Privacy Policy

Last updated: 23 February 2026

1) Who we are

“All Timed Out” (“we”, “us”) provides WordPress website and enquiry-funnel services for local service businesses in the UK.

Data controller: Nathan Prince trading as All Timed Out
Email: nathan@alltimedout.com

If you contact us through our website forms, we will use your information as described in this policy.

2) What this policy covers

This Privacy Policy explains how we collect, use, store, and share personal information when you:

  • visit our website,
  • request a free audit,
  • contact us about services,
  • become a client, or
  • communicate with us (email/phone/message).

It does not cover third-party websites you may visit via links from our site.

3) The information we collect

A) Information you give us

Depending on what you submit, we may collect:

  • Identity & contact details: name, email address, phone number.
  • Business details: business type, services offered, service area, and your website URL.
  • Enquiry information: what you need help with and any details you provide in messages.
  • Client project information: content you send us (text, images), and (if you choose to share them) website/admin credentials or access details needed to do the work.
  • Billing information: invoices, payment status, and transaction references (note: we do not normally receive or store full card details).

B) Information we collect automatically

When you browse the site, we (and our website platform) may collect:

  • Technical data: IP address, device/browser type, operating system, pages viewed, referral source, and approximate location (derived from IP).
  • Cookies and similar technologies: see section 9.

4) How we use your information

We use your information to:

  • respond to enquiries and provide the free audit you requested,
  • deliver services (building/updating your site and funnel),
  • administer billing and payments (invoicing, payment links, accounting records),
  • improve our site (understanding what content is useful and what needs fixing),
  • keep things secure (prevent fraud/spam and protect the website).

“No salesy follow-up”

If you request a free audit or make an enquiry, we’ll use your contact details to deliver it and to reply about your request. We won’t add you to a marketing list unless you clearly opt in.

5) Lawful bases (UK GDPR)

We rely on these lawful bases under UK GDPR:

  • Contract (or steps to enter a contract): to quote, onboard, and deliver services.
  • Legitimate interests: to run and improve our business, keep the site secure, and respond efficiently.
  • Consent: where required (for example, some cookies/marketing).
  • Legal obligation: for record-keeping (e.g., tax/accounting).

6) Who we share information with

We only share personal data where necessary, including with:

  • Website hosting/platform providers that run and secure the site (including form handling).
  • Email/communications tools used to respond to enquiries and manage client comms.
  • Payment processors used for payment links (they process payment details; we typically receive confirmation and transaction references).
  • Professional advisers (accountants/solicitors) where needed.
  • Subcontractors (only if required for delivery, and only under confidentiality).

We do not sell your personal data.

7) International transfers

Some suppliers may process data outside the UK. Where this happens, we rely on appropriate safeguards (such as adequacy regulations or standard contractual clauses) as required by UK GDPR.

8) How long we keep information

We keep information only as long as needed:

  • Enquiry/audit requests: typically up to 12 months (to reference your request and any follow-up you ask for).
  • Client records and invoices: typically 6 years (for tax/accounting and legal reasons).
  • Technical logs: typically short periods needed for security and diagnostics.

9) Cookies

Our website may use cookies and similar technologies for:

  • site functionality,
  • security and spam prevention,
  • basic measurement of site usage.

You can control cookies through your browser settings. If you disable cookies, parts of the site may not function as intended.

10) Your rights

You may have the right to:

  • access your data,
  • correct inaccurate data,
  • request deletion,
  • restrict or object to processing,
  • request data portability (where applicable),
  • withdraw consent (where processing is based on consent).

To exercise rights, contact us using the details above.

You also have the right to complain to the Information Commissioner’s Office (ICO).

11) Security

We take reasonable steps to protect your data, but no website can be guaranteed 100% secure. Please avoid sending sensitive information through website forms.

12) Changes to this policy

We may update this policy from time to time. The “Last updated” date will change accordingly.