Privacy Policy

Last updated: 10 April 2026

1. Who We Are

CrftdWeb is a web design and development studio operating in the United Kingdom. When we refer to “we,” “us,” or “our,” we mean CrftdWeb. Our contact email is hello@crftdweb.com.

2. What Data We Collect

We collect the following personal data depending on how you interact with us:

  • Contact form / enquiries: Name, email address, phone number, business name, message content.
  • Rep applications: Name, email address, phone number, location, experience, motivation.
  • Rep portal: Name, email address, login credentials, bank/payment details, lead data, email correspondence.
  • Client projects: Name, email, business information, project details.
  • Website usage: Pages visited, referral source, device type (via anonymous analytics).

3. Why We Collect It (Lawful Basis)

  • Legitimate interest: To respond to enquiries, process applications, manage client projects, and improve our services.
  • Contract: To fulfil our obligations under client agreements and rep contractor arrangements.
  • Consent: Where you have opted in to marketing or newsletters (you can withdraw at any time).

4. How We Use Your Data

  • To respond to your enquiry or application.
  • To provide and manage our web design services.
  • To operate the rep portal (lead management, commission tracking, email follow-ups).
  • To process payments and commissions.
  • To improve our website and services.
  • To send transactional emails (project updates, account notifications).

5. Who We Share Data With

We do not sell your personal data. We share data with the following service providers who process data on our behalf:

  • Firebase (Google): Authentication and database hosting.
  • Resend: Transactional email delivery.
  • Vercel: Website hosting.

These providers have their own privacy policies and process data under appropriate safeguards.

6. How Long We Keep Data

  • Enquiries: Up to 12 months after last contact.
  • Rep applicants: Up to 6 months if unsuccessful, duration of engagement if accepted.
  • Client data: Duration of the project plus 6 years (for legal/accounting purposes).
  • Analytics: Aggregated and anonymised, retained indefinitely.

7. Your Rights

Under UK GDPR, you have the right to:

  • Access the personal data we hold about you.
  • Rectify inaccurate data.
  • Erase your data (in certain circumstances).
  • Object to processing based on legitimate interest.
  • Withdraw consent at any time where consent is the basis for processing.
  • Lodge a complaint with the Information Commissioner's Office (ICO).

To exercise any of these rights, email us at hello@crftdweb.com.

8. Cookies

We use essential cookies to ensure the website functions correctly. We may use analytics cookies to understand how visitors use the site. No advertising or third-party tracking cookies are used.

9. Security

We use industry-standard measures to protect your data, including encrypted connections (HTTPS), secure authentication, and access controls on our database. No system is 100% secure, but we take reasonable steps to protect your information.

10. Changes to This Policy

We may update this policy from time to time. The “last updated” date at the top of this page will reflect any changes. Continued use of our services after changes constitutes acceptance.

11. Contact

If you have questions about this privacy policy, contact us at hello@crftdweb.com.