procedures the ICO requires.

  • Informing customers, suppliers, and staff how you use their data.

  • Keeping data secure and training staff.

  • Choosing partners (e.g., accountant, marketing provider) who are ICO registered and have strong data protection.

Documentation

  • External: public documents – Privacy Policy, Cookie Policy, Terms & Conditions.

  • Internal: private procedures, registers, and staff training records.
    ICO registration alone is not enough – you need both.

Penalties

ICO can fine up to £17.5 million or 4% of turnover for serious breaches, and can also restrict your ability to process data.

Website Policies –
UK Compliance Package

Includes all four components, drafted specifically for your business, ready to publish on your website and social media profiles.
£490

Having a website or mobile app means more than just selling products or promoting your services – you must clearly tell users how you operate, protect their data, and handle transactions.
Our Website Policies package gives you clear, tailored, and fully compliant documents so you meet UK legal requirements and build customer trust from the first click.

What’s included and why it’s important

Privacy Policy

A Privacy Policy explains in plain language:

  • What personal data you collect (e.g., names, emails, payment details).

  • Why you collect it and how it is used.

  • How long you keep it.

  • Who you share it with.

Why it matters:
It is a legal requirement in the UK for any business that processes personal data. A clear Privacy Policy builds trust and avoids misunderstandings.

Cookie Policy

This policy tells visitors:

  • What cookies your site uses (e.g., analytics, marketing).

  • Why they are used and for how long.

  • How visitors can manage or refuse cookies.

Why it matters:
Cookie use is regulated under UK law. You must tell users and, in some cases, get their consent. This policy also helps you comply with online advertising rules.

Terms & Conditions

A set of rules that act as a contract between you and your customers, covering:

  • How orders are processed.

  • Delivery and payment terms.

  • Returns, cancellations, and refunds.

  • Limitations of liability.

Why it matters:
It’s required under UK e-commerce law and protects you in case of disputes. Well-written terms reduce the risk of chargebacks, complaints, and misunderstandings.

Privacy Notices for forms and social media

Short, targeted notices that appear:

  • On contact forms.

  • Newsletter sign-ups.

  • Social media pages.

They explain, in one or two sentences, how the data entered will be used and link to your full Privacy Policy.

Why it matters:
These notices fulfil your legal duty to inform people at the point where you collect their data – not just in a long policy hidden on the site.

Our approach

We don’t use generic templates. Every document is tailored to your business model, your industry, and your target audience. We also make sure the tone and style match your brand, so your policies are not just legally correct but also user-friendly.

Scroll to Top