Menu
Last Updated: July 1, 2025
WordPress Surrey (“we,” “our,” or “us”) is committed to protecting the privacy of our visitors and clients. This Privacy Policy explains how we collect, use, disclose, and protect information that applies to our website and services, and your choices about the collection and use of your information.
Our website address is: https://wordpresssurrey.co.uk.
WordPress Surrey is a web design and development company based in Surrey, UK. We specialize in creating, maintaining, and optimizing websites, primarily using WordPress.
We collect various types of information for different purposes to provide and improve our services to you.
When visitors leave comments on the site, we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.
If you upload images to the website (e.g., as part of a support request or project submission), you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
When you submit information via our contact forms (e.g., for inquiries, quotes, or support), we collect the data entered into the form fields, which typically includes your name, email address, phone number, company name, and your message.
Purpose: We collect this data to:
Respond to your inquiries and provide you with requested information.
Understand your web design and development needs.
Communicate with you regarding our services.
Maintain records of our communications.
If you leave a comment on our site, you may opt-in to saving your name, email address, and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article (relevant for clients with contributor access), an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Purpose: We use cookies to:
Ensure the proper functioning of our website.
Remember your preferences and settings.
Facilitate user login and navigation.
Analyze website traffic and user behavior to improve our services (see “Analytics” below).
Articles on this site may include embedded content (e.g., videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website. We have no control over the privacy practices of these external websites.
When you engage our web design and development services, we collect information necessary to perform our contractual obligations. This may include:
Business name and contact details.
Project requirements, content, and assets (images, text, branding guidelines).
Login credentials for your hosting, domain registrar, or existing WordPress installations (handled securely and typically on a temporary, as-needed basis).
Payment information (processed securely via third-party payment processors, we do not store full payment card details on our servers).
Purpose: We collect this data to:
Fulfill our contractual obligations for web design and development services.
Communicate project updates and provide support.
Manage invoicing and payments.
We use Yoast SEO to understand how visitors interact with our website. This service collects anonymous information such as pages visited, time spent on pages, browser type, and referring website. This data is aggregated and does not personally identify you.
Purpose: We use analytics data to:
Monitor and analyze website traffic and usage patterns.
Improve the performance, content, and user experience of our website.
Understand market trends and optimize our services.
We only share your personal data in limited circumstances and for specific purposes:
Service Providers: We may share data with trusted third-party service providers who assist us in operating our website, conducting our business, or providing services to you (e.g., hosting providers, email service providers, payment processors, analytics providers). These third parties are obligated to protect your information and use it only for the purposes for which it was disclosed.
Legal Requirements: We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court order or government agency).
Business Transfers: In the event of a merger, acquisition, or asset sale, your personal data may be transferred as part of the business assets. We will notify you if such a transfer occurs and if it results in a new privacy policy.
With Your Consent: We may share your information with third parties when we have your explicit consent to do so.
Automated Spam Detection: Visitor comments may be checked through an automated spam detection service (e.g., Akismet).
We will never sell or rent your personal data to third parties for marketing purposes without your explicit consent.
Comments: If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
Contact Form Submissions: We retain contact form submissions for a reasonable period to respond to inquiries, manage client relationships, and maintain business records, typically for up to 1 year after the last communication.
Client & Project Data: We retain data related to client projects for the duration of the service agreement and for a legally mandated period thereafter for accounting, legal, and archival purposes (e.g., 7 years for tax records in the UK).
User Accounts: For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
Cookies: Cookie retention periods vary as described in the “Cookies” section above.
Analytics Data: Anonymous analytics data is typically retained by our analytics provider for a period of 26 months for Google Analytics.
If you have an account on this site, or have left comments, you have the following rights regarding your personal data:
Right to Access: You can request to receive an exported file of the personal data we hold about you, including any data you have provided to us.
Right to Rectification: You have the right to request that we correct any inaccurate or incomplete personal data we hold about you.
Right to Erasure (Right to Be Forgotten): You can request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Right to Restrict Processing: You have the right to request that we limit the way we use your personal data.
Right to Object to Processing: You have the right to object to the processing of your personal data in certain circumstances.
Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.
Right to Withdraw Consent: Where we rely on your consent to process your personal data, you have the right to withdraw that consent at any time.
To exercise any of these rights, please contact us using the contact information provided below. We will respond to your request within a reasonable timeframe (typically 30 days).
Visitor comments may be checked through an automated spam detection service. Data collected via contact forms, client information, and analytics data may be processed and stored on servers located outside of your country of residence, depending on the location of our service providers (e.g., hosting, email marketing). When this occurs, we ensure appropriate safeguards are in place to protect your data as required by applicable laws (e.g., standard contractual clauses, adequacy decisions).
If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:
Email: info@wordpressdev.co.uk Address: Homefield Park, Sutton, SM1 2AN
We implement a variety of security measures to maintain the safety of your personal information when you place an order or enter, submit, or access your personal information. These include:
SSL/TLS Encryption: Our website uses SSL/TLS encryption to protect data transmitted between your browser and our server.
Access Controls: Access to personal data is restricted to authorized personnel who need the information to perform their specific job functions.
Regular Security Audits & Updates: We regularly update our systems and software and perform security checks to identify and address vulnerabilities.
Data Minimization: We only collect personal data that is necessary for the stated purposes.
Secure Password Practices: We encourage and enforce strong, unique passwords for client access and our internal systems.
While we strive to use commercially acceptable means to protect your personal data, no method of transmission over the Internet, or method of electronic storage, is 100% secure. Therefore, we cannot guarantee its absolute security.
In the event of a data breach, we have procedures in place to assess, contain, and remediate the breach. This includes:
Internal reporting and investigation.
Notifying affected individuals without undue delay if their rights and freedoms are at high risk, as required by law.
Notifying relevant supervisory authorities as required by law.
Implementing measures to prevent future breaches.
Generally, we do not receive personal data about you from third parties, except in cases where:
A client provides us with your contact details as part of a project (e.g., a website content writer, a photographer).
Our analytics providers provide us with anonymous, aggregated demographic data (not personally identifiable).
We do not engage in automated decision-making or profiling that produces legal effects concerning you or similarly significantly affects you.
As a web design and development company, we operate under general business laws and data protection regulations applicable in the United Kingdom, specifically England. We strive to comply with relevant data protection legislation such as the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
Sutton, UK
Waddon, UK
Croydon, UK
Carshalton, UK
London, UK