Privacy Notice

Last updated: 13 July 2026

1. About this privacy notice

This privacy notice explains how Verde Design and Print Limited, trading as Hello Designs, collects, uses, stores and protects personal information.

It applies when you:

  • visit the Hello Designs website;

  • book a discovery call or appointment;

  • contact Hello Designs by email, through a form, by telephone or through social media;

  • enquire about or purchase services;

  • become a client, supplier or business contact;

  • sign up to receive marketing communications, where available; or

  • otherwise interact with Hello Designs.

This privacy notice should be read alongside the Hello Designs Terms of Use, available at:

https://www.hello-designs.co.uk/terms-of-use

2. Who is responsible for your personal information?

Verde Design and Print Limited, trading as Hello Designs, is the controller of the personal information described in this notice. This means that we decide why and how your personal information is used.

Company name: Verde Design and Print Limited
Trading name: Hello Designs
Company number: 05350214
Registered office: Kings Head House, 15 London End, Beaconsfield, England, HP9 2HN
Website:https://www.hello-designs.co.uk
Email:louise@hello-designs.co.uk

In this notice, “Hello Designs”, “we”, “us” and “our” refer to Verde Design and Print Limited trading as Hello Designs.

3. The laws that apply

We process personal information in accordance with applicable UK data-protection and privacy legislation, including:

  • the UK General Data Protection Regulation;

  • the Data Protection Act 2018;

  • the Data (Use and Access) Act 2025; and

  • the Privacy and Electronic Communications Regulations 2003, commonly known as PECR.

4. The personal information we collect

The personal information we collect depends on how you interact with us.

Enquiries and contact information

When you contact us or enquire about our services, we may collect:

  • your name;

  • your business or organisation name;

  • your email address;

  • your telephone number;

  • your website and social-media details;

  • information about your business, brand, project, goals and requirements; and

  • copies of correspondence between you and Hello Designs.

Appointment and discovery-call information

When you book a call, we may collect:

  • your name;

  • your email address;

  • your telephone number, where requested;

  • your business information;

  • your time-zone and appointment details;

  • your responses to booking or intake questions; and

  • records of appointment confirmations, reminders, cancellations and rescheduling.

Online appointments may take place using Zoom or another agreed video-call platform.

Client and project information

When you become a client, we may collect and create:

  • your contact and business details;

  • project briefs, questionnaires and workbook responses;

  • brand, marketing and audience information;

  • proposals, contracts and approvals;

  • meeting notes and project correspondence;

  • content, photographs, video, audio, copy and other materials you provide;

  • design concepts, draft work and completed project files;

  • testimonials, feedback and case-study information;

  • billing details, invoices and payment records; and

  • records needed to manage and deliver the project.

We do not normally receive or store complete payment-card details. Payments are generally handled by banks or third-party payment providers.

Website and technical information

When you visit the website, Squarespace and related website tools may collect:

  • your IP address;

  • information about your browser, network and device;

  • the website or page you visited before arriving;

  • the pages you view;

  • clicks and internal links;

  • scrolling and searches;

  • visit dates, times and duration; and

  • cookie and consent preferences.

More information about this is provided in the Cookies section below.

Marketing information

Where you choose to receive marketing communications, we may collect:

  • your name and email address;

  • your marketing preferences;

  • information about whether you open or interact with an email; and

  • records of consent, unsubscribes or objections.

Information from other sources

Most personal information is provided directly by you.

In some circumstances, we may receive professional contact information from:

  • someone who refers or introduces you to us;

  • your employer, colleague or business partner;

  • publicly available business websites or professional social-media profiles; or

  • platforms you use to contact or interact with Hello Designs.

5. Special-category information

Hello Designs does not intentionally request sensitive personal information, such as information about your health, ethnicity, religion, political beliefs or sexual orientation.

Please avoid including sensitive personal information in enquiry forms, emails or project documents unless it is genuinely relevant and has been specifically requested.

Where sensitive personal information is provided and needs to be used, we will ensure that an appropriate legal condition applies.

6. Why we use your personal information

We only use personal information where we have a lawful reason to do so.

To respond to enquiries

We use your information to:

  • reply to questions;

  • discuss potential projects;

  • recommend suitable services;

  • prepare estimates or proposals; and

  • take steps you request before entering into a contract.

Our lawful bases are taking steps at your request before entering into a contract and our legitimate interest in responding to enquiries and developing our business.

To arrange discovery calls and appointments

We use your information to:

  • provide booking availability;

  • schedule calls;

  • send confirmations and reminders;

  • provide video-call details; and

  • manage cancellations or rescheduling.

Our lawful bases are taking steps at your request before entering into a contract and our legitimate interest in managing appointments efficiently.

To deliver client services

We use your information to:

  • create and manage proposals and contracts;

  • understand your business and project;

  • provide brand, graphic-design, website and related creative services;

  • communicate with you throughout the project;

  • obtain feedback and approvals;

  • deliver project files and support; and

  • manage our ongoing relationship with you.

Our lawful basis is the performance of our contract with you.

Where the client is a company or organisation rather than an individual, we may rely on our legitimate interest in communicating with the people responsible for the project.

To manage payments and business administration

We use relevant information to:

  • issue invoices;

  • process and record payments;

  • maintain accounting and tax records;

  • manage contracts and business records; and

  • comply with legal and regulatory obligations.

Our lawful bases are the performance of our contract, compliance with legal obligations and our legitimate interest in administering the business.

To operate, protect and improve the website

We use technical and usage information to:

  • provide and secure the website;

  • prevent fraud, misuse and malicious activity;

  • diagnose technical problems;

  • understand how visitors use the website; and

  • improve its content, navigation and performance.

Our lawful bases are our legitimate interests in operating and protecting the website and, where consent is required for analytics or similar technologies, your consent.

To showcase our work

Unless otherwise agreed, we may use completed work, your business name and limited project information in our portfolio, website, social media, awards entries, presentations or promotional materials.

We rely on our legitimate interest in demonstrating our experience and promoting our services, subject to the terms of our client agreement and your rights.

We will seek your consent before publishing personal photographs, sensitive information or testimonial wording where consent is appropriate.

To send marketing communications

We may send marketing emails where:

  • you have actively asked or agreed to receive them; or

  • the limited PECR soft opt-in applies because we obtained your details during a sale or genuine negotiations for a sale, we are promoting similar services and we gave you a clear opportunity to opt out.

Making a general enquiry does not automatically add you to a marketing list.

You can unsubscribe at any time using the link in a marketing email or by contacting us.

Depending on the circumstances, our lawful basis will be your consent or our legitimate interests where the soft opt-in lawfully applies.

To establish or defend legal rights

We may use and retain information where reasonably necessary to:

  • obtain professional advice;

  • resolve a dispute;

  • recover unpaid amounts;

  • enforce an agreement;

  • respond to a legal claim; or

  • protect our legal rights.

Our lawful bases are our legitimate interests and, where relevant, compliance with a legal obligation.

To handle data-protection requests and complaints

We use relevant personal information to:

  • verify and respond to requests concerning your information;

  • investigate data-protection complaints;

  • keep you informed;

  • record the outcome; and

  • demonstrate our compliance with the law.

Our lawful basis is compliance with our legal obligations.

7. Marketing preferences

We will not sell your personal information or provide it to unrelated businesses for their own marketing.

You can ask us to stop sending marketing communications at any time.

Where you unsubscribe, we may retain a limited record of your email address on a suppression list. This helps us respect your preference and avoid accidentally contacting you again.

Stopping marketing communications will not prevent us from sending essential service or project-related messages.

8. Who we share personal information with

We only share personal information where it is reasonably necessary and appropriate.

Depending on how you interact with Hello Designs, information may be shared with:

Squarespace and Acuity Scheduling

The website is hosted by Squarespace.

Squarespace processes technical website information, website analytics and data submitted through relevant website features.

The embedded booking system uses Acuity Scheduling, which is part of Squarespace. Acuity processes appointment information, booking-form responses, time-zone information and appointment communications.

Dubsado

Dubsado may be used to manage enquiries, processes appointment information, booking-form responses, appointment communications, client records, questionnaires, proposals, contracts, invoices, workflows and project communications.

Google services

Google services may be used for business email, calendars, cloud-based documents, file storage and collaboration.

Google reCAPTCHA may also be used within the scheduling system to help prevent spam and misuse.

Zoom

Zoom may be used to provide discovery calls, meetings and project consultations.

Payment providers and banks

Banks and payment-service providers may process information needed to collect, send or record payments.

They process payment information under their own privacy terms.

Accountants and professional advisers

We may share relevant information with accountants, bookkeepers, insurers, legal advisers or other professional advisers where necessary.

Printers, production partners and suppliers

Where your project involves print, merchandise, production or delivery, we may share the minimum information necessary with printers, manufacturers, couriers or other production partners.

This may include your business name, delivery address and contact information.

Technical and business-support providers

We may use trusted providers for services such as:

  • website support;

  • email delivery;

  • cloud storage;

  • cyber security;

  • file transfer;

  • data backup;

  • project management; and

  • software support.

These providers are only permitted to use personal information as needed to provide their services.

Legal and regulatory bodies

We may disclose personal information where required by law, court order or a regulatory authority, or where necessary to protect our rights or the rights and safety of others.

Business transfers

If all or part of the business is sold, reorganised or transferred, relevant personal information may be disclosed to professional advisers, potential purchasers or the new owner.

Appropriate confidentiality and data-protection safeguards will be used.

9. International transfers

Some service providers may store or process personal information outside the UK.

Where personal information is transferred outside the UK, we take reasonable steps to ensure that the transfer is lawful and that appropriate protection is in place.

Depending on the destination and provider, this may include:

  • UK adequacy regulations;

  • the UK International Data Transfer Agreement;

  • the UK Addendum to approved standard contractual clauses;

  • contractual and technical safeguards; or

  • another lawful transfer mechanism.

You may contact us for further information about the safeguards used for relevant transfers.

10. How long we keep personal information

We keep personal information only for as long as reasonably necessary for the purpose for which it was collected.

Our usual retention periods are:

Enquiries that do not become projects

Enquiry correspondence will normally be kept for up to two years after our last meaningful contact.

It may be deleted sooner where it is no longer needed.

Appointment records

Discovery-call and appointment records will normally be kept for up to two years.

Where you become a client, relevant appointment information may form part of the client record.

Client and project records

Contracts, proposals, project correspondence, approvals, invoices and core project records will normally be kept for up to seven years after the end of the client relationship.

This helps us meet tax, accounting, insurance, contractual and legal requirements.

Project and design files

Working files and completed project files may be retained for up to seven years, unless a different period has been agreed.

Selected completed work may be retained for longer as part of the Hello Designs portfolio or business archive. Where possible, unnecessary personal information will be removed.

Financial records

Financial and accounting records are normally retained for at least six years after the relevant financial period, or longer where required by law or professional advice.

Marketing records

Marketing contact details are kept until you unsubscribe, withdraw consent or we decide they are no longer relevant.

A limited suppression record may be kept for as long as necessary to ensure that your opt-out continues to be respected.

Data-protection complaints and rights requests

Records of data-protection requests and complaints may be retained for up to six years after the matter has been closed, where necessary to demonstrate compliance or manage potential legal claims.

Website analytics

Website analytics and cookie information is retained according to the cookie durations described below and the settings of the relevant provider.

Retention periods may be extended where information is required for a dispute, legal claim, regulatory investigation or legal obligation.

11. How we protect personal information

We use reasonable technical and organisational measures to protect personal information from loss, misuse, unauthorised access, alteration or disclosure.

These measures may include:

  • password-protected systems;

  • access controls;

  • multi-factor authentication where available;

  • secure cloud-based services;

  • software and security updates;

  • encrypted connections;

  • secure backup arrangements; and

  • limiting access to people who reasonably need the information.

No online system or method of electronic storage can be guaranteed to be completely secure.

Please contact us promptly if you believe personal information connected with Hello Designs has been lost, misused or accessed without authorisation.

12. Your data-protection rights

Depending on the circumstances, you may have the right to:

  • be informed about how your personal information is used;

  • request access to the personal information we hold about you;

  • ask us to correct inaccurate or incomplete information;

  • ask us to erase your information;

  • ask us to restrict how your information is used;

  • receive certain information in a portable format;

  • object to processing based on legitimate interests;

  • object at any time to direct marketing;

  • withdraw consent where processing is based on consent; and

  • ask not to be subject to certain solely automated decisions with legal or similarly significant effects.

These rights are not absolute and may not apply in every situation.

We do not currently make decisions about people using solely automated decision-making or profiling that produces legal or similarly significant effects.

To exercise a right, email louise@hello-designs.co.uk.

Please provide enough information for us to identify you and understand your request. We may ask for reasonable proof of identity where necessary.

There is normally no charge for exercising your rights.

We will respond without undue delay and normally within one calendar month. In certain complex circumstances, the response period may be extended as permitted by law. We will tell you if this applies.

Withdrawing consent does not affect the lawfulness of processing carried out before the consent was withdrawn.

13. Data-protection complaints

You have the right to complain if you believe we have not handled your personal information properly.

To make a data-protection complaint, email:

louise@hello-designs.co.uk

Please use the subject line Data protection complaint and include:

  • your name and contact details;

  • an explanation of your concern;

  • relevant dates or correspondence;

  • what you would like us to investigate; and

  • any supporting information.

We will:

  • provide a clear way for you to make your complaint;

  • acknowledge it within 30 days;

  • take appropriate steps to investigate it without undue delay;

  • keep you informed where appropriate; and

  • tell you the outcome without undue delay.

Where someone submits a complaint on your behalf, we may ask for evidence that they are authorised to act for you.

If your complaint also includes a request to exercise one of your data-protection rights, the complaint and rights request may need to be handled as separate matters.

We hope to resolve concerns directly, but you also have the right to complain to the Information Commissioner’s Office.

Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

Telephone: 0303 123 1113
Website:https://ico.org.uk

14. Cookies and similar technologies

Cookies are small files or pieces of information stored on your device when you visit a website.

The website uses cookies and similar technologies to:

  • provide and secure the website;

  • remember cookie choices;

  • support appointment booking;

  • prevent spam or fraudulent activity; and

  • understand website traffic and activity, where permitted.

Necessary cookies

Necessary cookies support essential website and booking-system functions. They may be used without consent where they are required to provide a service you have requested or to operate the site securely.

Depending on the features you use, these may include:

Crumb

Purpose: Helps prevent cross-site request forgery and protects website forms and requests.
Duration: Session.

RecentRedirect

Purpose: Helps prevent redirect loops where custom website redirects are in use.
Duration: Approximately 30 minutes.

Test

Purpose: Checks whether your browser supports cookies and helps prevent technical errors.
Duration: Session.

ss_performancecookiesAllowed

Purpose: Records whether you have accepted or declined Squarespace analytics and performance cookies.
Duration: Approximately 30 days.

ss_marketingcookiesAllowed

Purpose: Records your preference concerning marketing cookies where this option is available.
Duration: Approximately 30 days.

PHPSESSID

Purpose: Securely authenticates a visitor during the Acuity Scheduling booking process.
Duration: Approximately one month.

TZ

Purpose: Displays appointment times correctly according to the visitor’s time zone.
Type: Local storage.
Duration: Persistent.

_grecaptcha

Purpose: Helps prevent spam and misuse within Acuity Scheduling.
Type: Local storage.
Duration: No fixed expiry.

dds

Purpose: Helps identify browser or system errors within the scheduling service.
Duration: Approximately four hours.

Analytics and performance cookies

Squarespace Analytics helps us understand how visitors use the website.

Where required, these cookies are only used after you have made the relevant choice through the cookie banner.

They may include:

ss_cid

Purpose: Identifies unique visitors and tracks sessions.
Duration: Approximately two years.

ss_cpvisit

Purpose: Identifies unique visitors and tracks sessions.
Duration: Approximately two years.

ss_cvisit

Purpose: Tracks a visitor’s website session.
Duration: Approximately 30 minutes.

ss_cvr

Purpose: Identifies unique visitors and tracks sessions.
Duration: Approximately two years.

ss_cvt

Purpose: Tracks a visitor’s website session.
Duration: Approximately 30 minutes.

Squarespace Analytics may process information such as your IP address, browser, device, pages visited, referring pages, clicks, scrolling, searches and timestamps.

We use this information to understand general website traffic and improve the website.

Third-party services

Links to Instagram, LinkedIn or other external websites do not normally place cookies through the Hello Designs website merely because the link is displayed.

However, when you click through to another platform, that platform may use its own cookies and process your information under its own privacy terms.

Additional cookies may also be placed if new embedded videos, maps, social-media feeds, advertising tools or other third-party services are added to the website. This notice and the cookie audit will be updated where necessary.

Managing cookies

You can accept or decline non-essential cookies using the website cookie banner.

You can also manage or delete cookies through your browser settings. Blocking necessary cookies may affect how parts of the website or appointment-booking system work.

Your browser’s help section should explain how to view, block and delete cookies.

The Squarespace cookie list may change as its services develop. Information about Squarespace’s current cookies is available through the Squarespace Help Centre.

15. Links to other websites

The website may contain links to third-party websites, social-media platforms or online services.

Hello Designs does not control those websites and is not responsible for their content, security or privacy practices.

Please read the privacy information provided by the relevant third party before submitting personal information to them.

16. Children’s information

The Hello Designs website and services are intended for adults and business owners.

We do not knowingly collect personal information from children through the website.

Please contact us if you believe a child has provided personal information to us without appropriate permission.

17. Changes to this privacy notice

We may update this privacy notice to reflect changes in:

  • the law;

  • our services;

  • the website;

  • the software or providers we use; or

  • the ways in which we process personal information.

The latest version will be published on this page with an updated review date.

Where a change is significant and we have an appropriate way to contact you, we may also notify you directly.

Continued use of the website does not remove or limit any rights you have under data-protection law.

18. Contacting Hello Designs

For questions about this privacy notice, your personal information or your data-protection rights, please contact:

Verde Design and Print Limited trading as Hello Designs
Kings Head House
15 London End
Beaconsfield
England
HP9 2HN

Email:louise@hello-designs.co.uk
Website:https://www.hello-designs.co.uk