Privacy Policy
Last updated: July 2026 · DKT Digital, St Peter Port, Guernsey GY1 · Controller: Daniel Thomas, [email protected]
1. Who we are
DKT Digital is a business automation consultancy based in St Peter Port, Guernsey (GY1), Channel Islands. We act as the data controller for personal data collected via this website. We are registered with the Office of the Data Protection Authority (ODPA), Guernsey. Contact: [email protected].
2. What data we collect
- Name, email address, business name, phone number (submitted via our contact form)
- Technical data: IP address, browser type, pages visited, time on site (via server logs only — no analytics cookies)
- Communications: emails and messages you send us
- Client data: billing information and business details provided during onboarding (processed under contract)
3. Why we collect it (lawful basis)
- Contact form submissions: Legitimate interest (responding to enquiries) / pre-contractual steps
- Client onboarding data: Performance of a contract
- Marketing (newsletter): Consent — you can unsubscribe at any time
- We do not sell your data to third parties
4. How we use your data
- Respond to enquiries within one business day
- Deliver agreed automation services
- Send invoices and service updates
- Send our newsletter if you subscribed (unsubscribe link in every email)
5. Who we share it with
- n8n (self-hosted on our own infrastructure — data does not leave our servers)
- Stripe (payment processing — subject to Stripe's own GDPR-compliant privacy policy)
- Beehiiv (newsletter platform — only your name and email if you subscribed)
- We use AI tools for internal content drafting only — we never send client personal data to external AI APIs
6. Data retention
- Enquiry data: 12 months from last contact if no contract formed
- Client data: 7 years from end of contract (Guernsey financial record-keeping requirement)
- Newsletter data: until you unsubscribe
7. Your rights (Guernsey DP Law 2017, Part 3)
- Access: request a copy of your data
- Rectification: correct inaccurate data
- Erasure: request deletion (subject to legal retention requirements)
- Restriction: limit how we process your data
- Objection: object to processing based on legitimate interest
- Portability: receive your data in a portable format
To exercise any right, email [email protected]. We respond within 30 days.
8. Cookies
This website uses one functional cookie (session only) to remember your form state. We do not use tracking cookies, advertising cookies, or third-party analytics. We do not use Google Analytics, Facebook Pixel, or similar tracking tools.
9. Security
All data is transmitted over HTTPS. Our n8n instance is self-hosted and not publicly accessible. Sensitive credentials are stored encrypted and never in source files.
10. Complaints
You have the right to complain to the Office of the Data Protection Authority (ODPA): Website odpa.gg · Email [email protected] · Phone +44 (0)1481 742074.
11. Changes
We may update this policy. Material changes will be communicated by email to active clients. Last updated: July 2026.