Privacy Notice
Last updated: 13 July 2026
1. About this privacy notice
This privacy notice explains how Verde Design and Print Limited, trading as Hello Designs, collects, uses, stores and protects personal information.
It applies when you:
visit the Hello Designs website;
book a discovery call or appointment;
contact Hello Designs by email, through a form, by telephone or through social media;
enquire about or purchase services;
become a client, supplier or business contact;
sign up to receive marketing communications, where available; or
otherwise interact with Hello Designs.
This privacy notice should be read alongside the Hello Designs Terms of Use, available at:
https://www.hello-designs.co.uk/terms-of-use
2. Who is responsible for your personal information?
Verde Design and Print Limited, trading as Hello Designs, is the controller of the personal information described in this notice. This means that we decide why and how your personal information is used.
Company name: Verde Design and Print Limited
Trading name: Hello Designs
Company number: 05350214
Registered office: Kings Head House, 15 London End, Beaconsfield, England, HP9 2HN
Website:https://www.hello-designs.co.uk
Email:louise@hello-designs.co.uk
In this notice, “Hello Designs”, “we”, “us” and “our” refer to Verde Design and Print Limited trading as Hello Designs.
3. The laws that apply
We process personal information in accordance with applicable UK data-protection and privacy legislation, including:
the UK General Data Protection Regulation;
the Data Protection Act 2018;
the Data (Use and Access) Act 2025; and
the Privacy and Electronic Communications Regulations 2003, commonly known as PECR.
4. The personal information we collect
The personal information we collect depends on how you interact with us.
Enquiries and contact information
When you contact us or enquire about our services, we may collect:
your name;
your business or organisation name;
your email address;
your telephone number;
your website and social-media details;
information about your business, brand, project, goals and requirements; and
copies of correspondence between you and Hello Designs.
Appointment and discovery-call information
When you book a call, we may collect:
your name;
your email address;
your telephone number, where requested;
your business information;
your time-zone and appointment details;
your responses to booking or intake questions; and
records of appointment confirmations, reminders, cancellations and rescheduling.
Online appointments may take place using Zoom or another agreed video-call platform.
Client and project information
When you become a client, we may collect and create:
your contact and business details;
project briefs, questionnaires and workbook responses;
brand, marketing and audience information;
proposals, contracts and approvals;
meeting notes and project correspondence;
content, photographs, video, audio, copy and other materials you provide;
design concepts, draft work and completed project files;
testimonials, feedback and case-study information;
billing details, invoices and payment records; and
records needed to manage and deliver the project.
We do not normally receive or store complete payment-card details. Payments are generally handled by banks or third-party payment providers.
Website and technical information
When you visit the website, Squarespace and related website tools may collect:
your IP address;
information about your browser, network and device;
the website or page you visited before arriving;
the pages you view;
clicks and internal links;
scrolling and searches;
visit dates, times and duration; and
cookie and consent preferences.
More information about this is provided in the Cookies section below.
Marketing information
Where you choose to receive marketing communications, we may collect:
your name and email address;
your marketing preferences;
information about whether you open or interact with an email; and
records of consent, unsubscribes or objections.
Information from other sources
Most personal information is provided directly by you.
In some circumstances, we may receive professional contact information from:
someone who refers or introduces you to us;
your employer, colleague or business partner;
publicly available business websites or professional social-media profiles; or
platforms you use to contact or interact with Hello Designs.
5. Special-category information
Hello Designs does not intentionally request sensitive personal information, such as information about your health, ethnicity, religion, political beliefs or sexual orientation.
Please avoid including sensitive personal information in enquiry forms, emails or project documents unless it is genuinely relevant and has been specifically requested.
Where sensitive personal information is provided and needs to be used, we will ensure that an appropriate legal condition applies.
6. Why we use your personal information
We only use personal information where we have a lawful reason to do so.
To respond to enquiries
We use your information to:
reply to questions;
discuss potential projects;
recommend suitable services;
prepare estimates or proposals; and
take steps you request before entering into a contract.
Our lawful bases are taking steps at your request before entering into a contract and our legitimate interest in responding to enquiries and developing our business.
To arrange discovery calls and appointments
We use your information to:
provide booking availability;
schedule calls;
send confirmations and reminders;
provide video-call details; and
manage cancellations or rescheduling.
Our lawful bases are taking steps at your request before entering into a contract and our legitimate interest in managing appointments efficiently.
To deliver client services
We use your information to:
create and manage proposals and contracts;
understand your business and project;
provide brand, graphic-design, website and related creative services;
communicate with you throughout the project;
obtain feedback and approvals;
deliver project files and support; and
manage our ongoing relationship with you.
Our lawful basis is the performance of our contract with you.
Where the client is a company or organisation rather than an individual, we may rely on our legitimate interest in communicating with the people responsible for the project.
To manage payments and business administration
We use relevant information to:
issue invoices;
process and record payments;
maintain accounting and tax records;
manage contracts and business records; and
comply with legal and regulatory obligations.
Our lawful bases are the performance of our contract, compliance with legal obligations and our legitimate interest in administering the business.
To operate, protect and improve the website
We use technical and usage information to:
provide and secure the website;
prevent fraud, misuse and malicious activity;
diagnose technical problems;
understand how visitors use the website; and
improve its content, navigation and performance.
Our lawful bases are our legitimate interests in operating and protecting the website and, where consent is required for analytics or similar technologies, your consent.
To showcase our work
Unless otherwise agreed, we may use completed work, your business name and limited project information in our portfolio, website, social media, awards entries, presentations or promotional materials.
We rely on our legitimate interest in demonstrating our experience and promoting our services, subject to the terms of our client agreement and your rights.
We will seek your consent before publishing personal photographs, sensitive information or testimonial wording where consent is appropriate.
To send marketing communications
We may send marketing emails where:
you have actively asked or agreed to receive them; or
the limited PECR soft opt-in applies because we obtained your details during a sale or genuine negotiations for a sale, we are promoting similar services and we gave you a clear opportunity to opt out.
Making a general enquiry does not automatically add you to a marketing list.
You can unsubscribe at any time using the link in a marketing email or by contacting us.
Depending on the circumstances, our lawful basis will be your consent or our legitimate interests where the soft opt-in lawfully applies.
To establish or defend legal rights
We may use and retain information where reasonably necessary to:
obtain professional advice;
resolve a dispute;
recover unpaid amounts;
enforce an agreement;
respond to a legal claim; or
protect our legal rights.
Our lawful bases are our legitimate interests and, where relevant, compliance with a legal obligation.
To handle data-protection requests and complaints
We use relevant personal information to:
verify and respond to requests concerning your information;
investigate data-protection complaints;
keep you informed;
record the outcome; and
demonstrate our compliance with the law.
Our lawful basis is compliance with our legal obligations.
7. Marketing preferences
We will not sell your personal information or provide it to unrelated businesses for their own marketing.
You can ask us to stop sending marketing communications at any time.
Where you unsubscribe, we may retain a limited record of your email address on a suppression list. This helps us respect your preference and avoid accidentally contacting you again.
Stopping marketing communications will not prevent us from sending essential service or project-related messages.
8. Who we share personal information with
We only share personal information where it is reasonably necessary and appropriate.
Depending on how you interact with Hello Designs, information may be shared with:
Squarespace and Acuity Scheduling
The website is hosted by Squarespace.
Squarespace processes technical website information, website analytics and data submitted through relevant website features.
The embedded booking system uses Acuity Scheduling, which is part of Squarespace. Acuity processes appointment information, booking-form responses, time-zone information and appointment communications.
Dubsado
Dubsado may be used to manage enquiries, processes appointment information, booking-form responses, appointment communications, client records, questionnaires, proposals, contracts, invoices, workflows and project communications.
Google services
Google services may be used for business email, calendars, cloud-based documents, file storage and collaboration.
Google reCAPTCHA may also be used within the scheduling system to help prevent spam and misuse.
Zoom
Zoom may be used to provide discovery calls, meetings and project consultations.
Payment providers and banks
Banks and payment-service providers may process information needed to collect, send or record payments.
They process payment information under their own privacy terms.
Accountants and professional advisers
We may share relevant information with accountants, bookkeepers, insurers, legal advisers or other professional advisers where necessary.
Printers, production partners and suppliers
Where your project involves print, merchandise, production or delivery, we may share the minimum information necessary with printers, manufacturers, couriers or other production partners.
This may include your business name, delivery address and contact information.
Technical and business-support providers
We may use trusted providers for services such as:
website support;
email delivery;
cloud storage;
cyber security;
file transfer;
data backup;
project management; and
software support.
These providers are only permitted to use personal information as needed to provide their services.
Legal and regulatory bodies
We may disclose personal information where required by law, court order or a regulatory authority, or where necessary to protect our rights or the rights and safety of others.
Business transfers
If all or part of the business is sold, reorganised or transferred, relevant personal information may be disclosed to professional advisers, potential purchasers or the new owner.
Appropriate confidentiality and data-protection safeguards will be used.
9. International transfers
Some service providers may store or process personal information outside the UK.
Where personal information is transferred outside the UK, we take reasonable steps to ensure that the transfer is lawful and that appropriate protection is in place.
Depending on the destination and provider, this may include:
UK adequacy regulations;
the UK International Data Transfer Agreement;
the UK Addendum to approved standard contractual clauses;
contractual and technical safeguards; or
another lawful transfer mechanism.
You may contact us for further information about the safeguards used for relevant transfers.
10. How long we keep personal information
We keep personal information only for as long as reasonably necessary for the purpose for which it was collected.
Our usual retention periods are:
Enquiries that do not become projects
Enquiry correspondence will normally be kept for up to two years after our last meaningful contact.
It may be deleted sooner where it is no longer needed.
Appointment records
Discovery-call and appointment records will normally be kept for up to two years.
Where you become a client, relevant appointment information may form part of the client record.
Client and project records
Contracts, proposals, project correspondence, approvals, invoices and core project records will normally be kept for up to seven years after the end of the client relationship.
This helps us meet tax, accounting, insurance, contractual and legal requirements.
Project and design files
Working files and completed project files may be retained for up to seven years, unless a different period has been agreed.
Selected completed work may be retained for longer as part of the Hello Designs portfolio or business archive. Where possible, unnecessary personal information will be removed.
Financial records
Financial and accounting records are normally retained for at least six years after the relevant financial period, or longer where required by law or professional advice.
Marketing records
Marketing contact details are kept until you unsubscribe, withdraw consent or we decide they are no longer relevant.
A limited suppression record may be kept for as long as necessary to ensure that your opt-out continues to be respected.
Data-protection complaints and rights requests
Records of data-protection requests and complaints may be retained for up to six years after the matter has been closed, where necessary to demonstrate compliance or manage potential legal claims.
Website analytics
Website analytics and cookie information is retained according to the cookie durations described below and the settings of the relevant provider.
Retention periods may be extended where information is required for a dispute, legal claim, regulatory investigation or legal obligation.
11. How we protect personal information
We use reasonable technical and organisational measures to protect personal information from loss, misuse, unauthorised access, alteration or disclosure.
These measures may include:
password-protected systems;
access controls;
multi-factor authentication where available;
secure cloud-based services;
software and security updates;
encrypted connections;
secure backup arrangements; and
limiting access to people who reasonably need the information.
No online system or method of electronic storage can be guaranteed to be completely secure.
Please contact us promptly if you believe personal information connected with Hello Designs has been lost, misused or accessed without authorisation.
12. Your data-protection rights
Depending on the circumstances, you may have the right to:
be informed about how your personal information is used;
request access to the personal information we hold about you;
ask us to correct inaccurate or incomplete information;
ask us to erase your information;
ask us to restrict how your information is used;
receive certain information in a portable format;
object to processing based on legitimate interests;
object at any time to direct marketing;
withdraw consent where processing is based on consent; and
ask not to be subject to certain solely automated decisions with legal or similarly significant effects.
These rights are not absolute and may not apply in every situation.
We do not currently make decisions about people using solely automated decision-making or profiling that produces legal or similarly significant effects.
To exercise a right, email louise@hello-designs.co.uk.
Please provide enough information for us to identify you and understand your request. We may ask for reasonable proof of identity where necessary.
There is normally no charge for exercising your rights.
We will respond without undue delay and normally within one calendar month. In certain complex circumstances, the response period may be extended as permitted by law. We will tell you if this applies.
Withdrawing consent does not affect the lawfulness of processing carried out before the consent was withdrawn.
13. Data-protection complaints
You have the right to complain if you believe we have not handled your personal information properly.
To make a data-protection complaint, email:
Please use the subject line Data protection complaint and include:
your name and contact details;
an explanation of your concern;
relevant dates or correspondence;
what you would like us to investigate; and
any supporting information.
We will:
provide a clear way for you to make your complaint;
acknowledge it within 30 days;
take appropriate steps to investigate it without undue delay;
keep you informed where appropriate; and
tell you the outcome without undue delay.
Where someone submits a complaint on your behalf, we may ask for evidence that they are authorised to act for you.
If your complaint also includes a request to exercise one of your data-protection rights, the complaint and rights request may need to be handled as separate matters.
We hope to resolve concerns directly, but you also have the right to complain to the Information Commissioner’s Office.
Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF
Telephone: 0303 123 1113
Website:https://ico.org.uk
14. Cookies and similar technologies
Cookies are small files or pieces of information stored on your device when you visit a website.
The website uses cookies and similar technologies to:
provide and secure the website;
remember cookie choices;
support appointment booking;
prevent spam or fraudulent activity; and
understand website traffic and activity, where permitted.
Necessary cookies
Necessary cookies support essential website and booking-system functions. They may be used without consent where they are required to provide a service you have requested or to operate the site securely.
Depending on the features you use, these may include:
Crumb
Purpose: Helps prevent cross-site request forgery and protects website forms and requests.
Duration: Session.
RecentRedirect
Purpose: Helps prevent redirect loops where custom website redirects are in use.
Duration: Approximately 30 minutes.
Test
Purpose: Checks whether your browser supports cookies and helps prevent technical errors.
Duration: Session.
ss_performancecookiesAllowed
Purpose: Records whether you have accepted or declined Squarespace analytics and performance cookies.
Duration: Approximately 30 days.
ss_marketingcookiesAllowed
Purpose: Records your preference concerning marketing cookies where this option is available.
Duration: Approximately 30 days.
PHPSESSID
Purpose: Securely authenticates a visitor during the Acuity Scheduling booking process.
Duration: Approximately one month.
TZ
Purpose: Displays appointment times correctly according to the visitor’s time zone.
Type: Local storage.
Duration: Persistent.
_grecaptcha
Purpose: Helps prevent spam and misuse within Acuity Scheduling.
Type: Local storage.
Duration: No fixed expiry.
dds
Purpose: Helps identify browser or system errors within the scheduling service.
Duration: Approximately four hours.
Analytics and performance cookies
Squarespace Analytics helps us understand how visitors use the website.
Where required, these cookies are only used after you have made the relevant choice through the cookie banner.
They may include:
ss_cid
Purpose: Identifies unique visitors and tracks sessions.
Duration: Approximately two years.
ss_cpvisit
Purpose: Identifies unique visitors and tracks sessions.
Duration: Approximately two years.
ss_cvisit
Purpose: Tracks a visitor’s website session.
Duration: Approximately 30 minutes.
ss_cvr
Purpose: Identifies unique visitors and tracks sessions.
Duration: Approximately two years.
ss_cvt
Purpose: Tracks a visitor’s website session.
Duration: Approximately 30 minutes.
Squarespace Analytics may process information such as your IP address, browser, device, pages visited, referring pages, clicks, scrolling, searches and timestamps.
We use this information to understand general website traffic and improve the website.
Third-party services
Links to Instagram, LinkedIn or other external websites do not normally place cookies through the Hello Designs website merely because the link is displayed.
However, when you click through to another platform, that platform may use its own cookies and process your information under its own privacy terms.
Additional cookies may also be placed if new embedded videos, maps, social-media feeds, advertising tools or other third-party services are added to the website. This notice and the cookie audit will be updated where necessary.
Managing cookies
You can accept or decline non-essential cookies using the website cookie banner.
You can also manage or delete cookies through your browser settings. Blocking necessary cookies may affect how parts of the website or appointment-booking system work.
Your browser’s help section should explain how to view, block and delete cookies.
The Squarespace cookie list may change as its services develop. Information about Squarespace’s current cookies is available through the Squarespace Help Centre.
15. Links to other websites
The website may contain links to third-party websites, social-media platforms or online services.
Hello Designs does not control those websites and is not responsible for their content, security or privacy practices.
Please read the privacy information provided by the relevant third party before submitting personal information to them.
16. Children’s information
The Hello Designs website and services are intended for adults and business owners.
We do not knowingly collect personal information from children through the website.
Please contact us if you believe a child has provided personal information to us without appropriate permission.
17. Changes to this privacy notice
We may update this privacy notice to reflect changes in:
the law;
our services;
the website;
the software or providers we use; or
the ways in which we process personal information.
The latest version will be published on this page with an updated review date.
Where a change is significant and we have an appropriate way to contact you, we may also notify you directly.
Continued use of the website does not remove or limit any rights you have under data-protection law.
18. Contacting Hello Designs
For questions about this privacy notice, your personal information or your data-protection rights, please contact:
Verde Design and Print Limited trading as Hello Designs
Kings Head House
15 London End
Beaconsfield
England
HP9 2HN
Email:louise@hello-designs.co.uk
Website:https://www.hello-designs.co.uk

