top of page
Tootle works digital marketing agency in kent logo

Privacy Policy (GDPR)

1. Who We Are

Tootle Works LTD (“we”, “us”, “our”) is a digital marketing agency and is committed to protecting your personal data.

Data Controller: Tootle Works LTD
Address:
Suite 153, Dragon Coworking
7–8 New Road Avenue
Chatham
Kent
ME4 6BB
United Kingdom

Email: Hello@tootleworks.com

If you have any questions about this Privacy Policy or how we handle your data, please contact us using the details above.

2. What Personal Data We Collect

We may collect and process the following personal data:

When you contact us or make an enquiry

  • Name

  • Business name

  • Email address

  • Telephone number

  • Details of your enquiry or message

When you become a client

  • Contact details for you and your team

  • Billing and invoicing information

  • Project briefs, communications, feedback and approvals

  • Website or system access details required to deliver our services

When you visit our website

  • IP address

  • Browser and device information

  • Pages visited and interactions with our website

  • Cookie and analytics data

We do not intentionally collect special category data such as health, religious or biometric information.

3. How We Collect Your Data

We collect personal data when you:

  • Complete a form on our website

  • Contact us by email, phone or message

  • Enter into a contract with us

  • Use our website

4. How and Why We Use Your Data

We use personal data only where we have a lawful basis to do so. This includes:

  • Responding to enquiries and providing quotations

  • Delivering digital marketing services

  • Managing client relationships and projects

  • Issuing invoices and managing payments

  • Improving our website and services

  • Sending relevant marketing communications

  • Meeting legal and regulatory obligations

Our lawful bases include contract, legitimate interests, legal obligation and consent (where required).

5. Sharing Your Data

We may share your personal data with trusted third parties where necessary to run our business and deliver services. These may include:

  • Website hosting providers

  • Email and communication platforms

  • Analytics and advertising platforms

  • CRM and project management tools

  • Accounting and payment providers

  • Professional advisers

We only share data where necessary and require third parties to protect it appropriately.

6. International Data Transfers

Some service providers may process data outside the UK. Where this happens, we ensure appropriate safeguards are in place in line with UK GDPR requirements.

7. Data Retention

We retain personal data only for as long as necessary:

  • Enquiry data: up to 12–24 months after last contact

  • Client data: for the duration of the relationship and a reasonable period afterwards

  • Financial records: typically 6 years to comply with UK legal and tax requirements

8. Marketing Communications

We may send marketing communications where:

  • You have given consent, or

  • You are an existing business contact and the communication relates to similar services

You can opt out at any time by emailing Hello@tootleworks.com.

9. Cookies

Our website may use cookies to:

  • Ensure the website functions correctly

  • Analyse website usage

  • Support marketing and advertising activities

You can manage cookies through your browser settings and any cookie preference tools on our website.

10. Data Security

We take reasonable technical and organisational measures to protect personal data, including:

  • Restricted access to systems

  • Secure storage and password management

  • Use of reputable third-party providers

11. Your Rights

Under UK GDPR, you have the right to:

  • Access your personal data

  • Request correction of inaccurate data

  • Request deletion of your data

  • Restrict or object to processing

  • Withdraw consent where applicable

Requests can be made by emailing Hello@tootleworks.com. We aim to respond within one month.

12. Complaints

If you are unhappy with how we handle your data, please contact us first.
You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO).

13. Client Data Processing

When providing services, we may act as:

  • A Data Processor, following client instructions, and/or

  • A Data Controller for our own business administration, billing and communications

A separate Data Processing Agreement may apply where required.

14. Changes to This Policy

We may update this Privacy Policy from time to time. The most recent version will be available on our website.

Last updated: 4 June 2025

bottom of page