Privacy Policy

Introduction

At Millen Digital Solutions Ltd, we are committed to protecting your privacy while delivering tailored digital solutions. This policy explains how we collect, use, and safeguard your personal data in compliance with the UK GDPR and the Data (Use and Access) Act 2025/2026.

Data We Collect

We only collect data necessary to provide our services and manage our business relationship:

Service Data: Information provided to us to fulfill projects (e.g., website content, employee lists for email setup).

Identity & Contact Data: Name, business name, physical address, and your nominated billing email.

Technical Data: IP addresses, login data for managed hosting/email, and browser types.

How We Use Your Data

Suggested text: If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Cookies

We process your data under the following lawful bases:

• Performance of Contract: To deliver web design, hosting, or cybersecurity services.
• Legitimate Interests: To ensure network security and for internal administration.
• Legal Obligation: To comply with tax laws or regulatory requirements.

Data Sharing

We do not sell your data. We only share it with trusted third-party providers essential to your service (e.g., Microsoft 365, AWS, or payment processors). All third parties are contractually bound to protect your data.

Your “Digital Rights” & The “Stop the Clock” Rule

In accordance with the Data (Use and Access) Act 2026, you have the right to access, rectify, or request the deletion of your data.

“Stop the Clock” Provision: If you submit a Subject Access Request (SAR) that is broad or unclear, the Company reserves the right to pause the statutory response period (30 days). The “clock” will stop on the date we request clarification and will only restart once we have received the specific information required to process your request. This ensures we provide an accurate and proportionate response without compromising our service delivery to other clients.

Data Security

We implement industry-standard encryption. For hosting and email services, we strongly mandate the use of Multi-Factor Authentication (MFA). The Client acknowledges that failure to use MFA increases the risk of data compromise.

Complaints Procedure

If you have a concern regarding your data:

1. Submission: Email sales@millendigitialsolutions.co.uk.
2. Acknowledgment: We will acknowledge your complaint within 30 days.
3. Resolution: We aim to resolve all matters internally. Under 2026 UK law, you must generally attempt to resolve the issue with us before escalating to the Information Commissioner’s Office (ICO).

Contact Information

For any questions regarding this policy or your data rights, please contact:

Millen Digital Solutions Ltd. Repington Avenue, Atherstone, CV9 3AW

Email: sales@millendigitialsolutions.co.uk