Privacy Policy

1. Who We Are

Branch Agency Ltd is a UK-based digital services company.

Company name

Branch Agency Ltd

Registered address

Branch Agency Ltd
Strawberry Fields Digital Hub
Euxton Lane
Chorley
England
PR7 1PS

Email

[email protected]

Location

United Kingdom

For the purposes of UK data protection law, Branch Agency Ltd is the “data controller” of your personal data.

2. What Personal Data We Collect

We may collect and process the following types of personal data:

• Contact details (such as name, email address, company name)
• Information submitted via contact forms or enquiries
• Information you provide during onboarding or questionnaires
• Booking and scheduling information where you use our meeting booking tools (such as preferred times and meeting notes)
• Usage data relating to how you interact with our website
• Technical information such as IP address, browser type, device information, and pages visited

We do not intentionally collect special category data (sometimes called “sensitive personal data”) unless it is
necessary and explicitly provided by you.

3. How We Use Your Information

We use your personal data for the following purposes:

• To respond to enquiries and requests
• To provide and manage our services
• To onboard clients and deliver contracted work
• To operate, maintain, and improve our website
• To understand website performance and user journeys (analytics)
• To communicate with you about updates or changes to our services
• To meet legal or regulatory obligations

We only process personal data where we have a lawful basis to do so.

4. Lawful Bases for Processing

Under UK GDPR, we rely on the following lawful bases when processing personal data:

• Contract: when processing is necessary to deliver our services or take steps at your request before entering a contract
• Legitimate interests: to operate, improve, and protect our business (balanced against your rights)
• Consent: where you have explicitly agreed to specific processing (for example, non-essential cookies/analytics where required)
• Legal obligation: where required by law

5. AI, Search & Automated Systems

Our websites and client websites may use AI-powered search and automation tools, including services provided by
HOLP.ai.

These tools may process website content and user queries to generate answers or surface relevant information.
AI responses are intended to be grounded in approved website content and are used to improve user experience.

We do not use AI systems to make automated decisions that produce legal or similarly significant effects
concerning individuals.

6. Analytics & Website Data (GA4)

We use Google Analytics 4 (“GA4”) to help us understand how visitors use our website and to improve performance,
content, and user journeys.

GA4 may collect information such as pages viewed, approximate location (derived from IP address), device and
browser information, and interactions with the site. GA4 may use cookies or similar technologies to measure and
report on usage.

Where required, we will ask for your consent before enabling analytics cookies/technologies. You can also
withdraw consent at any time through our cookie settings (where available) and via your browser controls.

Google acts as a data processor (or in some configurations, a separate controller) depending on how GA4 is
implemented. Analytics data may be processed outside the UK, including in the United States, and we rely on
appropriate safeguards for international transfers.

You can learn more about Google’s privacy practices here:
Google Privacy Policy.

7. Booking & Scheduling (Calendly)

If you book a meeting with us, we may use Calendly to schedule appointments. When you use Calendly, you may be
asked to provide personal data such as your name, email address, and meeting-related details (for example, your
preferred time, agenda, or notes you choose to share).

Calendly may set cookies or use similar technologies to provide scheduling functionality and to help prevent
fraud and abuse. Depending on your choices and device settings, some data may be processed outside the UK.
Where required, we rely on appropriate safeguards for international transfers.

You can learn more about Calendly’s privacy practices here:
Calendly Privacy Policy.

8. Cookies

Cookies are small text files stored on your device. We may use cookies and similar technologies to:

• Ensure the website functions correctly (essential cookies)
• Remember preferences and improve your experience (functional cookies)
• Measure and improve website performance (analytics cookies, including GA4 where enabled)

You can control or delete cookies through your browser settings. If you disable some cookies, parts of the
website may not function as intended.

9. Data Sharing & Third Parties

We do not sell your personal data.

We may share personal data with trusted third-party service providers where necessary to operate our services,
including:

• Hosting and infrastructure providers
• Email and communication tools
• Payment providers such as GoCardless
• Analytics providers such as Google Analytics 4 (Google)
• Scheduling providers such as Calendly
• AI and search providers such as HOLP.ai

We require third parties to handle personal data securely and in accordance with applicable data protection laws.

10. Data Storage & Security

We take appropriate technical and organisational measures to protect personal data against loss, misuse,
unauthorised access, alteration, or disclosure.

Data may be stored on secure servers within the UK or the European Economic Area (EEA). Where data is transferred
outside the UK or EEA, appropriate safeguards are applied (for example, contractual protections).

11. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected,
including legal, accounting, or reporting requirements.

12. Your Rights

Under UK data protection law, you have the right to:

• Access your personal data
• Request correction of inaccurate data
• Request erasure of your data
• Restrict or object to processing
• Request data portability
• Withdraw consent where processing is based on consent

To exercise your rights, please contact us using the details in the “Contact Us” section below.

13. Complaints

If you believe we have not handled your data properly, you have the right to lodge a complaint with the
Information Commissioner’s Office (ICO):

https://ico.org.uk

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be published on this page with an updated
revision date.