Instagram Linkedin-in
Instagram Linkedin-in

Privacy policy

Last Updated: October 2025

RMD TRADING LIMITED (“we”, “us”, “our”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and share your personal information when you visit our website or use our services.

This policy applies to all visitors to our website and clients who engage our services for web design and development, brand design, logo design, graphic design, web hosting, print design, and large format printing.

1. WHO WE ARE

RMD TRADING LIMITED is a company registered in England and Wales.

We are the data controller responsible for your personal information. This means we decide how and why your personal data is processed.

Contact Details:
Company Name: RMD TRADING LIMITED
Email: [Insert your email address]
Address: [Insert your registered office address]
Telephone: [Insert your telephone number]

If you have any questions about this Privacy Policy or how we handle your personal data, please contact us using the details above.

2. WHAT PERSONAL INFORMATION WE COLLECT

We may collect, use, store, and transfer different kinds of personal information about you, which we have grouped together as follows:

2.1 IDENTITY DATA
– First name and last name
– Username or similar identifier
– Title
– Business name and trading name

2.2 CONTACT DATA
– Billing address
– Delivery address
– Email address
– Telephone numbers

2.3 FINANCIAL DATA
– Bank account details (for payment processing)
– Payment card details (processed securely by our payment providers)
– Invoice and payment history

2.4 TRANSACTION DATA
– Details about payments to and from you
– Details of services you have purchased from us
– Project specifications and requirements

2.5 TECHNICAL DATA
– Internet protocol (IP) address
– Browser type and version
– Time zone setting and location
– Browser plug-in types and versions
– Operating system and platform
– Other technology on the devices you use to access our website

2.6 USAGE DATA
– Information about how you use our website and services
– Pages visited and time spent on pages
– Links clicked

2.7 MARKETING AND COMMUNICATIONS DATA
– Your preferences in receiving marketing from us
– Your communication preferences

2.8 PROJECT DATA
– Content you provide for projects (text, images, logos, brand materials)
– Feedback and approval communications
– Files uploaded to our systems

3. HOW WE COLLECT YOUR PERSONAL INFORMATION

We use different methods to collect data from and about you including:

3.1 DIRECT INTERACTIONS
You may give us your Identity, Contact, Financial, Transaction, and Project Data by:
– Filling in forms on our website
– Corresponding with us by email, phone, post, or through our website
– Requesting a quotation or proposal
– Entering into a contract for our services
– Providing materials and content for projects
– Making payments for our services

3.2 AUTOMATED TECHNOLOGIES OR INTERACTIONS
As you interact with our website, we may automatically collect Technical Data and Usage Data about your equipment, browsing actions, and patterns. We collect this data by using cookies and other similar technologies.

3.3 THIRD PARTIES OR PUBLICLY AVAILABLE SOURCES
We may receive personal data about you from various third parties, including:
– Technical Data from analytics providers such as Google Analytics
– Contact and Financial Data from payment providers
– Identity and Contact Data from publicly available sources

4. HOW WE USE YOUR PERSONAL INFORMATION

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

4.1 LEGAL BASIS FOR PROCESSING
Under the UK General Data Protection Regulation (UK GDPR), we rely on the following legal bases to process your personal information:

(a) CONTRACT PERFORMANCE: Where processing is necessary for the performance of a contract to which you are a party or to take steps at your request before entering into a contract. This includes:
– Processing your orders and delivering our services
– Managing payments, fees, and charges
– Collecting and recovering money owed to us
– Communicating with you about projects and services

(b) LEGITIMATE INTERESTS: Where processing is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests. This includes:
– Improving our website and services
– Marketing our services to existing clients
– Network and information security
– Fraud prevention
– Business administration and efficiency
– Displaying your work in our portfolio (unless you opt out)

(c) CONSENT: Where you have given us explicit consent to process your personal data for a specific purpose, such as:
– Sending you marketing communications about similar services
– Using testimonials or case studies featuring your project
– Subscribing to our newsletter or updates

You have the right to withdraw consent at any time by contacting us.

(d) LEGAL OBLIGATION: Where we need to comply with a legal obligation, such as:
– Keeping records for tax and accounting purposes
– Responding to requests from law enforcement or regulatory authorities

4.2 PURPOSES FOR WHICH WE USE YOUR PERSONAL DATA

We have set out below a description of the ways we plan to use your personal data:

– To register you as a new client
– To process and deliver your order, including managing payments and collecting money owed
– To manage our relationship with you, including notifying you about changes to our terms or privacy policy
– To provide customer support and respond to your inquiries
– To improve our website, services, marketing, and client relationships
– To deliver relevant website content and marketing communications to you
– To use data analytics to improve our website, services, and client experience
– To protect our business and your account from fraud and other illegal activities
– To display completed projects in our portfolio (with your permission or anonymously)
– To comply with legal and regulatory obligations

5. WHO WE SHARE YOUR PERSONAL INFORMATION WITH

We may share your personal data with third parties in the following circumstances:

5.1 SERVICE PROVIDERS
We may share your information with trusted third-party service providers who perform services on our behalf, including:
– Payment processing providers (e.g., Stripe, PayPal)
– Web hosting providers
– Email service providers
– Cloud storage providers
– Analytics providers (e.g., Google Analytics)
– Accounting and bookkeeping services
– Print suppliers and large format printing facilities

These service providers are bound by confidentiality agreements and are only permitted to use your data for the specific purposes we have instructed.

5.2 PROFESSIONAL ADVISERS
We may share your data with lawyers, accountants, auditors, insurers, and other professional advisers who provide consultancy, banking, legal, insurance, and accounting services.

5.3 REGULATORY AND LAW ENFORCEMENT
We may share your data with regulatory bodies, law enforcement agencies, courts, and other public authorities where we are required to do so by law or to protect our legal rights.

5.4 BUSINESS TRANSFERS
If we sell or merge our business, we may disclose your personal data to the prospective buyer or merger partner, subject to appropriate confidentiality agreements.

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

6. INTERNATIONAL TRANSFERS

Some of our service providers may be based outside the United Kingdom. Where we transfer your personal data outside the UK, we ensure that appropriate safeguards are in place to protect your data in accordance with UK data protection law.

These safeguards may include:
– Transferring data to countries that have been deemed to provide an adequate level of protection
– Using specific contracts approved by the UK government (Standard Contractual Clauses)
– Ensuring the recipient is part of a framework providing appropriate safeguards

7. DATA SECURITY

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, accessed, altered, or disclosed in an unauthorised way.

Security measures include:
– Secure servers and encrypted data transmission (SSL/TLS)
– Password protection and access controls
– Regular security audits and updates
– Staff training on data protection
– Secure backup systems

In addition, we limit access to your personal data to those employees, contractors, and service providers who have a business need to know. They will only process your personal data on our instructions and are subject to a duty of confidentiality.

We have procedures in place to deal with any suspected personal data breach and will notify you and the Information Commissioner’s Office (ICO) where we are legally required to do so.

8. DATA RETENTION

We will only retain your personal data for as long as necessary to fulfil the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure, the purposes for which we process your data, and applicable legal requirements.

Typical retention periods include:

– CLIENT RECORDS: We retain client contact details, project files, and contractual documentation for 6 years after the completion of a project (in line with UK tax and accounting requirements).

– FINANCIAL RECORDS: Payment and invoice records are retained for 6 years to comply with HMRC requirements.

– MARKETING DATA: We retain marketing preferences and contact information until you unsubscribe or request deletion.

– WEBSITE ANALYTICS: Technical and usage data is typically retained for 26 months.

– HOSTING DATA: Website backups and hosted files are retained for the duration of the hosting agreement plus 30 days after termination.

In some circumstances, we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes, in which case we may use this information indefinitely without further notice to you.

9. YOUR LEGAL RIGHTS

Under the UK GDPR, you have the following rights in relation to your personal data:

9.1 RIGHT TO BE INFORMED
You have the right to be informed about how your personal data is being used (which is the purpose of this Privacy Policy).

9.2 RIGHT OF ACCESS
You have the right to request a copy of the personal data we hold about you. This is known as a “subject access request.”

9.3 RIGHT TO RECTIFICATION
You have the right to request that we correct any personal data that is inaccurate or incomplete.

9.4 RIGHT TO ERASURE (RIGHT TO BE FORGOTTEN)
You have the right to request that we delete your personal data in certain circumstances, such as:
– The data is no longer necessary for the purpose it was collected
– You withdraw your consent (where consent was the basis for processing)
– You object to the processing and there are no overriding legitimate grounds
– The data has been unlawfully processed
– The data must be erased to comply with a legal obligation

Please note that we may not be able to comply with a request to erase your data if we are required to retain it for legal or regulatory reasons (e.g., tax records).

9.5 RIGHT TO RESTRICT PROCESSING
You have the right to request that we restrict the processing of your personal data in certain circumstances, such as:
– You contest the accuracy of the data
– The processing is unlawful but you do not want us to erase the data
– We no longer need the data but you require it for legal claims
– You have objected to processing and we are verifying whether our legitimate grounds override yours

9.6 RIGHT TO DATA PORTABILITY
You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another data controller where:
– The processing is based on consent or contract
– The processing is carried out by automated means

9.7 RIGHT TO OBJECT
You have the right to object to processing of your personal data where:
– We are processing it on the basis of legitimate interests
– We are using it for direct marketing purposes
– We are using it for research or statistical purposes

9.8 RIGHT NOT TO BE SUBJECT TO AUTOMATED DECISION-MAKING
You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects or similarly significantly affects you.

We do not use automated decision-making or profiling in our business operations.

9.9 HOW TO EXERCISE YOUR RIGHTS
If you wish to exercise any of these rights, please contact us using the details in Section 1. We will respond to your request within one month, although we may extend this period by a further two months if your request is complex.

You will not have to pay a fee to access your personal data (or to exercise any of your other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive, or excessive.

We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it.

10. RIGHT TO COMPLAIN

You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues.

Information Commissioner’s Office:
Website: www.ico.org.uk
Telephone: 0303 123 1113
Address: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF

We would, however, appreciate the chance to deal with your concerns before you approach the ICO, so please contact us in the first instance.

11. COOKIES

Our website uses cookies to distinguish you from other users of our website and to improve your experience.

11.1 WHAT ARE COOKIES?
Cookies are small text files that are placed on your device when you visit a website. They are widely used to make websites work more efficiently and to provide information to the website owners.

11.2 TYPES OF COOKIES WE USE

STRICTLY NECESSARY COOKIES
These cookies are essential for you to browse our website and use its features. Without these cookies, services you have asked for cannot be provided.

PERFORMANCE COOKIES
These cookies collect information about how visitors use our website, such as which pages visitors go to most often. This information is used to improve how our website works.

FUNCTIONALITY COOKIES
These cookies allow our website to remember choices you make (such as your user name or region) and provide enhanced, more personal features.

ANALYTICS COOKIES
We use Google Analytics to collect information about how visitors use our site. These cookies collect information in an anonymous form, including the number of visitors to the site, where visitors have come from, and the pages they visited.

MARKETING COOKIES
These cookies are used to deliver adverts more relevant to you and your interests. They are also used to limit the number of times you see an advertisement and to measure the effectiveness of advertising campaigns.

11.3 HOW TO CONTROL COOKIES
You can control and/or delete cookies as you wish. You can delete all cookies that are already on your device and you can set most browsers to prevent them from being placed. However, if you do this, you may have to manually adjust some preferences every time you visit our website, and some services and functionalities may not work.

To learn more about cookies and how to manage them, visit www.aboutcookies.org or www.allaboutcookies.org.

12. THIRD-PARTY LINKS

Our website may include links to third-party websites, plug-ins, and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you.

We do not control these third-party websites and are not responsible for their privacy practices. When you leave our website, we encourage you to read the privacy policy of every website you visit.

13. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

Any changes we make to our Privacy Policy will be posted on this page. Where appropriate, we will notify you by email or through a notice on our website.

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your personal information.

The date at the top of this Privacy Policy indicates when it was last updated.

14. CHILDREN’S PRIVACY

Our services are not directed at children under the age of 16, and we do not knowingly collect personal data from children under 16.

If you are under 16, please do not use our website or provide any personal information to us. If we become aware that we have collected personal data from a child under 16 without verification of parental consent, we will take steps to remove that information from our servers.

If you believe we might have any information from or about a child under 16, please contact us using the details in Section 1.

15. MARKETING COMMUNICATIONS

We may use your Identity, Contact, Technical, Usage, and Profile Data to form a view on what we think you may want or need, or what may be of interest to you. This is how we decide which services and offers may be relevant for you.

You will receive marketing communications from us if you have:
– Requested information from us or purchased services from us
– Provided us with your details when enquiring about our services
– Not opted out of receiving marketing communications

You can ask us to stop sending you marketing messages at any time by:
– Following the opt-out or unsubscribe links in any marketing email we send you
– Contacting us at any time using the contact details in Section 1

Where you opt out of receiving marketing messages, this will not apply to personal data provided to us as a result of a service purchase, service experience, or other transactions.

16. BUSINESS TRANSFERS

If RMD TRADING LIMITED or substantially all of its assets are acquired by a third party, personal data held by us about our clients will be one of the transferred assets. In such circumstances, we will notify affected users and ensure that the acquiring party is bound by the terms of this Privacy Policy.

17. DATA PROTECTION PRINCIPLES

In accordance with the UK GDPR, we ensure that your personal data is:

– Processed lawfully, fairly, and in a transparent manner
– Collected for specified, explicit, and legitimate purposes
– Adequate, relevant, and limited to what is necessary
– Accurate and, where necessary, kept up to date
– Kept for no longer than is necessary
– Processed in a manner that ensures appropriate security

18. CONTACT US

If you have any questions, comments, or concerns about this Privacy Policy or our data practices, please contact us:

RMD TRADING LIMITED
Email: [email protected]
Address: 44 Furlong Close, Corby, NN17 5AW
Telephone: 01536 215 400

We take your privacy seriously and will respond to all legitimate requests within one month.

This Privacy Policy was last updated on September 2025 and is effective immediately.

RMD TRADING LIMITED trading as ‘Overstone’ is committed to protecting your privacy and ensuring that your personal information is handled in a safe and responsible manner.