Lennon Consulting - Digital Growth Agency in Shrewsbury

Privacy Policy

Last Updated: 28/04/2026

1. Overview

Lennon Consulting (“we,” “us,” or “our”) is committed to protecting the privacy and security of your personal data. This policy explains how we collect, use, and safeguard your information when you visit our website (www.lennonconsulting.co.uk) or engage our marketing consultancy services.

2. Information We Collect

We may collect and process the following categories of data:

  • Identity & Contact Data: Name, business email, job title, and phone number provided via inquiry forms.

  • Technical & Usage Data: IP address, browser type, and interaction data collected through cookies and analytics tools.

  • Marketing Data: Your preferences in receiving marketing communications from us.

  • Client Project Data: In the course of consultancy, we may handle data provided by you (the Client) regarding your own customers or leads.

3. How We Use Your Data

We use your information for the following purposes:

  • Service Delivery: To provide marketing strategies, campaign management, and consultancy.

  • Communication: To respond to inquiries and manage our professional relationship.

  • Website Optimisation: To analyse website performance and improve user experience.

4. Legal Basis for Processing

Under UK GDPR, we rely on the following legal grounds:

  • Consent: For non-essential cookies and direct marketing (which you can withdraw at any time).

  • Contract: Necessary to perform the services agreed upon in our consultancy engagement.

  • Legitimate Interests: To improve our business services and maintain website security.

  • Legal Obligation: To comply with tax or regulatory requirements.

5. Marketing Roles: Controller vs. Processor

  • As a Data Controller: We are responsible for the personal data of our website visitors and direct clients.

  • As a Data Processor: When we manage marketing campaigns or customer lists on your behalf, we act as a Data Processor. In these instances, the Client (you) remains the Data Controller and must ensure a legal basis exists for sharing that data with us.

6. Cookies & Tracking Technologies

We use cookies to enhance your experience. In accordance with the Data (Use and Access) Act 2025/26:

  • Essential Cookies: Used for site functionality and do not require prior consent.

  • Marketing & Analytics Cookies: (e.g., Google Analytics). We only deploy these if you provide explicit consent via our cookie banner. You can opt out at any time.

7. Data Sharing & International Transfers

We do not sell your data. We share information only with trusted third-party service providers (e.g., email platforms, CRM systems, and Freelancers through trusted platforms) necessary for our operations. 

8. Data Security & Retention

We implement robust technical measures to prevent unauthorised access. We retain personal data only as long as necessary for the purposes outlined (typically 6 years for financial/contractual records, or until you unsubscribe from marketing).

9. Your Rights

Under the UK GDPR, you have the right to:

  • Access your data.

  • Rectify incorrect information.

  • Erase your data (“Right to be Forgotten”).

  • Data Portability to another service.

10. Contact Us

For any privacy-related inquiries or to exercise your rights, please contact: Data Privacy Lead Email: he***@*****************co.uk