Privacy Policy

By using this website, you are agreeing to our Privacy Policy.

Updated: March 1, 2022

Who we are:

Business Name: weunblockdrains.com Ltd

Address: Epsilon House, Masterlord Office Village, West Road, Ipswich, Suffolk, IP3 9FJ
Company Reg No. 13519555
VAT Reg No. 351 7360 09

Tel: 0800-046-5956
Email: hello@weunblockdrains.com
Web: https://weunblockdrains.com

What rights you have over your data:

If you have an account on this site, have left comments, filled out and submitted one of our proposal or contact forms, then you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

See the Privacy Centre

What personal data we collect and why we collect it.

We strictly follow the principle to collect the minimum amount of personal data needed to deliver our services.

Whenever we collect anonymous information, or you provide personal information, we will treat that information in accordance with our Privacy Policy.

We collect a varied amount of information.

Some of the information will allow us to identify you (PII - Personable Identifiable Information), such as name, email address, postcode, phone number etc. But only if you input this information yourself.

Such purposes for collection could be customer service, advertising, or the booking/purchasing of our products/services etc.

Some information collected, is obtained anonymously. We use web technologies, such as cookies, that automatically track and log data. For detailed information, please see our Cookies Policy here.

Such purposes for collection could be in the technical administration of this website, to enhance your experience of this site (a better browsing experience), improve our website, advertising, targeted advertising (Google Ads + Microsoft Advertising), A/B testing etc.

We also record anonymous data, so we can improve our website, some of the things record in this way are web traffic statistics (through Google Analytics).

Please note: your personal data shall not be disclosed to state institutions and authorities, except if required to by law.

The personal information we obtain and the anonymous information we collect, who this data is shared with and how it is processed is listed below:

WordPress

This website is built on top of the WordPress platform.

By default, WordPress does not collect any personal data about visitors, and only collects the data shown on the User Profile screen from registered users.

To find out more, visit:

https://automattic.com/automattic-and-the-general-data-protection-regulation-gdpr/

We employ strong password policies to stop unauthorised access to WordPress (and ultimately this website).

Please see Contact forms, Gravity Forms below for more information.

Thrive Themes

weunblockdrains.com Ltd uses Thrive Themes for the build of the website, the advertising (pop-ups, banners etc.) and A/B testing.

This is achieved through three website WordPress Plugins. These are:

Thrive Architect - Website Design

Thrive Leads - Advertising

Thrive Optimize - A/B Testing

Thrive Ultimatum - Count Down Timers

Thrive Quiz Builder – Content Quizzes to gather further information and inform

All these Plugins are now designed so that any cookies that are stored, are stored in a way that does not store any PII - Personable Identifiable Information.

To find out more, visit:

https://thrivethemes.com/

https://thrivethemes.com/gdpr-features/

Analytics

Google

https://policies.google.com/privacy/

https://privacy.google.com/businesses/compliance/

Google Tag Manager (GTM)

weunblockdrains.com Ltd uses Google Tag Manager for the implementation of Google Analytics & other advertising products.

Google Tag Manager is a solution for managing tags. Tags are snippets of code which are added to a website to collect information and send it to Third Parties.

GTM is an easy way of adding other Third-Party products to our site, including but not limited to Google Ads Conversion Tracking and Remarketing, Microsoft Advertising Conversion Tracking and Remarketing, Hotjar.

The conversion tracking tags that are installed via GTM, read cookies, and send them back to the Third Parties. This allows us, amongst other things, to track conversions from Google Ads.

We have turned on the IP Anonymization feature in Google Tag Manager. So, all information sent to Third Parties is sent anonymously.

Each Third-Party Tag we have added via Google Tag Manger is listed below in this Privacy Policy.

To find out more, visit:

https://www.google.com/analytics/tag-manager/use-policy/

Universal Analytics (Google):

These cookies are used to collect information about how visitors use our website. We use the information to compile reports and to help us improve the website. The cookies collect information in an anonymous form, including the number of visitors to the website, where visitors have come to the website from and the pages they visited. The reports also contain location information. But this still is anonymous. See our Cookie Policy for more information.

To find out more, visit:

https://support.google.com/analytics/answer/6004245

https://privacy.google.com/businesses/compliance/

https://www.google.com/analytics/terms/us.html

Who do we share your data with?

Below is a list of Third-Party Data Processors we share your data with, and why.

We have Data Controller/Data Processor contracts with all below. The contracts and the company’s compliance with the GDPR are reviewed at regular intervals.

SiteGround Hosting Ltd, 3rd Floor, 11-12 St. James's Square London SW1Y 4LB

This is our hosting provider. Where we host our website https://weunblockdrains.com

The servers are based in the UK.

Every function on our website is processed on SiteGround Hosting Ltd Servers. Any information you input into our forms on this website is processed and held on SiteGround Hosting Ltd. All the code for cookies, pixels & tags will be processed on their servers.

This websites Database is also held on SiteGround Hosting Ltd. Your PII will be held in this database for a limited time. The database is also secured with strong password policies.

Please see How long we retain your data & Contact forms below for more info on the information that is held, how it is processed and how long it is kept.

SiteGround Hosting Ltd is fully GDPR compliant.

They have in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way, altered, or disclosed. In addition, they limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know.

To find out more about how Privacy is handled, visit:

https://www.siteground.com/privacy.htm

The SiteGround DPA:

https://www.siteground.com/term/297.htm

Lawful Basis:

Our Lawful basis for processing your data under GDPR is Legitimate Interests. Our website can only function by being on Krystal Hosting's Servers. If you wish to make an enquiry or a booking via our website, then you must input your information and submit it to us. This processing must be completed on Krystal Hosting's Servers.

ActiveCampaign, LLC 1 N Dearborn, 5th Floor, Chicago, IL 60601, United States

When you input and submit your personal data into contact and proposal forms, all the information you input is sent to and stored on ActiveCampaign's servers in the USA. ActiveCampaign also processes your data as per instructions from us.

In what way is your data processed? We use ActiveCampaign to store then use your email address to send you receipt emails to confirm that we have received your form submissions. If you have consented to advertising, we also use their services to send you advertising emails.

Your data is transferred outside the European Union. Your data is safeguarded to European data protection standards by the EU-U.S. PRIVACY SHIELD certification. To view ActiveCampaign certificate please go to: https://www.privacyshield.gov/participant?id=a2zt0000000GnH6AAK

Contact:

Postal Address: ActiveCampaign, LLC 1 N Dearborn, 5th Floor, Chicago, IL 60601, United States
Tel: +44-1-800-357-0402
https://www.activecampaign.com/contact/

To find out more about how Privacy is handled, visit:

https://www.activecampaign.com/gdpr-updates/
https://www.activecampaign.com/privacy-policy/

Lawful Basis:

Our Lawful basis for processing your data under GDPR is Legitimate Interests. If you wish to make an enquiry or a booking via our website, you must submit your data so we can act on it to provide a service or answer your questions. Also, if you consent to us advertising to you, then our lawful basis is that consent.

Google Ads conversion tracking (Google Inc.) & remarketing

Google Ads conversion tracking is an analytics service provided by Google Inc. that connects data from the Google Ads advertising network with actions performed on https://weunblockdrains.com

Data collected: Cookies and Usage Data - Anonymously.

To find out more about how Privacy is handled, visit:

https://policies.google.com/privacy/

Remarketing: We use Google Analytics' 3rd-party audience data such as age, gender, and interests to better understanding the behaviour of our customers and work with companies that collect information about your online activities to provide advertising targeted to suit your interests and preferences. For example, you may see certain ads on this website or other websites because we contract with Google and other similar companies to target our ads based on information we or they have collected, including information that was collected through automated means (such as cookies and web beacons). These companies also use automated technologies to collect information when you click on our ads, which helps track and manage the effectiveness of our advertising efforts.

You may opt out of the automated collection of information by third-party ad networks for the purpose of delivering advertisements tailored to your interests, by visiting the consumer opt-out page for the Self-Regulatory Principles for Online Behavioural Advertising at https://www.aboutads.info/choices/ and edit or opt-out your Google Display Network ads' preferences at https://www.google.com/ads/preferences/.

Lawful Basis:

Our Lawful basis for processing your data under GDPR is Legitimate Interests. Conversion tracking has a minimal privacy impact, and it is imperative we measure our success in Google Ads on a commercial basis.

Microsoft Advertising conversion tracking – (Microsoft Inc.)

We use Microsoft Advertising. Microsoft Advertising places a cookie on your computer if you reach our website by clicking on a Microsoft Advertising advertisement. These cookies generally expire after 180 days and cannot identify a user personally. We use Microsoft Advertising to allow us to have our advertisements appear at the top of the results page for certain search engines.

Microsoft Advertising collects data through anonymous Microsoft Advertising cookies stored on a user’s machine, which report on actions taken on advertisers’ websites. The data collected is used to report back to advertisers on campaign performance (e.g., conversion activities) and on engagement metrics (e.g., bounce rates, visits, duration per visit). More information about Microsoft’s data collection and privacy practices are available at:

https://privacy.microsoft.com/en-gb/privacystatement
https://about.ads.microsoft.com/en-gb/resources/policies/microsoft-advertising-agreement

For more information, please see the Microsoft Advertising Privacy and data protection guidelines:

https://about.ads.microsoft.com/en-us/resources/policies/privacy-and-data-protection-policies

Remarketing: Remarketing is a way for us to engage an audience that has previously visited our website(s). To participate in remarketing, we have instrumented our website with a Universal Event Tracking (UET) tag, enabling Microsoft to identify end user visits to our site. Microsoft Advertising allows us to segment our audiences by creating remarketing lists based on end user activity on our site(s) and then to optimise our campaigns based on those segments.

Our remarketing lists will be solely used for our paid search campaigns, they are not shared with any third parties or any other advertisers or partners and are not otherwise used by Microsoft for any purpose not described in this policy.

Individual end user tracking and data sharing with third parties for advertising and advertising purposes is taking place on our web properties.

Behavioural targeting opt-out. You can optout of Interest-Based Advertising at any time. If you wish to exercise your opt out rights, please use the following resources:

http://optout.networkadvertising.org/?c=1
https://youradchoices.com/
https://privacy.microsoft.com/en-gb/privacystatement

Lawful Basis:

Our Lawful basis for processing your data under GDPR is Legitimate Interests. Conversion tracking has a minimal privacy impact, and it is imperative we measure our success in Microsoft Advertising on a commercial basis.

If you make a purchase from our website, we share your information with the following payment processors:

Stripe Inc payment processor

If you pay your Retainer Fees via our website, we use Stripe to process those payments.

Your data (email address & credit card details) will be passed to Stripe for Payment Processing.

Lawful Basis:

Our Lawful basis for processing your data under GDPR is Contract. We must pass your data to a Payment Processor to obtain a payment.

To find out more about how Privacy is handled, visit:

https://support.stripe.com/questions/stripe-and-european-data-transfers
https://stripe.com/gb/privacy
https://stripe.com/gb/legal
https://stripe.com/contact

Your data is transferred outside the European Union. Your data is safeguarded to European data protection standards by the EU-U.S. PRIVACY SHIELD certification.

To find out more:

https://stripe.com/privacy-shield-policy

Microsoft 365 cloud data storage & exchange email

We use Microsoft 365 Cloud Solutions to store your personal data. Specifically, we use the Microsoft SharePoint service to store data. We also use Microsoft Exchange for the transmission of emails.

We sometimes use Microsoft Excel to store and access a customer data. The Excel file holds your PII. This file is then stored in the cloud on Microsoft's servers that are based in the UK. We encrypt and protect all our customer data Excel spreadsheets with strong passwords. This data is then further encrypted on Microsoft's servers. For more info see below.

The personal data you enter in to one of our proposal or contact forms is sent to us via email. Your data in processed by Microsoft's Exchange email servers that are based in the UK. We then receive these emails at our offices. They are reviewed and processed by our staff who are trained in Data Compliance and Security. The type of processing depends on which form you have submitted. Please see Contact forms below for more information. There are retention policies on how long we keep your emails. Please see How long we retain your data below.

Microsoft has robust policies, controls, and systems built into Microsoft 365 to help keep your information safe.

Microsoft 365 uses service-side technologies that encrypt customer data at rest and in transit. For customer data at rest, Microsoft 365 uses volume-level and file-level encryption. For customer data in transit, Microsoft365 uses multiple encryption technologies for communications between data centres and between clients and servers, such as Transport Layer Security (TLS) and Internet Protocol Security (IPsec). Microsoft 365 also includes customer-managed encryption features.

Contact:

https://support.office.com/home/contact

To find out more about how Privacy is handled, visit:

https://products.office.com/en-us/where-is-your-data-located/
https://www.microsoft.com/en-US/TrustCenter/Security/office365-security/
https://www.microsoft.com/en-US/TrustCenter/Compliance/complianceofferings/
https://www.microsoft.com/en-us/TrustCenter/CloudServices/office365/GDPR/
https://www.microsoft.com/en-us/trustcenter/cloudservices/office365/

Lawful Basis:

Our Lawful basis for processing your data under GDPR is Legitimate Interests. We use Microsoft 365 to process your data on a commercial basis. Our operations and business depend on Microsoft's services. Also, if you consent to us advertising to you, then our lawful basis is that Consent. If you book a service or make a purchase through our website, then our lawful basis is a Contract. We need to process your personal data to be able to carry out the services you have requested we perform.

Contact forms

We use two contact form plugins to capture your personal data’: Gravity Forms and Thrive Architect.

Gravity Forms is a WordPress website plugin developed by Rocketgenius, Inc.

Thrive Architect is a WordPress website plugin developed by Thrive Themes, Inc.

None of your data is processed by Rocketgenius, Inc. Or stored by them.

None of your data is processed by Thrive Themes, Inc. Or stored by them.

Data we collect:

Proposal & Contact Forms:

Name (first, last, or both. This is up to the user), email, a description entered by you, contact telephone number (if applicable), contact preference, website address, proposal questions, consent options.

When you submit a proposal request, contact form, or pay your Retainer Fees on our website the data you submit to us (or in the case of a fees, the data you submit to the third-party payment processor Stripe) is (in some cases) sent to us via email. Please see Microsoft 365 cloud data storage & exchange email above for more info. The emails are reviewed and processed by our staff who are trained in Data Compliance and Security.

Some data may be processed by our staff and processed into an Excel spreadsheet that is securely stored on Microsoft's cloud servers. Again, please see Microsoft 365 cloud data storage & exchange email above for more info.

A copy of the data you enter is also saved in the database this WordPress website needs to function. See SiteGround above for more information. This data is deleted on a weekly basis.

The data you enter in our proposal and contact forms is also sent to ActiveCampaign for further processing. See ActiveCampaign, LLC above for further info.

We only use the information submitted through these forms for customer service purposes. And the purposes of legitimate interests.

How long we retain your data

We have robust data retention polices in place that are aligned with industry standards.

We perform data audits once yearly. Any information we deem to be out of date, incorrect or redundant will be deleted.

Specific retention periods:

Data entered in to:

Contact forms (send us a message form): 6 months.

Analytics records: 26 months.

Proposal forms: 5 years.

Customer records: 10 years.

Purchase Records: 2 Years.

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website, we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

How we protect your data

All our staff are trained in data protection and retention. This training is provided on an ongoing basis. And procedures are updated in line with any new legislation.

We use Microsoft's 365 Cloud solutions. To retain and process your data. This means that your data is better protected than it is on our premises. All the data stored on Microsoft's UK based cloud servers is encrypted to the highest standards. Data is also encrypted in transit. Please see Microsoft cloud data storage & exchange email above for more info.

We also employee two-factor authentication in our business.

Our offices are located on a secure site with controlled entry.

It is also company policy to carry out regular Data Privacy Impact Assessments.