Privacy Policy

Last updated: 17 April 2026

This Privacy Policy explains how ClaimFreeWebsite.com ("ClaimFreeWebsite.com", "we", "us" or "our") collects, uses, stores, protects and shares personal information when you visit our website, place an order, use our portals, communicate with us, buy hosting or subscriptions, hire us for website or developer services, or otherwise interact with our business.

1. Data Controller and Contact

ClaimFreeWebsite.com is the controller of the personal information described in this policy when we decide how and why it is used for our own website, orders, support, portals and business operations.

You can contact us about privacy matters at [email protected]. We have not appointed a data protection officer because we are not currently required to do so. If that changes, we will update this policy.

2. When This Policy Applies

This policy applies when you browse our website, request information, place an order, complete checkout, make a payment, receive emails from us, reply to project or support emails, submit a website brief, upload files, use the client portal, use the developer workroom where relevant, use live chat, buy hosting or subscriptions, cancel services, or otherwise communicate with us.

3. Personal Information We Collect

Identity and contact details, such as your name, business name, email address, phone number, billing address and related account details.
Order and billing details, such as purchased services, chosen add-ons, currency, invoice data, payment status, subscription status, cancellation requests, refunds and dispute events.
Project information, such as website brief answers, business descriptions, brand preferences, colours, copy, images, links, revision requests, feedback, fulfilment notes and uploaded files.
Support and communication data, such as emails, ticket history, portal messages, attachments, timestamps, sender details, chat logs and admin or operational notes.
Technical, session and security data, such as IP address, browser type, device information, login attempts, one-time code requests, session identifiers, audit logs, server logs and error logs.
Preference data, such as saved currency choice, temporary checkout drafts, service selections and marketing or unsubscribe preferences where applicable.

Please do not send special category data or highly sensitive information unless it is strictly necessary and you have the legal right to share it with us. This includes health data, biometric data, government IDs, passwords, bank credentials or private customer records.

4. Where We Get Personal Information From

We usually collect personal information directly from you, but we may also receive it from other sources. These may include:

you, when you fill in forms, place orders, reply to emails, use live chat, upload files or communicate with us;
payment providers such as Stripe, which send us payment, billing, subscription, refund and dispute status data;
your email provider or mailbox system when you reply to our project or support emails and those replies are ingested into our ticketing or fulfilment workflows;
your colleagues, staff or representatives where they act for your business or project;
publicly available sources, websites or social profiles that you ask us to use as project references or content sources.

Where we obtain your personal information from another source rather than directly from you, we will provide privacy information in the timeframe required by law, usually no later than our first communication with you where that rule applies.

5. How We Use Your Information

To process orders, payments, renewals, cancellations, refunds, disputes and other account events.
To send login codes, order confirmations, receipts, billing notices, website brief requests, cancellation notices, service emails and support replies.
To build, revise, deploy, host, maintain and support websites and related services.
To operate the client portal, developer workspace, admin tools and related internal workflows.
To connect emails, tickets, messages and files to the correct order, subscription, contract or customer record.
To provide live chat and support communication when you choose to use those features.
To prevent fraud, spam, abuse, unauthorised access, payment misuse and security incidents.
To verify visitor country, displayed currency, traffic quality and suspicious country/IP mismatches in our first-party admin traffic logs.
To keep accounting, tax, legal, compliance, backup and audit records.
To improve our site, services, pricing, workflows, templates and customer experience.
To send promotional emails only where we have consent or can lawfully rely on an existing-customer marketing rule.

6. Legal Bases for Processing

Where applicable data protection law requires a legal basis for processing, we rely on one or more of the following:

Contract: to take payment, create accounts, provide purchased services, manage subscriptions, send service communications and support your order or account.
Legitimate interests: to operate, secure, improve and document our business, prevent abuse, link conversations to the right projects, defend legal claims, recover debts and provide efficient support.
Consent: where we specifically ask for it, such as optional marketing or any non-essential cookies or similar technologies that legally require consent.
Legal obligation: where we must keep records, handle tax and accounting requirements, respond to lawful requests, or meet legal obligations.

We do not currently use solely automated decision-making that has legal or similarly significant effects on you.

7. Information You Must Provide

Some information is required if you want us to enter into or perform a contract with you. For example, we may need your email address to send login codes and order notices, billing details to process payments, and project details to build your website. If you do not provide required information, we may be unable to process your order, deliver the service, verify your identity, or respond properly to support requests.

8. Website Briefs, Files and Project Content

When you send us a website brief, project instructions, emails, files, images, text or other materials, we use that information to deliver the services you purchased. You must make sure you have the right to send us any content, files, trademarks, logos, images, personal data or other materials that you ask us to use.

You are responsible for keeping your own backup copies of all files, website content, images, text, business data and materials you send to us or ask us to work on. Our systems are not intended to be your only storage location or your only backup service.

We share personal information only where needed to run our business and provide services. Depending on the situation, this may include:

payment providers such as Stripe;
live chat providers such as Tidio when you choose to start a live chat;
analytics and advertising providers such as Google Analytics, Google Ads and Meta/Facebook Pixel where you have given the required cookie or advertising consent;
hosting, server, database, storage, backup, DNS, email and infrastructure providers;
developers, support staff, contractors, subcontractors and service providers working on your order, ticket or project;
security, fraud prevention, logging and operational tools where needed to protect the service;
professional advisers, accountants, insurers, legal advisers or authorities where required.

We do not sell your personal information.

10. International Transfers

Some of our service providers may process personal information in other locations. Where this happens, we use transfer mechanisms and safeguards permitted by applicable law. You can request more information about relevant safeguards by emailing [email protected].

11. Payments and Billing

Card payments are handled by Stripe or another payment provider shown at checkout. We do not store full card numbers or full card security codes on our own servers. We do receive billing-related information needed to run the account and keep records, such as payment status, subscription status, card brand, last four digits, invoice status, refunds, disputes and cancellation events.

12. Emails, Support and Live Chat

We send service emails that are necessary to run your order or account, including login codes, order confirmations, receipts, website brief requests, project updates, support replies, cancellation notices and billing notices. These are service messages and are not optional if they are needed to provide the service.

If you email us or reply to an email thread, we may store the message content, sender details, attachments, thread identifiers and related metadata so that we can continue the conversation, connect it to the correct customer or order, and keep an operational audit trail.

If you choose to open live chat on our website, our chat provider may process your name, email address, message content, browser or device data, and its own cookies or similar technologies in order to provide the chat.

We only send promotional emails where we have your consent or can lawfully rely on the limited existing-customer marketing exception. You can opt out of promotional emails at any time using the unsubscribe method in the message or by contacting [email protected]. Opting out of marketing does not stop important service emails.

13. Cookies, Local Storage and Similar Technologies

We use essential cookies and similar technologies to run the website and secure accounts. These may include a session cookie for signed-in access, local storage for temporary checkout drafts or preferences, security controls, and similar technologies needed for requested site functions.

These technologies may include:

a secure session cookie so signed-in users can stay authenticated;
local storage items that remember temporary checkout selections, saved customer draft information, currency preference or promotional timer state;
security and abuse-prevention controls that help protect forms, sessions and accounts;
live chat technologies if you actively choose to open live chat.

We also use a cookie consent tool. Unless you accept optional cookies, Google Analytics and Google Ads consent signals are set to denied for analytics storage, advertising storage, ad user data and ad personalisation. If you accept, we may use Google and Meta/Facebook tags to measure website visits, checkout activity, advertising performance and conversion value.

We may also keep first-party traffic and security logs, including IP address, country signals, browser/device details, viewed pages, clicks, checkout events and displayed currency, so we can debug country or currency mismatches, protect the website, understand traffic quality and investigate abuse or fraud.

If enhanced conversion measurement is enabled, contact details submitted during checkout, such as email address or phone number, may be normalised and hashed before being sent to Google for conversion measurement. We do not allow this unless the relevant Google advertising consent signal is granted.

We store a consent record for audit purposes, which may include your consent choice, timestamp, consent version, page path, browser user agent, IP address and a pseudonymous visitor identifier. You can change your choice using the Cookie settings button shown on the website.

14. Security

We use reasonable technical and organisational measures to protect personal information, such as access controls, encrypted connections where available, session protection, role-based access, logging, audit trails and operational monitoring. However, no website, hosting environment, email system, database or internet transmission can be guaranteed to be completely secure.

You are responsible for keeping your own email account, devices, inbox access, login codes, domains, third-party services, passwords and backups secure. If you believe your details or account are compromised, contact us promptly.

15. Data Retention

We keep personal information only for as long as reasonably needed for the purposes described in this policy. Our normal retention approach is as follows:

order, invoice, payment, tax and accounting records: usually up to 7 years, or longer if required for legal or tax reasons;
project briefs, fulfilment notes, support tickets, chat messages, portal conversations and project files: usually for as long as the customer relationship remains relevant and for up to 6 years afterwards for support, service history, disputes or legal claims;
authentication codes: only for a short period until they expire, although related security or audit logs may be retained longer to prevent abuse and investigate incidents;
server, access, error and security logs: usually for a limited period and longer only where needed for security, fraud prevention or legal claims;
marketing suppression or unsubscribe records: for as long as needed to respect your preferences and demonstrate compliance.

We may retain information for longer if reasonably necessary for legal claims, fraud prevention, dispute handling, tax, accounting, legal compliance or security investigations.

16. Backups and Deleted Data

If data is deleted from active systems, copies may remain in backups, logs or archives for a limited period until they are overwritten or deleted under our normal backup cycles. We cannot always immediately remove data from every backup copy.

Our backups exist for continuity and security. They are not a guarantee that your project files, website content, emails, account data or uploaded materials can be restored. You should keep your own backups in a safe place that you control.

17. Your Privacy Rights

Depending on where you live and which privacy laws apply, you may have the right to access, correct, delete, restrict or object to the use of your personal information, request a copy of your information, request portability, or withdraw consent where processing is based on consent.

The right to object to direct marketing applies separately, and you can exercise that at any time.

You may also have the right to complain to the data protection supervisory authority that applies where you live, work or believe the issue occurred. If you are in the UK, this is usually the Information Commissioner's Office (ICO).

To make a request, email [email protected]. We may need to verify your identity before responding. We may refuse or limit a request where permitted by law, for example where records must be kept for legal, accounting, security, anti-fraud or dispute reasons.

18. Children's Privacy

Our services are intended for businesses and adults. We do not knowingly collect personal information from children.

19. Third-Party Websites and Services

Our website or services may link to third-party websites, tools, payment pages, hosting dashboards, domain registrars, mail providers or other platforms. We are not responsible for the privacy practices, security or content of third-party services. You should review their own privacy notices before using them.

20. Changes to This Policy

We may update this Privacy Policy from time to time. The latest version will be posted on this page with the updated date. If changes are significant, we may also take reasonable steps to bring them to your attention before the new processing starts where required by law.

21. Contact

Questions about this Privacy Policy or your personal information can be sent to [email protected].