PRIVACY POLICY

Straight Up Marketing Ltd

Last updated: 1 March 2026

  1. Who We Are

Straight Up Marketing Ltd (“SUM”, “we”, “us”, “our”) is committed to protecting and respecting your privacy.

The data controller responsible for this website is:

Straight Up Marketing Limited
Registered address: 11 Rushey Mead, London SE4 1JJ

Email: nicki@straightupmarketing.co.uk

We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

  1. What Personal Data We Collect

We may collect and process the following categories of personal data:

  • Name
  • Email address
  • Telephone number
  • Organisation name
  • Job title
  • Information submitted via contact or download forms
  • Marketing preferences
  • Technical data (IP address, browser type, device type, time zone)
  • Website usage data (pages visited, time on site, interactions)

We do not knowingly collect sensitive personal data unless it is voluntarily provided in an enquiry.

  1. How We Collect Your Data

We collect personal data when you:

  • Complete a contact form
  • Download a report or resource
  • Subscribe to our newsletter
  • Book a consultation
  • Communicate with us via email or phone
  • Browse our website (via cookies and analytics tools)
  1. Lawful Basis for Processing

Under UK GDPR, we rely on the following lawful bases:

Consent

Where you:

  • Download a free report
  • Subscribe to marketing communications
  • Opt in to receive updates

You may withdraw consent at any time by clicking the unsubscribe link in our emails or contacting us directly.

Legitimate Interests

We may process your data where necessary for:

  • Responding to enquiries
  • Improving our services
  • Analysing website performance
  • Maintaining business records

We ensure such processing does not override your rights and freedoms.

Contractual Necessity

Where processing is necessary to provide services you have requested.

Legal Obligation

To comply with tax, accounting, and regulatory requirements.

  1. How We Use Your Personal Data

We may use your personal data to:

  • Deliver requested reports and resources
  • Respond to enquiries
  • Provide consultancy, coaching and mentoring services
  • Send marketing communications (where consent has been given)
  • Manage client relationships
  • Process payments and maintain financial records
  • Improve website performance and user experience
  • Comply with legal obligations

We do not sell personal data to third parties.

  1. Third-Party Service Providers

We use trusted third-party providers to support our business operations. These providers process data on our behalf under contractual agreements.

These include:

  • Gravity Forms (WordPress plugin) – to collect data submitted via website forms
  • MailerLite – for email marketing, automation, and report delivery
  • Website hosting provider – to host and maintain the website
  • Google Analytics (GA4) – to analyse website traffic and usage

MailerLite and Google may process data outside the UK. Where international transfers occur, appropriate safeguards such as Standard Contractual Clauses are in place.

We ensure all providers comply with applicable data protection regulations.

  1. Email Marketing

If you download a report or subscribe to updates, your data will be processed by MailerLite for email communication purposes.

You can unsubscribe at any time by:

  • Clicking the unsubscribe link in any email
  • Contacting us directly

We retain marketing data until you unsubscribe or request deletion.

  1. Cookies

We use cookies and similar technologies to improve website performance and analyse usage.

Cookies may include:

  • Essential cookies (necessary for website functionality)
  • Analytics cookies (Google Analytics)
  • Performance and tracking cookies

We use a cookie consent mechanism in accordance with UK GDPR and the Privacy and Electronic Communications Regulations (PECR). You can manage or withdraw consent at any time via our cookie settings tool.

For more information, please see our Cookies policy

  1. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected.

  • Marketing data: retained until you unsubscribe or request deletion
  • Enquiry data: retained for up to 24 months
  • Client data: retained in accordance with legal and contractual requirements
  • Financial records: retained for at least 6 years (as required by UK law)
  1. Use of Artificial Intelligence (AI) Tools

We may use secure AI-assisted tools to support research, analysis, and service delivery.

This may include:

  • Transcribing and summarising Microsoft Teams meetings (with prior consent)
  • Analysing anonymised marketing or website analytics data
  • Supporting market research and strategic insight development

Where meetings are recorded, explicit consent will be obtained in advance. Recordings and transcripts are stored securely within Microsoft 365.

We do not upload identifiable client data to third-party AI platforms without prior consent.

Where anonymised or aggregated data is used for analytical purposes, no individual is identifiable.

AI tools are used to assist human professional judgement and do not replace decision-making.

We do not carry out automated decision-making that produces legal or similarly significant effects.

  1. Data Security

We implement appropriate technical and organisational measures to protect personal data, including:

  • Secure website hosting
  • SSL encryption
  • Password-protected systems
  • Limited access controls

While we take reasonable precautions, no internet transmission is completely secure.

  1. Your Data Protection Rights

Under UK GDPR, you have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request erasure of your data
  • Restrict processing in certain circumstances
  • Object to processing based on legitimate interests
  • Withdraw consent at any time
  • Request data portability
  • Lodge a complaint with the Information Commissioner’s Office (ICO)

We do not charge a fee for responding to requests unless they are manifestly unfounded or excessive.

To exercise your rights, contact:
nicki@straightupmarketing.co.uk

You also have the right to lodge a complaint with:

Information Commissioner’s Office (ICO)
https://ico.org.uk

  1. Third-Party Websites

Our website may contain links to other websites. We are not responsible for the privacy practices of third-party sites.

  1. Changes to This Policy

We may update this Privacy Policy from time to time. The latest version will always be available on this page with the updated revision date.

Contact