Privacy Policy

Last updated: 30th June 2025

Trust and Privacy

Trust and privacy are critical to the success of the Internet. Effective, efficient, and appropriate use of technology is critical to that success. At Butterfly Data, we therefore believe that data collected, used, and transferred appropriately is to everyone’s advantage, provided it is handled in a fair and responsible manner.

Introduction

Data protection is a key concern for Butterfly Data. Hence, transparency regarding the way we process the personal data we collect is a commitment for us. The information provided below intends to provide you all relevant information in relation to the collection and processing of information which may be collected through this website www.butterflydata.co.uk (hereinafter, “the website”).

Butterfly Data (hereinafter, “we”, “us”, “our” or “Butterfly Data”) may collect and process personal data relating to you when you visit this website.

Business Information

Company Name: Butterfly Projects Ltd t/a Butterfly Data
Registered Number: 04952566  
Registered Office Address: 253 Cowbridge Road West, Cardiff, CF5 5TD
Contact Details: [email protected]  
VAT Number: GB850 9864 89

Processing of Your Personal Data

Generally, you can visit our website without providing any personal data. However, to access some parts of our website and/or request specific information or services, we may need to collect personal data from you. This data is processed for the following purposes:

Contractual or Pre-Contractual Obligations:

  • Answering any requests, queries, or inquiries you submit through our website.
  • Enabling access to restricted parts of our website.
  • Managing your participation in online content.

Legitimate Interests:

  • Maintaining, improving, and securing the website.
  • Conducting customer satisfaction surveys.
  • Managing forums and community participation.
  • Recruitment when you submit a resume or job application.
  • Compiling anonymised, aggregate statistics for website analytics.

Compliance with Legal Obligations:

  • Meeting legal or regulatory requirements, including data retention obligations.
  • Responding to valid legal requests from public authorities.

Consent-Based Activities:

  • Sending you marketing communications and personalised offers, where you have provided explicit consent.
  • Using cookies and similar technologies as described in the Cookies section.

How Long Do We Keep Your Data?

  • Clients: Up to 7 years after the business relationship ends.
  • Prospects: Up to 3.5 years after the last interaction.
  • Candidates: Data deleted no later than 2 years after submission if not hired.
  • Website logs (for security/maintenance): Retained up to 1 year.
  • Marketing Data: Where consent is given for marketing, personal data will be retained until you withdraw your consent or until 2 years of inactivity, whichever is sooner.

Sharing of Your Personal Data

1. Third-party Suppliers

We use trusted partners and service providers for IT hosting, analytics, customer relationship management, and recruitment support. We ensure they uphold adequate protections through contractual safeguards, such as UK IDTA or EU Standard Contractual Clauses when data is transferred outside the UK or EEA.

2. Legal Disclosures

We may disclose data in response to legal processes, law enforcement requests, or to protect rights, users, or systems.

3. Business Reorganisations

Your data may be shared or transferred in the context of a business merger, sale, or acquisition. Confidentiality agreements will be put in place where required.

Your Rights

You have the right to:

  • Access your personal data.
  • Request correction, deletion, or limitation of processing.
  • Object to processing based on legitimate interests or for marketing purposes.
  • Request data portability in a structured format.


You also have the right not to be subject to automated decision-making or profiling unless necessary for a contract, authorised by law, or based on your explicit consent.

To exercise your rights, contact us at [email protected]. You may also lodge a complaint with the UK Information Commissioner's Office (ICO).

Data Security and Integrity

We use appropriate technical and organisational measures to protect your data. However, given the nature of the Internet, absolute security cannot be guaranteed for transmissions.

Children's Privacy

This website is not intended for children under the age of 16. We do not knowingly collect personal data from minors. If you believe we have collected data from a minor, please contact us immediately.

Data Breaches

In the event of a personal data breach, we will notify the ICO within 72 hours and affected individuals without undue delay, if there is a high risk to their rights and freedoms.

Third-party Websites

We may link to third-party websites. We are not responsible for their privacy practices. You should consult their privacy policies before providing any personal data.

Notification of Changes

This Privacy Policy may be updated from time to time. We will post any material changes on our website home page or notify you by email if appropriate.

Cookies

Cookies are used on this website. By using our website, you agree to the use of cookies as further explained below.

Cookies are small pieces of data sent to your browser while you navigate the site. They improve functionality and experience and can be session or persistent cookies.

Cookies used include:

1. Strictly Necessary Cookies

These cookies are essential for the website to function. They allow you to navigate our site and use its features (e.g., accessing secure areas). These cookies do not require consent.

Examples:

  • Authentication cookies
  • Load balancing cookies

2. Performance and Analytics Cookies

These cookies collect anonymised data on how visitors use the website. They help us improve site performance, understand which pages are popular, and identify errors.

Examples:

  • Google Analytics cookies (_ga, _gid)
  • Hotjar  

3. Functionality Cookies

These cookies allow our website to remember your choices (e.g., language settings) and offer enhanced features.

4. Targeting/Marketing Cookies

These cookies track your browsing habits to display ads and content relevant to your interests. They may be set by third-party services embedded on our website.

Examples:

  • LinkedIn Insight Tag
  • Facebook Pixel
  • Google Ads

5. Third-Party Cookies

Some cookies on our site are set by third-party services, such as:

  • Embedded videos (e.g., YouTube, Vimeo)
  • Social media plug-ins (e.g., LinkedIn, Twitter)
  • Analytics and performance tools

We have no direct control over these cookies. Please refer to the privacy policies of the relevant third-party providers.

Managing Your Cookie Preferences

When you first visit our website, you will see a cookie banner requesting your consent to non-essential cookies.  

You can manage cookie preferences using our cookie banner or by adjusting your browser settings. Non-essential cookies will only be placed with your consent. You can withdraw consent at any time.

Retention Period

Cookies used on this website are stored for a maximum period of 18 months, unless you delete them earlier via browser settings.

Legal Basis for Use of Cookies

  • Strictly necessary cookies: Legitimate interest (no consent required)
  • All other cookies: Consent (under UK GDPR and PECR)

How to Contact Us

To access or update your data, or for privacy concerns, please contact:
Data Protection Officer [email protected]  

We aim to respond to access requests within 30 days and may require ID verification.

Privacy Compliance

We comply with:

  • UK GDPR (Data Protection Act 2018)
  • Privacy and Electronic Communications Regulations (PECR)

Our ICO registration number: ZA713534

If you're not satisfied with our response, contact the Information Commissioner’s Office at ico.org.uk.