Privacy Policy

This policy explains how we handle personal data when you use our website or enquire about our services. It is written for transparency and to support your rights under UK data protection law. It does not replace legal advice for your own organisation.

1. Who we are

UX UI MATE ("we", "us", "our") is a digital studio providing UX design, UI design, branding, and web-related services. For the purposes of UK GDPR, we are the data controller for personal data processed through this website and our usual business contact channels, unless we agree otherwise in writing for a specific engagement.

You can contact us about privacy at hello@uxuimate.com or via our contact page.

2. What data we collect

Depending on how you interact with us, we may process:

• Website and technical data: IP address, browser type, device type, approximate location derived from IP, pages viewed, timestamps, and analytics identifiers/events where analytics is enabled (for example Google Analytics cookies such as _ga).
• Contact and enquiry data: name, email address, phone number if you provide it, company name, project details, budget indications, and any other information you include in a form, email, or call booking.
• Client and project data: if you become a client, we may process business contact details, billing information, correspondence, and materials you share for the purpose of delivering the agreed work.
• Cookie and similar technologies: including cookie-consent choices and analytics preferences described in our Cookie Policy.

3. How we use your data

We use personal data to:

• Respond to enquiries and provide quotes or proposals;
• Deliver, invoice, and manage contracts and projects;
• Operate, secure, and improve our website;
• Measure website usage with Google Analytics where consent has been provided (including implied consent through continued browsing after the cookie banner);
• Comply with legal obligations and defend legal claims where necessary;
• Send essential service messages (for example about your project or account). We do not rely on this policy to send unrelated marketing without a separate lawful basis and opt-in where required.

4. Lawful bases

Under UK GDPR we rely on one or more of the following, depending on the activity:

• Legitimate interests in operating a professional studio, responding to enquiries, securing our website, and developing our business, balanced against your rights;
• Contract where processing is necessary to enter into or perform a contract with you;
• Legal obligation where the law requires us to process data;
• Consent where we ask for it separately (for example analytics cookies via our cookie banner, including continued browsing where disclosed on the banner, or optional marketing if offered).

5. How long we keep data

We keep enquiry and client data only as long as needed for the purposes above, including any statutory retention periods for tax or accounting records. Technical logs are typically kept for a limited period unless needed for security investigations. When data is no longer required, we delete or anonymise it where feasible.

6. Sharing and processors

We do not sell your personal data. We may share data with:

• Service providers who assist us (for example hosting, email, scheduling, or file transfer), under contract and only on our instructions;
• Professional advisers where required (for example accountants or lawyers);
• Authorities when we are legally required to disclose information.

Some providers may process data outside the UK. Where we transfer personal data to countries not covered by UK adequacy regulations, we use appropriate safeguards such as the UK International Data Transfer Agreement or Addendum, or equivalent measures, where required.

7. Your rights

If UK GDPR applies to our processing of your personal data, you may have the right to:

• Access a copy of your data;
• Rectify inaccurate data;
• Request erasure in certain circumstances;
• Restrict processing in certain circumstances;
• Object to processing based on legitimate interests;
• Data portability where processing is based on consent or contract and is automated;
• Lodge a complaint with the Information Commissioner's Office (ICO) in the UK.

To exercise these rights, contact us at hello@uxuimate.com. We may need to verify your identity before responding.

8. Security

We use reasonable technical and organisational measures to protect personal data against unauthorised access, loss, or alteration. No method of transmission over the internet is completely secure; we encourage you to use strong passwords and secure channels when sending sensitive information.

9. Children

Our services are aimed at businesses and adults. We do not knowingly collect personal data from children under 16. If you believe we have collected such data, please contact us and we will take steps to delete it.

10. Changes

We may update this policy from time to time. The "Last updated" date at the top will change when we do. Material changes may be highlighted on our website or communicated where appropriate.