Privacy Policy

Effective date: 29th September 2025
Last updated: 29th September 2025

1. Introduction

Welcome to Echoes In Ink (“we”, “us”, “our”). This Privacy Policy explains how we collect, use, disclose, store, and protect personal data you provide when using this website (the “Site”). We take your privacy seriously and are committed to handling your information in compliance with the UK GDPR (the UK General Data Protection Regulation) and the Data Protection Act 2018.

By using this Site, you accept and consent to the practices described in this Policy.

2. Controller

We are the data controller for the personal data collected via this Site.
If you wish to contact us regarding privacy or your personal data, you can write to us at:
Name / Entity: Echoes In Ink
Address: 8 Hollinside, Barnard Castle, DL12 8QG
Email: jo@echoesinink.co.uk

3. What data we collect

We may collect personal data in the following ways:

a) Data you provide directly

  • When you contact us (e.g. via a contact or “feedback” form), we may collect your name, email address, and any message content you submit.
  • If you leave comments on blog posts / reviews, we may collect the name or pseudonym you supply, your email (if required), and the comment content.
  • If you subscribe to any newsletter or mailing list (if you choose to), we will collect your email address (and name if you choose to provide it).

b) Data collected automatically

  • We may collect technical or usage data such as IP address, browser type, device type, operating system, date/time stamps, pages visited, referrer URLs, and other analytics data.
  • We may use cookies or similar tracking technologies (see Section 6) to collect such information and to enhance user experience.

4. Purposes & legal bases for processing

We will only process your personal data when there is a lawful basis to do so. The legal bases we rely on include:

  • Consent: where you have given consent (e.g. sign up for a mailing list).
  • Legitimate interests: for purposes such as administering the Site, improving content, preventing abuse, or ensuring security, where those interests are not overridden by your privacy rights.
  • Performance of a contract / taking steps at your request: e.g. if we provide you with a service or fulfil a request.

We use personal data for the following purposes:

  • To respond to your inquiries or messages.
  • To publish, moderate, and manage comments or submissions.
  • To send newsletters or updates if you have opted in.
  • To carry out analytics and understand Site usage, to improve content and user experience.
  • To detect, prevent, or investigate security or abuse issues.

5. Sharing & disclosure

We do not sell your personal data. However, we may share your data in certain circumstances:

  • With third-party service providers who help us run the Site (e.g. web hosts, analytics providers, email service providers), subject to confidentiality.
  • If required by law, regulation, or legal process (e.g. a court order).
  • In connection with a merger, acquisition, or sale of assets (with appropriate data protections).

6. Cookies & tracking technologies

We use cookies and similar technologies to enhance your experience, analyse usage, and for technical operation. Cookies may be first-party (from our Site) or third-party (from service providers, e.g. analytics).

You can control and/or delete cookies via your browser settings. Be aware that disabling certain cookies may affect the functionality of the Site.

7. Data retention

We will only retain your personal data for as long as necessary to fulfil the purposes for which we collected it, or as required by law. Beyond that, data may be anonymised or deleted.

8. Your rights

Under UK data protection law, you have various rights in relation to your personal data, including:

  • The right to access (a copy of) the personal data we hold about you.
  • The right to request correction of inaccurate data.
  • The right to request deletion or erasure (the “right to be forgotten”) in certain circumstances.
  • The right to restrict or object to certain processing (e.g. direct marketing).
  • The right to data portability (to receive your data in a structured, machine-readable format).
  • The right to withdraw consent (where processing is based on consent).
  • The right to lodge a complaint with the Information Commissioner’s Office (ICO) if you believe your rights have been infringed.

To exercise any of these rights, please contact us via the details in Section 2.

9. Security

We implement appropriate technical and organisational measures to protect your personal data from unauthorised access, disclosure, alteration, or destruction. However, no system is entirely secure, so we cannot guarantee absolute security.

10. International transfers

If we transfer your personal data outside the UK (or European Economic Area), we will ensure that adequate safeguards are in place (for example, via standard contractual clauses or other approved mechanisms).

11. Links to other sites

This Site may contain links to external/third-party websites. This Privacy Policy does not apply to those websites. We encourage you to read the privacy notices of those external sites before providing your data.

12. Changes to this Privacy Policy

We reserve the right to update or revise this Policy at any time. Any changes will be effective immediately when posted, and we will update the “Last updated” date. Your continued use of the Site following the changes indicates your acceptance of them.