Privacy Policy
Last updated: 3 April 2026
1. Data controller
Granite Marketing is the data controller responsible for your personal data collected through this website.
- Company: Granite Marketing
- Address: Unit 5, 42 Brick Lane, London E1 6RF
- Email: info@granitemarketing.co.uk
2. What data we collect
We collect personal data in the following ways:
2.1 Contact form
When you submit our contact form we collect your first name, last name, email address, phone number, inquiry type, situation checkboxes (describing your current needs), and your message.
2.2 Appointment booking
When you book a 30-minute consultation through our embedded Cal.com scheduling tool, Cal.com collects the information you provide (such as your name, email address, and any notes you add). Please refer to Cal.com's privacy policy for details on how they handle your data.
2.3 Browsing and analytics data
We use Google Analytics and Vercel Analytics to collect anonymised usage data such as pages visited, time on site, referral source, browser type, device type, and approximate geographic location. This data does not directly identify you.
3. How we use your data
We use the personal data we collect to:
- Respond to your inquiries submitted through our contact form
- Schedule and deliver consultations you have booked
- Provide our AI workflow automation consulting services
- Send invoices and process payments for services rendered
- Analyse website usage to improve our content and user experience
- Monitor website performance and resolve technical issues
4. Legal basis for processing
Under the UK General Data Protection Regulation (UK GDPR), we rely on the following lawful bases:
- Consent: When you submit our contact form or book a consultation, you consent to us processing the data you provide for that purpose. You may withdraw consent at any time by emailing us.
- Contractual necessity: Where we need to process your data to perform a contract with you or to take steps at your request before entering into a contract (for example, delivering consulting services you have engaged us for).
- Legitimate interest: We use analytics data to understand how visitors use our website so we can improve it. This processing is proportionate and does not override your rights.
5. Third-party processors
We share personal data only with trusted third-party service providers who process data on our behalf. Each provider is contractually required to protect your data.
| Provider | Purpose | Data processed | Country |
|---|---|---|---|
| Google Analytics | Website analytics | Anonymised browsing data, cookies | USA (adequate safeguards in place) |
| Vercel Analytics | Performance analytics | Anonymised page-load and performance metrics | USA (adequate safeguards in place) |
| Cal.com | Appointment scheduling | Name, email, booking details | USA (adequate safeguards in place) |
| Wise Business | Payment processing | Invoice and payment details | UK / EEA |
Where data is transferred outside the UK, we ensure appropriate safeguards are in place in accordance with UK GDPR requirements, such as standard contractual clauses or adequacy decisions.
6. Payment data
All payments are processed securely by Wise Business. We never store, process, or have access to your payment card details. Wise handles all payment information in accordance with applicable regulations. For more information, please refer to Wise's privacy statement.
7. Data retention
- Contact form submissions: We retain the personal data you provide via our contact form for up to 24 months from the date of submission, after which it is securely deleted unless we have an ongoing business relationship with you.
- Booking data: Retained by Cal.com in accordance with their own retention policies.
- Analytics data: Retained by Google Analytics and Vercel Analytics according to their respective default retention periods.
- Invoicing and payment records: Retained for up to 6 years to comply with UK tax and accounting obligations.
8. Your rights under UK GDPR
You have the following rights in relation to your personal data:
- Right of access — request a copy of the personal data we hold about you.
- Right to rectification — request correction of inaccurate or incomplete data.
- Right to erasure — request deletion of your personal data where there is no compelling reason for us to continue processing it.
- Right to restriction of processing — request that we limit how we use your data.
- Right to data portability — request a copy of your data in a structured, commonly used, machine-readable format.
- Right to object — object to processing based on legitimate interest.
- Right to withdraw consent — where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of processing carried out before withdrawal.
To exercise any of these rights, please email us at info@granitemarketing.co.uk. We will respond to your request within one month.
9. Cookies
Our website uses cookies to support analytics and improve your browsing experience. For full details on the cookies we use, how to manage them, and your choices, please see our Cookie Policy.
10. How to contact us
If you have any questions about this privacy policy or the way we handle your personal data, please contact us:
- Email: info@granitemarketing.co.uk
- Post: Granite Marketing, Unit 5, 42 Brick Lane, London E1 6RF
11. Right to complain
If you are unhappy with how we have handled your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):
- Website: https://ico.org.uk
- Telephone: 0303 123 1113
We would appreciate the opportunity to address your concerns before you contact the ICO, so please reach out to us first.
12. Changes to this policy
We may update this privacy policy from time to time to reflect changes in our practices, technology, or legal requirements. Any changes will be posted on this page with an updated “Last updated” date. We encourage you to review this page periodically.