Privacy Policy

Last updated: July 2026

1. Introduction

(“we”, “us”, “our”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal information when you visit our website, contact us, or use our services.

We are a UK-based creative digital agency providing services including branding, website design, web development, UI/UX design, digital marketing, and related creative services.

This policy applies to information collected through our website:

https://mbrsdigital.co.uk

and through any communications you have with us.

We process personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.


2. Information We Collect

We may collect and process the following types of personal information:

Information you provide directly

When you contact us, request a quote, submit an enquiry, or engage our services, we may collect:

  • Full name
  • Business name
  • Email address
  • Telephone number
  • Job title or role
  • Project requirements and information you provide
  • Any other information included within your enquiry

Information collected automatically

When you visit our website, we may automatically collect certain technical information, including:

  • IP address
  • Browser type and version
  • Device information
  • Operating system
  • Pages visited and time spent on our website
  • Referral sources
  • Website interaction data

This information helps us understand how visitors use our website and improve our services.


3. How We Use Your Information

We may use your personal information for the following purposes:

  • Responding to enquiries and providing requested information
  • Preparing proposals, quotations, and project estimates
  • Delivering our creative and digital services
  • Managing client relationships
  • Communicating with you regarding projects, updates, and support
  • Improving our website, services, and customer experience
  • Understanding website usage and performance
  • Meeting legal, regulatory, or contractual obligations

We will only use your personal information where we have a lawful basis to do so.


4. Lawful Basis for Processing

Under UK GDPR, we rely on the following lawful bases:

Legitimate interests

We may process information where it is necessary for our legitimate business interests, such as responding to enquiries, improving our website, and managing client relationships.

Contractual necessity

Where you engage us for services, we may process your information to fulfil our contractual obligations.

Consent

Where required, we will ask for your consent before processing information, such as marketing communications or non-essential cookies.

Legal obligations

We may process information where required to comply with legal requirements.


5. How We Store and Protect Your Information

We take reasonable technical and organisational measures to protect your personal information from:

  • Unauthorised access
  • Loss
  • Misuse
  • Alteration
  • Disclosure

Information may be stored using secure third-party platforms that we use to operate our business, including website hosting providers, email services, analytics platforms, and project management tools.

While we take appropriate precautions, no method of online transmission or storage is completely secure.


6. Third-Party Services

We may use trusted third-party services to support our website and business operations.

These may include:

  • Website hosting providers
  • Website analytics providers
  • Email communication services
  • CRM and project management platforms
  • Payment providers, where applicable
  • Marketing platforms

These providers may process personal data on our behalf and are required to handle information securely.


7. Analytics and Cookies

Our website may use cookies and similar technologies to improve functionality and understand visitor behaviour.

Cookies are small text files stored on your device when you visit a website.

We may use cookies for:

  • Website functionality
  • Security
  • Performance monitoring
  • Analytics
  • Understanding visitor behaviour

We may use analytics services such as Google Analytics to understand how visitors interact with our website.

You can control or disable cookies through your browser settings. Please note that disabling cookies may affect certain website functionality.


8. Marketing Communications

If you choose to receive marketing communications from us, we may contact you with updates, insights, or information about our services.

You can unsubscribe from marketing communications at any time by contacting us or using any unsubscribe option provided.

We will never sell your personal information to third parties.


9. Sharing Your Information

We do not sell, rent, or trade personal information.

We may share information only where necessary:

  • To deliver the services you have requested
  • With trusted suppliers who support our operations
  • Where required by law or legal processes
  • To protect our rights, property, or safety

10. How Long We Keep Your Information

We retain personal information only for as long as necessary for the purposes it was collected.

Factors considered include:

  • The nature of our relationship with you
  • Legal obligations
  • Accounting requirements
  • Business records
  • The need to resolve disputes or enforce agreements

When information is no longer required, it will be securely deleted or anonymised.


11. Your Rights Under UK GDPR

You have rights regarding your personal information, including:

Right of access

You can request a copy of the personal information we hold about you.

Right to correction

You can request that inaccurate or incomplete information be corrected.

Right to deletion

You can request that your personal information be deleted in certain circumstances.

Right to restrict processing

You can request that we limit how your information is used.

Right to object

You can object to certain types of processing, including direct marketing.

Right to data portability

You may request your information in a commonly used electronic format.

Right to withdraw consent

Where processing is based on consent, you may withdraw consent at any time.

To exercise any of these rights, please contact us using the details below.


12. External Links

Our website may contain links to external websites.

We are not responsible for the privacy practices, content, or security of third-party websites. We recommend reviewing the privacy policies of any external websites you visit.


13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, or business practices.

Any updates will be published on this page with the revised date shown at the top.


14. Contact Us

If you have questions about this Privacy Policy, wish to exercise your data protection rights, or have concerns about how your information is handled, please contact us:

MBRS Holdings Ltd

Email: hello@mbrsdigital.co.uk

Website: https://mbrsdigital.co.uk

United Kingdom


If you believe your data protection rights have not been handled appropriately, you have the right to raise a concern with the UK supervisory authority:

Information Commissioner’s Office (ICO)
https://ico.org.uk