top of page
Man Working

Privacy Policy

Protecting our clients’ privacy is always our highest priority.

Effective Date: 14 September 2025

This Privacy Policy (“Policy”) sets out the basis on which APL Digital Marketing Ltd (“Company,” “we,” “us,” or “our”), a digital marketing services provider incorporated and operating in the United Kingdom, collects, processes, and stores personal data of its clients, prospects, suppliers, and website users (collectively referred to as “data subjects”).

Our services include on-page and off-page search engine optimisation (SEO), pay-per-click (PPC) campaign management, website design and management, video production, and social media management. These services are provided to clients within the United Kingdom, Europe, North America, Australia, and Canada.

We are committed to safeguarding the privacy of data subjects and complying with applicable data protection legislation, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Data Controller

For the purposes of the UK GDPR, the data controller is:

APL Digital Marketing Ltd
Email: info@apldigitalmarketing.com

2. Categories of Personal Data Collected

We may collect and process the following categories of personal data:

  • Identification data: name, company name, job title.

  • Contact data: email address, telephone number, postal address.

  • Financial data: billing details, payment history, VAT numbers (where applicable).

  • Technical data: IP address, browser type, time zone settings, operating system, and cookies.

  • Communications data: correspondence, inquiries, feedback, and project-related discussions.

  • Marketing and usage data: preferences, engagement with campaigns, and interactions with our website.


We do not intentionally collect or process special category data (sensitive personal data) unless strictly required and subject to explicit consent.

3. Categories of Personal Data Collected

We may collect and process the following categories of personal data:

  • Identification data: name, company name, job title.

  • Contact data: email address, telephone number, postal address.

  • Financial data: billing details, payment history, VAT numbers (where applicable).

  • Technical data: IP address, browser type, time zone settings, operating system, and cookies.

  • Communications data: correspondence, inquiries, feedback, and project-related discussions.

  • Marketing and usage data: preferences, engagement with campaigns, and interactions with our website.


We do not intentionally collect or process special category data (sensitive personal data) unless strictly required and subject to explicit consent.

4. Legal Basis for Processing

We process personal data under one or more of the following lawful bases, as set out in Article 6 of the UK GDPR:

  1. Contractual necessity – to perform our contractual obligations or take steps prior to entering into a contract.

  2. Legal obligation – to comply with statutory requirements, including tax and accounting obligations.

  3. Legitimate interests – to pursue the legitimate business interests of the Company, such as improving services, preventing fraud, or enhancing security, provided such interests are not overridden by the fundamental rights of data subjects.

  4. Consent – for direct marketing communications or where explicit consent is otherwise required.

5. Purposes of Processing

Personal data may be processed for the following purposes:

  • Provision and administration of digital marketing services.

  • Management of accounts, contracts, invoicing, and payments.

  • Communication regarding projects, service updates, and customer support.

  • Marketing and promotional activities (subject to consent).

  • Internal record-keeping, audits, and compliance monitoring.

  • Analysis of website usage and service optimisation.

  • Compliance with legal and regulatory obligations.

6. Data Sharing and International Transfers

  • We do not sell, lease, or otherwise trade personal data to third parties.

  • Data may be disclosed to trusted third-party processors (such as IT service providers, hosting companies, payment gateways, or analytics providers) solely to enable service delivery.

  • Given our global service coverage, personal data may be transferred to jurisdictions outside the United Kingdom, including the European Union, the United States, Canada, and Australia. In such cases, transfers are conducted in compliance with Chapter V of the UK GDPR, relying on adequacy decisions or appropriate safeguards such as Standard Contractual Clauses (SCCs).

7. Data Retention

We will retain personal data only for as long as is necessary to fulfil the purposes for which it was collected, or as required by applicable law. In general:
 

  • Client records are retained for a period of six (6) years following the termination of the contractual relationship.

  • Marketing data will be retained until consent is withdrawn or an objection to processing is received.

  • Website usage data may be retained for shorter periods in accordance with our cookie and analytics policies.

8. Data Subject Rights

Under the UK GDPR, data subjects have the following rights:

  1. Right of access – to obtain confirmation as to whether personal data is being processed and to receive a copy.

  2. Right to rectification – to request correction of inaccurate or incomplete personal data.

  3. Right to erasure (“right to be forgotten”) – to request deletion of personal data under certain conditions.

  4. Right to restriction – to request limitation of processing in specific circumstances.

  5. Right to data portability – to receive personal data in a structured, commonly used, machine-readable format.

  6. Right to object – to object to processing based on legitimate interests or direct marketing.

  7. Right to withdraw consent – where consent is the lawful basis for processing.


Requests may be submitted in writing to the contact details provided in Section 1.

9. Cookies and Tracking Technologies

We employ cookies and similar technologies to monitor website functionality, enhance user experience, and measure marketing effectiveness. Details are provided in our Cookie Policy. Users may manage or disable cookies through their browser settings, although certain site features may be impaired.

10. Security of Processing

We implement appropriate technical and organisational measures to safeguard personal data against accidental loss, unauthorised disclosure, alteration, or access. These measures include encryption, access controls, firewalls, and regular security reviews. Nevertheless, no system can guarantee absolute security, and we disclaim liability for breaches beyond our reasonable control.

11. Third-Party Websites

We reserve the right to amend or update this Policy at our sole discretion. Any modifications will be published on our website with a revised “Effective Date.” Material changes will be notified to clients where required by law.

We will not explicitly inform our clients or website users of these changes. Instead, we recommend that you check this page periodically to remain informed of any updates to this Policy.

12. Policy Updates

We reserve the right to amend or update this Policy at our sole discretion. Any modifications will be published on our website with a revised “Effective Date.” Material changes will be notified to clients where required by law.
 
We will not explicitly inform our clients or website users of these changes. Instead, we recommend that you check this page periodically to remain informed of any updates to this Policy.

13. Contact Information

All questions, requests, and concerns regarding this Policy should be directed to:

APL Digital Marketing Ltd
Email: info@apldigitalmarketing.com

bottom of page