Menu

Privacy Policy

Effective date: 23 February 2026

Website: https://lestervincent.com
Data controller: Lester Vincent trading as The Net Studios
Contact: admin@lestervincent.com | 16 Commerce Square, Nottingham NG1 1HS

This policy explains what personal data we collect, why we collect it, how we use and protect it, who we share it with, how long we keep it and the rights you have. It is written to meet UK and EU data protection expectations and to protect both your rights and our legitimate business interests. The policy is concise, transparent and actionable. For regulatory guidance we follow UK GDPR and ICO best practice.

Summary of key commitments

  • We collect only the personal data we need to provide services and run this website.
  • We rely on lawful bases such as consent, contract performance and legitimate interests.
  • We obtain clear consent for non‑essential cookies and record consent choices.
  • We limit retention to what is necessary and delete or anonymise data when no longer required.
  • We require processors to protect data under contract and use safeguards for international transfers.
  • We will respond to data subject requests promptly and follow legal breach notification rules.

Who we are

I am Lester Vincent trading as The Net Studios. My website address is https://lestervincent.com. We are the data controller for personal data collected via this site and in the course of client work.

What personal data we collect and why

Comments

When visitors leave comments we collect the information shown on the comments form, plus the commenter’s IP address and browser user agent string to help with spam detection and moderation. We may send an anonymised hash of your email to Gravatar to check for a profile image. After comment approval your profile image may be visible publicly next to your comment. Gravatar’s privacy policy applies to that service.

Media uploads

If you upload images or files, do not include embedded location data (EXIF GPS). Uploaded media may be downloadable by other visitors and could contain extractable metadata.

Contact forms and project briefs

When you contact us or submit a brief we collect contact details and project information you provide, including files. We use this data to respond, prepare proposals, deliver services and manage projects.

Account data

If you register on the site we store the information you provide in your user profile. You can view, edit or request deletion of this information at any time.

Communications

We keep records of emails, messages and meeting notes to manage projects and communications.

Analytics and logs

We collect usage data such as pages visited, referral source, IP address and device/browser information to improve the site and services. Analytics are used in aggregated or anonymised form where possible.

Cookies and similar technologies

We use cookies for essential site functions and for performance and analytics. We will obtain active consent for non‑essential cookies and provide clear information about what each cookie does. Essential cookies required to provide the service do not require consent. We keep records of cookie consents and provide a way to withdraw consent. For detailed guidance we follow ICO cookie rules.

Cookie details

  • Comment cookies: store name, email and website for one year if you opt in.
  • Login cookies: temporary cookie to check browser support; login cookies last two days; Remember Me persists two weeks; screen options cookies last one year.
  • Post edit cookie: indicates the post ID of an edited article for one day.
  • Analytics cookies: used to measure site performance and improve the user experience.

Embedded content from other websites

Pages may include embedded content such as videos or social posts. Embedded content behaves as if you visited the third‑party site directly. Those third parties may collect data about you, set cookies and track interactions. We are not responsible for third‑party privacy practices; check the privacy notices of those services.

Lawful bases for processing

We rely on one or more lawful bases under UK GDPR depending on the activity:

  • Contract performance for client work and project delivery.
  • Consent for marketing communications and non‑essential cookies.
  • Legitimate interests for site security, fraud prevention, analytics and improving services where those interests are not overridden by your rights.
  • Legal obligation where required by law. We will always identify the lawful basis relevant to a processing activity on request.

Who we share your data with

We share personal data only with trusted third parties when necessary to provide services or comply with legal obligations. Typical recipients include hosting and email providers, analytics providers, payment processors and contractors engaged under confidentiality agreements. We require contracts that impose data protection obligations on processors.

International transfers

If we transfer data outside the UK or EEA we will ensure appropriate safeguards such as standard contractual clauses or other lawful transfer mechanisms are in place before any transfer occurs.

How long we retain your data

  • Comments and metadata: retained indefinitely to recognise and approve follow‑up comments automatically unless you request deletion.
  • Project files and invoices: retained for six years for accounting and tax compliance.
  • Marketing opt‑ins: retained until you unsubscribe.
  • Analytics data: retained in aggregated or anonymised form where possible; raw logs are retained only as needed for security and performance.

If you request deletion we will remove personal data unless we are legally required to retain it.

Your rights

You have rights under data protection law including to access, rectify, erase, restrict processing, object to processing and request portability of your personal data. To exercise your rights contact admin@lestervincent.com. If you are unhappy with our response you may lodge a complaint with the Information Commissioner’s Office.

Where we send your data

Visitor comments may be checked through automated spam detection services. Uploaded files and form submissions may be stored with our hosting provider and backup services. We will document transfers and ensure processors provide adequate protection.

Automated decision making and profiling

We do not use automated decision‑making or profiling that produces legal effects or similarly significant impacts on individuals. Any automated processing is limited to technical or administrative purposes such as spam filtering and analytics aggregation.

Security and data protection measures

We implement appropriate technical and organisational measures to protect personal data, including secure hosting, access controls, TLS/HTTPS, password policies and regular backups. Access to client files is limited to authorised personnel and contractors under confidentiality obligations.

Data breach procedures

We maintain an incident response plan. In the event of a personal data breach we will contain and assess the breach, notify affected individuals and the ICO where required by law and take steps to prevent recurrence. We will follow applicable legal timeframes for notification.

Children

This site is not intended for children under 16. We do not knowingly collect personal data from children. If you believe we have collected data from a child, contact us and we will take steps to delete it.

Additional protections for you and for us

  • We do not sell personal data.
  • We will not use your data for purposes materially different from those disclosed without obtaining fresh consent.
  • We reserve the right to refuse or suspend service where data supplied is unlawful or poses a security risk.
  • We will keep records of processing activities and consents to demonstrate compliance.

Contact and complaints

For privacy questions, data requests or to exercise your rights contact: admin@lestercvincent.com. If you remain dissatisfied you may complain to the Information Commissioner’s Office. Guidance and contact details are available from the ICO.

Changes to this policy

We may update this policy to reflect changes in law, technology or business practices. The effective date at the top will be updated and material changes will be communicated where appropriate.