NeuroForgeDesign Logo

Privacy Policy

Last Updated: 15 May 2025

Introduction

NeuroForgeDesign, the trading name of Ben Worthington, values your privacy. This policy explains how we collect, use, share, and protect your personal data. We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Who We Are

Controller: Ben Worthington trading as NeuroForgeDesign

Address: Manchester, United Kingdom

Email: contact@neuroforgedesign.com

Definitions

  • Personal Data: Information relating to an identified or identifiable person.
  • Processing: Any operation on Personal Data.
  • Consent: A clear affirmative action to agree to processing.

Data We Collect

4.1 Contact Form

  • Name
  • Email address
  • Message content

4.2 Analytics

  • Anonymised IP address (via GA4)
  • Pages visited
  • Session duration
  • Device and browser details

4.3 Cookies and Similar Technologies

We use the following cookies on our Site:

Strictly Necessary Cookies (no consent required)

  • nf_session (Netlify session cookie): supports user sessions; HTTP; session
  • __cfduid (Cloudflare security cookie): protects against fraud; HTTP; 1 year (Note: Cloudflare has largely deprecated this specific cookie for general use; its presence and duration should be verified on the live site)
  • CookieConsent (NeuroForgeDesign preference cookie): remembers your cookie choices; HTTP; approx. 150 days (or as configured in your banner)

Functional Cookies (consent required)

  • (None currently in use; reserved for future features such as theme or layout preferences.)

Analytics Cookies (consent required)

  • _ga (Google Analytics): distinguishes users; HTTP; 2 years
  • _ga_XXXXXXXXXX (Google Analytics property cookie): persists session data (replace XXXXXXXXXX with your specific GA4 Measurement ID suffix); HTTP; 2 years
  • _gid (Google Analytics): distinguishes sessions; HTTP; 24 hours

Refer to our Cookie Policy for full details, including any future additions.

4.4 Future Payment Processing

  • Billing name and address
  • Email
  • Transaction amount and date

Data processed by Stripe; we do not store card details.

4.5 Children’s Data

Our services target adults. We do not knowingly collect data from individuals under 13.

Purpose of Processing

  • Respond to inquiries
  • Deliver and refine services
  • Monitor website use
  • Meet legal and tax requirements
  • Process payments via Stripe (when implemented)

Lawful Basis for Processing

  • Performance of contract when you hire us
  • Consent for cookies (required for analytics cookies under PECR) and marketing messages
  • Legitimate interest for essential site security and strictly necessary operational functions (we assess individual rights before processing)

Data Sharing

We may share data with:

  • Google Ireland Limited for analytics (data processed within EU, with appropriate safeguards for any further transfers)
  • Netlify, Inc. for website hosting and site operation (primarily US-based, with appropriate safeguards)
  • Stripe, Inc. for payment handling (primarily US-based, with appropriate safeguards)
  • Legal authorities if required by law

International Transfers

Where Personal Data is transferred outside the UK/EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or approved data transfer frameworks, to protect your data.

Data Retention

  • Contact form submissions: retained for up to 24 months unless a longer period is required for ongoing service provision or legal reasons.
  • Analytics data (GA4): user and event data retained for 14 months (this is a GA4 setting you can configure).
  • Payment records: retained for 6 years as required by UK tax law.

Your Rights

Under UK GDPR, you have the right to:

  • Access your data
  • Rectify inaccurate data
  • Erase your data ('right to be forgotten')
  • Restrict processing
  • Object to processing
  • Data portability
  • Withdraw consent at any time (this will not affect the lawfulness of processing based on consent before its withdrawal)

To exercise these rights, please email us at contact@neuroforgedesign.com. We will respond within one month.

Cookies and Consent

We display a cookie consent banner on your first visit. Through this banner, you may:

  • Accept all cookies
  • Reject non‑essential cookies
  • Manage your preferences for different cookie categories

You can change your preferences at any time via a link or button typically found in the website footer or within our detailed Cookie Policy. Our Cookie Policy provides a detailed breakdown of cookie names, providers, purposes, types, and durations.

Security

We implement appropriate technical and organisational measures to protect your personal data, including:

  • SSL encryption for data in transit
  • Access controls to limit access to personal data
  • Routine security reviews and updates

Changes to This Policy

We may update this policy from time to time. We will publish any changes on this page and indicate the "Last Updated" date at the top. For significant changes, we may also notify users via our website or by email.

Complaints

You have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO) if you have concerns about how we handle your personal data:

Information Commissioner’s Office
Wycliffe House, Water Lane
Wilmslow, Cheshire, SK9 5AF
Website: https://ico.org.uk

Contact Us

For any questions about this Privacy Policy or our privacy practices, please contact us:

Email: contact@neuroforgedesign.com

This website uses cookies to enhance user experience and for analytics. By clicking "Accept & Continue", you consent to our use of these cookies. You can learn more in our Privacy Policy.