Privacy Policy
Last updated: March 2025 · Governing law: England & Wales · UK GDPR compliant
This privacy policy is split into 11 sections and covers what personal data we collect when you use this website or get in touch with us, why we collect it, and how we use it. It explains the legal basis for processing your data, how long we keep it, and the limited circumstances in which we might share it. It also covers cookies, the security measures we have in place, and your rights under UK GDPR — including how to contact us or the Information Commissioner’s Office if you have any concerns.
We’ve written it in plain English — if anything is unclear, please email us at hello@checkpointux.com.
1. Who We Are
Checkpoint UX is a sole trader business based in England, providing games UX consultancy services. For the purposes of UK data protection law, Checkpoint UX is the data controller of any personal data collected via this website or in the course of our business.
Contact: hello@checkpointux.com
2. What Data We Collect
We only collect data that is necessary for a specific purpose. Here’s a summary:
DATA
HOW COLLECTED
WHY
Name, email, company name, message content
Contact form on our website
To respond to your enquiry and manage a potential project relationship
IP address, browser type, pages visited, time on site
Analytics cookies (e.g. Google Analytics or similar)
To understand how visitors use our site and improve it
Email address (if provided voluntarily)
Direct email correspondence
To communicate with you about a project or enquiry
We do not collect sensitive personal data, payment card details, or data from children under 16.
3. Legal Basis for Processing
Under UK GDPR, we rely on the following legal bases:
Legitimate interests — for responding to enquiries, managing project communications, and basic analytics to improve our website;
Consent — for non-essential analytics cookies, which we will ask for before setting them;
Contract — where data is required to fulfil an agreed engagement with you.
4. How We Use Your Data
We use the data we collect to:
Respond to your contact form submission or email enquiry;
Manage and deliver project work where an engagement is agreed;
Understand how visitors use our website so we can improve it;
Meet any legal or regulatory obligations.
We do not sell your data to third parties, use it for automated decision-making, or use it for direct marketing without your explicit consent.
5. Cookies
Our website uses cookies. A cookie is a small text file placed on your device by your browser. Here’s what we use:
REQUIRED
Essential cookies
Necessary for the website to function. They cannot be switched off. They do not store personally identifiable information.
ANALYTICS
Analytics cookies
Help us understand how visitors interact with our website by collecting anonymised data — for example, which pages are most visited. We use this to improve our site. These are only set with your consent.
You can manage your cookie preferences at any time using the cookie banner on our site, or via your browser settings. Opting out of analytics cookies will not affect your ability to use the website.
6. Data Retention
We retain your data only for as long as necessary:
Contact form enquiries that do not lead to a project: deleted or anonymised within 12 months;
Project-related communications and records: retained for up to 6 years after project completion (to comply with UK tax and contract law requirements);
Analytics data: subject to the retention settings of the analytics platform used (typically 14–26 months).
7. Sharing Your Data
We do not sell or rent your personal data. We may share it only in the following limited circumstances:
Service providers: We may use third-party tools (e.g. an analytics provider, email platform) that process data on our behalf. These are bound by their own privacy terms and data processing agreements where required.
Legal requirements: If required by law, a court order, or a regulatory authority.
Where we engage third-party tools that process EU/UK personal data, we ensure appropriate safeguards are in place.
8. Your Rights
Under UK GDPR, you have the following rights in relation to your personal data:
🔍 Access
Request a copy of the personal data we hold about you.
✏️ Rectification
Ask us to correct inaccurate or incomplete data.
🗑️ Erasure
Request deletion of your data, where no legal basis remains for retention.
⏸️ Restriction
Ask us to limit how we use your data in certain circumstances.
📦 Portability
Receive your data in a structured, machine-readable format.
🚫 Objection
Object to processing based on legitimate interests.
To exercise any of these rights, please email hello@checkpointux.com. We will respond within one month. There is no charge for making a request.
You also have the right to lodge a complaint with the UK’s data protection regulator, the Information Commissioner’s Office (ICO), if you believe your data has been mishandled. You can contact the ICO at ico.org.uk or on 0303 123 1113.
9. Security
We take reasonable technical and organisational measures to protect your personal data against unauthorised access, loss, or disclosure. Our website is served over HTTPS, and we limit access to any personal data to what is strictly necessary.
No method of transmission over the internet is completely secure, however, and we cannot guarantee absolute security.
10. Third-Party Links
Our website may contain links to third-party websites (for example, LinkedIn or external resources). We are not responsible for the privacy practices of those sites and recommend you review their privacy policies separately.
11. Changes to This Policy
We may update this privacy policy from time to time. The current version will always be available on this page, with the date it was last updated shown at the top. We will notify you of significant changes where we hold contact details for you.
Questions or requests about your data?
Contact us at any time:
Data Controller: Checkpoint UX (sole trader), England & Wales
Supervisory Authority: Information Commissioner’s Office (ICO) — ico.org.uk