Privacy Policy

Riden Technologies (“we”, “us”, “our”) is a digital agency and software company based in London, UK. We provide website design and build services, CRM platforms, marketing automation tools, and lead generation services to small and medium-sized businesses.

For the purposes of UK data protection law (UK GDPR and the Data Protection Act 2018), Riden Technologies is the data controller of personal information collected through this website and our platforms.

Contact us at: inquiries@ridentechnologies.com

We collect the following categories of personal data:

• Identity data: First name, last name, business name.
• Contact data: Email address, phone number, town/city.
• Business data: Industry, current website, services offered, target customers, social media handles.
• Technical data: IP address, browser type and version, time zone, browser plug-in types, operating system and platform, and other technology on the devices you use to access our website.
• Usage data: Information about how you use our website and services.
• Marketing preferences: Your preferences in receiving marketing communications from us.
• Financial data: Payment method details (processed securely by third-party payment processors — we do not store card numbers).

We do not collect any special category personal data (such as data about race, religion, health, or sexual orientation).

We collect data through:

• Direct interactions: When you fill in our contact form, project brief form, or client onboarding form; when you email or call us; when you sign up to our platform.
• Automated technologies: As you interact with our website, we may automatically collect technical data about your equipment and browsing actions using cookies and similar technologies.
• Third parties: We may receive data from analytics providers such as Vercel Analytics, payment processors, and publicly available sources where we legitimately prospect potential clients.

We use your personal data for the following purposes:

• To respond to your enquiry and provide the services you have requested.
• To onboard you as a client and manage our business relationship with you.
• To process payments and manage billing.
• To send service-related communications (e.g. project updates, invoices).
• To send marketing communications where you have consented or where we have a legitimate interest.
• To improve our website and services through analytics.
• To comply with our legal obligations.
• To defend or exercise our legal rights.

Our lawful bases for processing under UK GDPR are: contract (to perform services you have engaged us for), legitimate interests (e.g. direct marketing to prospective clients, improving our services), consent (e.g. cookies and email marketing), and legal obligation (e.g. accounting and fraud prevention).

We do not sell your personal data to anyone. We may share your data with:

• Service providers who assist us in running our business (e.g. cloud hosting on Vercel/Neon, payment processors, email providers). These parties process data only on our instructions and are bound by data processing agreements.
• Professional advisers including lawyers, accountants, and insurers, under duty of confidentiality.
• Regulators and authorities where required by law.

Where any provider is located outside the UK, we ensure appropriate safeguards are in place (such as UK adequacy decisions or standard contractual clauses).

We retain personal data only for as long as necessary for the purposes set out in this policy:

• Client records are retained for 7 years after the end of the contract (for HMRC/legal purposes).
• Enquiry data where no contract is formed is deleted after 12 months.
• Marketing contact data is retained until you unsubscribe or object.
• Website usage/analytics data is retained for up to 26 months.

Under UK GDPR, you have the following rights:

• Access: Request a copy of the personal data we hold about you.
• Rectification: Request correction of inaccurate or incomplete data.
• Erasure: Request deletion of your data in certain circumstances.
• Restriction: Request we restrict processing of your data in certain circumstances.
• Portability: Request transfer of your data to you or a third party in a structured, machine-readable format.
• Objection: Object to processing based on legitimate interests or for direct marketing.
• Withdraw consent: Where we rely on consent, you may withdraw it at any time.

To exercise any of these rights, contact us at inquiries@ridentechnologies.com. We will respond within 30 days. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These include encrypted data transmission (HTTPS/TLS), access controls, and regular security reviews. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

We use cookies and similar tracking technologies on our website. For full details of the cookies we use and how to manage them, please see our Cookie Policy.

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a revised “last updated” date. We encourage you to review this policy periodically.

For any privacy-related queries or to exercise your rights, contact us:

• Email: inquiries@ridentechnologies.com
• Address: Riden Technologies, London, UK