Privacy Policy

Last updated: 28 January 2026

1) Who we are

This website is operated by Tracey’s Small Business WebCare (“we”, “us”, “our”). We provide WordPress website care, hosting support, SEO support and one-off website fixes for small businesses across the UK.

Contact details

We are the data controller for the personal information described in this policy.

2) What information we collect

We may collect and process the following types of personal information:

Information you give us

  • Your name, email address, phone number
  • Your business name and website address
  • Any details you include in an enquiry (message content)
  • If you become a client: billing details (such as invoice name/address you provide), and any information you share to allow us to work on your site (for example, WordPress/admin access details that you choose to provide)

Information collected automatically when you use the website

  • Basic technical data such as IP address, device/browser information, and how you use our website (this is typically collected through server logs and security/spam-protection tools)

3) How we use your information (and our lawful bases)

We use your personal information for the purposes below:

A) To respond to enquiries and provide quotes

  • What we use: name, contact details, message content
  • Lawful basis: legitimate interests (running our business and responding to enquiries) and/or pre-contract steps (where you ask us to quote or provide information before you become a client)

B) To deliver services to clients (website builds, fixes, ongoing care, hosting/maintenance tasks, SEO support)

  • What we use: client contact details, service communications, website details, and any access details you provide
  • Lawful basis: contract (to deliver the service you’ve asked for)

C) Invoicing, payments and bookkeeping

  • What we use: invoice/contact details, payment references, transaction records
  • Lawful basis: legal obligation (tax/accounting) and contract

D) Keeping our website secure and preventing spam/fraud

  • What we use: technical data such as IP address, device/browser data, form submission data (including message metadata), and security logs
  • Lawful basis: legitimate interests (protecting our business and website users)

E) Marketing (only where appropriate)
We may contact you about our services if you’ve asked for information, requested a quote, become a client, or where you’ve opted in to receive updates.

  • Lawful basis: legitimate interests (for relevant service updates) and/or consent (where you opted in). You can opt out at any time.

4) Who we share your information with

We only share personal information when it’s necessary to run the website or deliver services.

Website and IT service providers (processors)
We use service providers who may process personal information on our behalf, such as:

  • Hosting provider (Hostinger) and related infrastructure/backups
  • WordPress/website plugins we use for security, spam prevention and forms (e.g., Wordfence, CleanTalk, WPForms, Redirection, SEOPress, LiteSpeed caching)

These providers may process technical information (like IP address and device data), and if you submit a form, some providers may process form data to detect spam.

Legal / regulatory
We may share information if required to comply with law, enforce our rights, or protect users.

5) International transfers

Some of our suppliers may process data outside the UK. Where this happens, we aim to ensure appropriate safeguards are in place (for example, contractual protections) to protect your information.

6) How long we keep your information

We keep personal information only as long as necessary for the purposes in this policy:

  • Enquiries: typically up to 12 months (so we can follow up and keep a record of what was discussed)
  • Client records / invoices: typically up to 6 years (for tax/accounting and business records)
  • Security/spam logs: kept for a limited period depending on the tool settings and what’s needed for security

7) Your data protection rights

You have rights under UK data protection law, including:

  • Access to your information
  • Correction of inaccurate information
  • Erasure (in some situations)
  • Restriction of processing (in some situations)
  • Data portability (in some situations)
  • Objection to processing based on legitimate interests
  • Withdraw consent (where consent is the basis)

To exercise any rights, contact us at traceyswebcare@gmail.com.

8) Cookies

Our website may use cookies and similar technologies for essential site functions, security, and performance. Some tools/plugins may set cookies to protect the website or help forms work properly.

You can usually control cookies through your browser settings. (If you add analytics/advertising tools in future, we’ll update this policy and any cookie controls accordingly.)

9) Security

We take reasonable technical and organisational measures to protect personal information. This includes using security and anti-spam tools, strong access controls, and regular updates/maintenance.

10) Links to other websites

Our website may contain links to third-party sites (for example, social platforms). We’re not responsible for the privacy practices of those sites, so please check their privacy information.

11) Changes to this policy

We may update this policy from time to time. The latest version will always be posted on this page with the updated date.

Scroll to Top