Privacy Policy

Last updated: 10/26/2025

1. Introduction

OPORITY LIMITED (Company Number: 15783178) ("we", "us", or "our") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our website or use our services.

This policy is issued in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We are the data controller for the purposes of data protection law.

Please read this Privacy Policy carefully. If you do not agree with the terms of this Privacy Policy, please do not access our website or use our services.

2. Information We Collect

We may collect and process the following categories of personal data about you:

2.1 Identity Data

  • First name and last name
  • Username or similar identifier
  • Job title and company name (for business clients)

2.2 Contact Data

  • Email address
  • Telephone number
  • Mailing address (if applicable)

2.3 Technical Data

  • IP address and location data
  • Browser type and version
  • Device type and operating system
  • Time zone setting and location
  • Browser plug-in types and versions

2.4 Usage Data

  • Information about how you use our website and services
  • Pages visited and features used
  • Time spent on pages
  • Links clicked and search terms entered

2.5 Marketing and Communications Data

  • Your preferences in receiving marketing from us
  • Your communication preferences
  • Survey responses and feedback

2.6 Financial Data

  • Payment card details (processed securely by our payment providers)
  • Billing address
  • Invoice history

2.7 Project and Service Data

  • Information you provide when requesting services or quotes
  • Project brief details and requirements
  • Content and materials you provide for projects
  • Communications related to service delivery

3. How We Collect Your Data

We collect data through various methods:

3.1 Direct Interactions

You provide data when you:

  • Fill out forms on our website
  • Create an account
  • Request quotes or information
  • Book a strategy call via Calendly
  • Subscribe to newsletters or marketing
  • Enter competitions or promotions
  • Provide feedback or contact us

3.2 Automated Technologies

We automatically collect data when you interact with our website using:

  • Cookies and similar tracking technologies
  • Server logs
  • Web analytics tools

For more information about cookies, please see our Cookie Policy.

3.3 Third-Party Sources

We may receive data from:

  • Analytics providers (e.g., website performance data)
  • Advertising networks (e.g., Meta Platforms)
  • Search information providers
  • Publicly available sources

4. How We Use Your Data

We will only use your personal data when the law allows us to. The lawful bases we rely on include:

4.1 Contract Performance

To perform our contract with you, including:

  • Providing web design, website creation, or consulting services
  • Managing Meta advertising campaigns
  • Processing payments
  • Managing your account and requests
  • Communicating with you about services

4.2 Legitimate Interests

To pursue our legitimate business interests, including:

  • Improving our website and services
  • Analyzing website usage and user behavior
  • Marketing our services to existing clients
  • Network and information security
  • Preventing fraud and unauthorized access
  • Portfolio development and case studies

4.3 Legal Compliance

To comply with legal obligations, including:

  • Tax and accounting requirements
  • Responding to legal requests
  • Regulatory compliance

4.4 Consent

Where you have given consent, including:

  • Sending marketing communications
  • Using certain cookies and tracking technologies
  • Sharing your testimonials or case studies

You have the right to withdraw consent at any time by contacting us or using the unsubscribe link in marketing emails.

5. Third-Party Services and Data Sharing

We use third-party service providers to help us deliver our services. We may share your data with:

Supabase (Authentication & Database)

We use Supabase for user authentication and database services. Your account credentials and profile data are stored securely on Supabase servers.

Privacy Policy: https://supabase.com/privacy

Calendly (Appointment Booking)

We use Calendly to enable strategy call bookings. When you book an appointment, your name, email, and scheduling preferences are shared with Calendly.

Privacy Policy: https://calendly.com/privacy

Meta Platforms (Advertising & Analytics)

We use Meta Pixel (Facebook Pixel) for advertising analytics and campaign optimization. This service collects data about your website interactions and browsing behavior.

Privacy Policy: https://www.facebook.com/privacy/policy

Payment Processors

We use secure third-party payment processors to handle transactions. We do not store full payment card details on our servers.

Hosting and Infrastructure Providers

Our website is hosted on secure servers provided by third-party hosting companies. These providers have access to technical data necessary for website operation.

We require all third-party service providers to respect the security of your personal data and to treat it in accordance with the law. We only permit them to process your data for specified purposes and in accordance with our instructions.

6. International Data Transfers

Some of our third-party service providers are based outside the UK or process data outside the UK. When we transfer your data outside the UK, we ensure appropriate safeguards are in place, including:

  • Transferring data to countries with adequacy decisions from the UK government
  • Using standard contractual clauses approved by the UK authorities
  • Ensuring the service provider has appropriate certifications or binding corporate rules

You can request more information about the specific safeguards used by contacting us.

7. Data Security

We have implemented appropriate technical and organizational measures to protect your personal data, including:

  • SSL/TLS encryption for data transmission
  • Secure authentication via Supabase
  • Access controls and authorization mechanisms
  • Regular security assessments and updates
  • Secure backup and recovery procedures
  • Employee training on data protection

While we implement strong security measures, please be aware that no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security.

8. Data Retention

We will retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for legal, accounting, or reporting requirements.

Retention periods vary depending on the type of data and purpose:

  • Account data: Retained while your account is active and for 12 months after closure
  • Service and project data: Retained for 6 years after project completion (legal requirement)
  • Financial records: Retained for 6 years (HMRC requirement)
  • Marketing data: Retained until you unsubscribe or for 2 years of inactivity
  • Website analytics: Typically retained for 14-26 months

When data is no longer needed, we will securely delete or anonymize it.

9. Your Legal Rights

Under UK data protection law, you have the following rights:

Right of Access

Request a copy of your personal data we hold (Subject Access Request).

Right to Rectification

Request correction of incomplete or inaccurate personal data.

Right to Erasure

Request deletion of your personal data in certain circumstances (right to be forgotten).

Right to Restrict Processing

Request restriction of processing your personal data in certain circumstances.

Right to Data Portability

Request transfer of your personal data to another organization or to you in a machine-readable format.

Right to Object

Object to processing of your personal data based on legitimate interests or for direct marketing.

Right to Withdraw Consent

Withdraw consent where we rely on consent as the legal basis for processing.

Right to Lodge a Complaint

Lodge a complaint with the Information Commissioner's Office (ICO) if you believe your rights have been violated.

To exercise any of these rights, please contact us using the details in Section 12. We will respond to your request within one month (may be extended by two months for complex requests).

You will not have to pay a fee to access your personal data or exercise your other rights. However, we may charge a reasonable fee if your request is clearly unfounded, repetitive, or excessive.

10. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track activity on our website and store certain information. This includes essential cookies for functionality, performance cookies for analytics, and marketing cookies for advertising.

For detailed information about the cookies we use and your choices, please see our Cookie Policy.

11. Marketing Communications

We may send you marketing communications about our services if:

  • You have requested information from us or purchased services from us
  • You have opted in to receive marketing communications
  • You have not opted out of receiving marketing communications

You can unsubscribe from marketing communications at any time by:

  • Clicking the "unsubscribe" link in any marketing email
  • Contacting us directly
  • Updating your account preferences (if you have an account)

Please note that even if you opt out of marketing, we may still send you service-related communications (e.g., invoices, project updates, account notifications).

12. Contact Us

If you have any questions about this Privacy Policy, wish to exercise your data protection rights, or have concerns about how we handle your personal data, please contact us:

  • Company Name: OPORITY LIMITED
  • Company Number: 15783178
  • Registered in: England and Wales
  • Contact: Book a Strategy Call

13. Supervisory Authority

You have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) if you believe we have not handled your personal data in accordance with data protection law.

  • Information Commissioner's Office (ICO)
  • Wycliffe House, Water Lane
  • Wilmslow, Cheshire SK9 5AF
  • Telephone: 0303 123 1113
  • Website: https://ico.org.uk

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by:

  • Updating the "Last updated" date at the top of this page
  • Posting a notice on our website
  • Sending you an email notification (if we have your email address)

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your personal data.

Important: By using our website and services, you acknowledge that you have read and understood this Privacy Policy and consent to the collection, use, and disclosure of your personal data as described herein. For more information about cookies, please see our Cookie Policy. For terms of service, please see our Terms of Service.