Privacy Policy
This Privacy Policy explains how elartee ("elartee", "I", "me", or "my") collects, stores, uses, and manages personal data when you visit elartee.com, contact me, or when I provide digital marketing services that involve connected advertising and analytics platforms. I am committed to handling your data transparently and in line with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
1. Who I am
elartee is a sole-trader digital marketing consultancy operated by Luke Thomas, based in the United Kingdom. For any privacy question, or to exercise your rights under data protection law, contact me at hello@elartee.com. elartee is the data controller for personal data collected through this website.
2. What data I collect
- Information you give me directly — such as your name, email address, company, and the contents of any message you send via the contact form or by email.
- Usage and device data — collected automatically when you visit the site, such as IP address, browser type, pages viewed, and referring source. This is gathered through cookies and analytics tools (see Section 6).
- Client account data — where you engage me for services, I may access data within your own advertising, analytics, and search platforms (for example Google Ads, Google Analytics, and Google Search Console) on your behalf and with your authorisation.
3. How I use your data
- To respond to enquiries and provide the services you have requested.
- To manage and improve client advertising and marketing campaigns.
- To understand how the website is used and improve its content.
- To meet legal, accounting, and regulatory obligations.
4. Legal bases for processing
I rely on the following lawful bases under UK GDPR: consent (for example, optional analytics cookies and marketing contact), performance of a contract (delivering services you have engaged me for), legitimate interests (running and securing the website and responding to enquiries), and legal obligation (record-keeping and tax).
5. Google Ads API and Google user data
elartee uses the Google Ads API to access advertising account data for reporting and analysis. Where I access a Google Ads account through the API:
- Access is granted only with the explicit authorisation of the account owner, through Google's own OAuth sign-in.
- The connection is read-only and is used solely to retrieve campaign, performance, and account information for reporting and optimisation purposes.
- Data retrieved from the Google Ads API is processed locally and is not sold, rented, or shared with any third party, and is not used for advertising, profiling, or any purpose unrelated to the service requested.
- Access can be revoked at any time by the account owner via their Google Account permissions, or by contacting me.
elartee's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including its Limited Use requirements.
6. Cookies and analytics
This website uses cookies and similar technologies to make the site work and to understand how it is used. I use Google Analytics 4 (GA4) to measure traffic and understand how visitors interact with the site; GA4 sets cookies that collect usage and device data as described in Section 2. Analytics cookies are only set where applicable consent is given. You can control or delete cookies through your browser settings, and you can opt out of Google Analytics using Google's browser opt-out add-on.
7. How long I keep data
I keep personal data only for as long as needed for the purpose it was collected, or to meet legal and accounting requirements. Enquiry and client records are typically retained for up to six years for tax and contractual purposes, after which they are deleted or anonymised.
8. Sharing your data
I do not sell your personal data. I may share data with trusted service providers who help operate my business — for example website hosting, email, and analytics providers — who process data on my behalf under appropriate agreements. I may also disclose data where required by law.
9. International transfers
Some providers (such as Google) may process data outside the UK. Where this happens, I rely on appropriate safeguards such as UK adequacy regulations or Standard Contractual Clauses to protect your data.
10. How I store and protect data
Personal data is stored on reputable, access-controlled services and is protected with appropriate technical and organisational measures, including encrypted connections and restricted access. Credentials used to access third-party platforms are stored securely and are not shared.
11. Your rights
Under UK GDPR you have the right to access your data, request correction or deletion, object to or restrict processing, withdraw consent, and request data portability. To exercise any of these, email hello@elartee.com. You also have the right to complain to the UK Information Commissioner's Office (ICO) at ico.org.uk.
12. Changes to this policy
I may update this policy from time to time. The "Last updated" date at the top shows when it was last revised.
Questions about this policy? Email hello@elartee.com.