We ask that you read this privacy notice carefully as it contains important information on who we are, how and why we collect, store, use and share personal information, your rights in relation to your personal information and on how to contact us and lead authorities in the event you have a complaint.
This notice was last updated on Friday December 3rd, 2021, and complies to the UK GDPR (2021), underpinned by the Data Protection Act (2018), additional relevant data protection legislation and is regulated by the UK Information Commissioners Office (ICO).
Our scope is any data subject, whose personal data is collected, in line with the requirements of UK GDPR (2021), the Data Protection Act (2018), and other relevant UK data protection legislation.
The UK GDPR (2021) has a particular material scope covering personal data that is processed electronically and personal data that is part of a filing system or intended to be part of a filing system (i.e., any personal data that may be uploaded to a computer/electronic device or stored in a structured paper filing system).
Twentytwo Digital Limited adheres to the territorial scope of UK GDPR (2021). The regulation applies to all controllers and processors based in the UK, regardless of where the processing takes place.
Twentytwo Digital Limited will adhere to the UK GDPR (2021) data processing principles when handling personal data.
Further details are provided by the ICO with regards to these data processing principles.
Twentytwo Digital Limited has further responsibilities with regards to controlling and processing personal data, which fall under the responsibility of the data protection lead or nominated data protection officer (DPO). Responsibilities include being a well-resourced, point of contact, with expertise in data protection legislation.
All associates and employees of Twentytwo Digital Limited who interact with data subjects are responsible for ensuring that this privacy notice is drawn to the data subject’s attention.
Twentytwo Digital Limited are a close-knit team of designers, developers & creative thinkers. Our mission is to build a vibrant, creative, collaborative, engaging and fun culture which enables us to maximise creativity and produce great work for our clients. Whether you’re looking to build brand awareness, explore a new marketing approach, or review
your online & digital presence, we can help you grow your business with our expertise, experience, and insight into industry trends and web technologies.
Twentytwo Digital Limited is a private limited company, in England and Wales, under company registration number 09335989. Twentytwo Digital Limited is registered with the ICO under registration number ZB130607.
Twentytwo Digital Limited collects, controls and processes certain personal information about you, when we do so we are regulated under the UK General Data Protection Regulation, which is underpinned by the Data Protection Act (2018) and other UK data privacy legislation.
We are responsible as the data controller & data processor for all personal information collected, controlled, and processed under those laws and regulations. The data protection lead is Jason Nye of BW Twentytwo Digital Limited.
Twentytwo Digital Limited can be contacted via email studio@twentytwo.digital or via phone on 02476 952201.
The provision of certain personal data including (but not limited to) contact name, email address & telephone number is required from you. This enables Twentytwo Digital Limited to identify you and provide creative design and digital agency services to you.
It may also be a legal requirement to obtain proof of identity from time to time. If this is required, we will explain why, what identification is required, how long the personal data will be kept on file and the necessity for the processing.
We will inform you at the point of collecting information from you, whether you are required to provide this and any other additional information to us.
The lawful bases for processing are set out in Article 6 of the UK GDPR (2021). At least one of these must apply whenever Twentytwo Digital Limited processes your personal data:
You can find more about the UK GDPR lawful bases here or by visiting www.ico.org.uk
The personal data you have provided, or we have collected from you, includes but is not limited or restricted to:
Twentytwo Digital Limited uses your personal information:
Where relevant, given the nature of the creative design and digital agency services provided to you by Twentytwo Digital Limited, we may also share your personal data with the following categories of third parties:
We would always inform you ahead of acting on any instructions to proceed with any of our creative design and digital agency services, should this be the case.
This data sharing enables Twentytwo Digital Limited to supply the above creative design and digital agency services to you in a professional and timely manner, whilst undertaking quality control & regulatory compliance procedures.
Furthermore, it ensures compliance with all necessary UK GDPR (2021), Data Protection Act (2018) and other UK data protection legislation lawful requirements. Twentytwo Digital Limited will share personal information with law enforcement or other authorities if required by law.
Twentytwo Digital Limited does not control, process, or transfer personal data outside of the UK.
Should this situation change, Twentytwo Digital Limited would issue a company update via our official communication channels to all affected parties. If the international data transfer would fall within the European Union/EEA, data would be able to flow freely under the ‘Adequacy Decision’ agreed between the UK and European Parliament on June 27th , 2021. If the international data transfer is outside the EU/EEA/UK then appropriate safeguards would be put in place, such as Data Protection Impact Assessments (DPIAs).
This Privacy Notice would also be updated.
Further information on International Data Transfers is provided by the
Information Commissioners Office (ICO).
We have appropriate security measures in place to prevent personal information from being accidentally lost or used or accessed in an unauthorised way. We limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.
We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable lead authority and/or regulator (e.g., ICO) of a suspected data security breach where we are legally required to do so. We also carry out an annual online security audit with a certified external trusted partner, to ensure all Twentytwo Digital Limited processes and systems comply with the latest data protection legislation.
If you want detailed information from, Get Safe Online on how to protect your information and your computers and devices against fraud, identity theft, viruses, and many other online problems, please visit www.getsafeonline.org. Get Safe Online is supported by HM Government and leading businesses.
We use cookies to collect, store and share bits of information about your activities when you use our website.
Cookies do different things, like letting you navigate between pages quickly and generally improving your experience of our website. If our website did not use cookies, it will think you are a new visitor every time you move to a new page on the website.
Twentytwo Digital Limited only uses ‘non-personal data’ essential cookies on our website, to track the performance of the website via Google Analytics. This tracking helps us to understand how to improve the website content for the benefit of all users. If you want to block cookies, then you can do this through your browser via the help function. The ICO also offers further guidance on cookies and similar technologies.
Under the UK GDPR you have several important rights as a data subject. At any point while we are in possession of or processing your personal data, you, the data subject (living person), have the following rights:
For further information on each of these rights, including the circumstances in which they apply, see the guidance from the Information Commissioner’s Office (ICO) on individuals rights under the UK General Data Protection Regulation.
If you would like to exercise any of these rights, please:
This privacy notice was last reviewed and published on Friday December 3rd, 2021. We may change this privacy notice from time to time, when we do, we will inform you via our company communication channels and company website.
Twentytwo Digital Limited is a private limited company, in England and Wales, under company registration number 09335989. Twentytwo Digital Limited is registered with the ICO under registration number ZB130607.
We hope that we can resolve any query or concern you raise about our use of your personal data. Should we not able to do so, the UK General Data Protection Regulation gives you right, to lodge a complaint with the
lead authority.
The lead authority in the UK is the Information Commissioners Office (ICO) who may be contacted here or by telephone on 0303 123 1113.
Please contact us if you have any questions about this privacy notice or the information, we hold about you. The data protection lead is Jason Nye.
Twentytwo Digital Limited can be contacted via email studio@twentytwo.digital or via phone on 02476 952201.