Legal
This policy explains what personal data Framework GTM collects, why we collect it, and what we do with it. We keep it short and plain. If anything here is unclear, email us at hi@frameworkgtm.com and we will explain.
Framework GTM ("we", "us") is the data controller for the personal data described below. You can reach us at hi@frameworkgtm.com.
We only collect what we need.
Information you give us. When you request a consultation or contact us, we collect your name, email address, and anything you choose to tell us, including how you heard about us. When you email us, we keep that correspondence.
Information we collect automatically. When you visit the site, our analytics collect standard usage data: pages viewed, approximate location, device and browser type, and how you arrived. This is tied to a cookie identifier, not to your name.
We do not collect special category data, and we do not knowingly collect data from anyone under 16.
| What we do | Lawful basis (GDPR Article 6) |
|---|---|
| Respond to your enquiry and prepare for a consultation | Steps taken at your request before entering a contract, and our legitimate interest in responding to you |
| Follow up about relevant services | Our legitimate interest in developing our business, balanced against your rights |
| Measure and improve how the site performs | Our legitimate interest in understanding our audience |
You can object to processing based on legitimate interest at any time. See "Your rights" below.
We use Google Analytics, loaded through Google Tag Manager, to understand how the site is used. It sets cookies that record an anonymous identifier and usage data so we can see which pages are useful and where visitors come from.
These are analytics cookies. They do not identify you by name and we do not use them for advertising.
You can control cookies through your browser settings, and you can opt out of Google Analytics across all sites using Google's browser add-on at tools.google.com/dlpage/gaoptout.
We do not sell your data. We share it only with the service providers that help us run the business, and only so they can perform their service for us:
Each of these acts as our processor under contract, and may process data outside the European Economic Area. Where that happens, the transfer is protected by appropriate safeguards such as the European Commission's standard contractual clauses or an adequacy decision.
We may also disclose data where the law requires it.
We keep enquiry and correspondence data for as long as we are in contact and for a reasonable period afterwards, in case you come back to us. We review what we hold periodically and delete what we no longer need. Analytics data is retained according to the standard retention settings in Google Analytics.
If you ask us to delete your data, we will, unless we are required to keep it.
Under the GDPR you have the right to:
To exercise any of these, email hi@frameworkgtm.com. We will respond within one month.
You also have the right to complain to your local data protection authority if you think we have handled your data badly. We would rather you came to us first so we can put it right.
We use reputable providers and limit access to your data to the people who need it. No method of transmission or storage is completely secure, but we take reasonable steps to protect what you share with us.
We may update this policy as the business changes. When we do, we will update the date at the top. If the change is significant, we will make that clear.
Questions about this policy, or about your data, go to hi@frameworkgtm.com.
