Privacy Policy

Last updated: 09th January 2026

This Privacy Policy explains how Hanelore.com (“we”, “us”, “our”) collects, uses, discloses, and safeguards your information when you visit https://hanelore.com (the “Website”) or use our services.

We are committed to protecting your privacy and handling your personal data transparently and responsibly, in compliance with the UK GDPR, EU GDPR, and applicable data protection laws.

1. Who We Are

Data Controller
Website: https://hanelore.com
Email: [email protected]

For the purposes of data protection law, we are the data controller responsible for your personal data.

2. What Personal Data We Collect

We may collect and process the following categories of personal data:

a) Information You Provide Directly

  • Name
  • Email address
  • Business name and website
  • Any information you submit via:
    • Contact forms
    • Service enquiries
    • Newsletter sign-ups
    • Strategy calls or bookings

b) Automatically Collected Data

When you visit the Website, we may automatically collect:

  • IP address
  • Browser type and version
  • Device information
  • Pages visited and time spent
  • Referring URLs

This data does not usually identify you directly but may be considered personal data under GDPR.

3. How We Use Your Data

We use your personal data for the following purposes:

  • To provide and deliver our AEO consultancy services
  • To respond to enquiries and communicate with you
  • To send newsletters and updates (where you have opted in)
  • To analyse website performance and improve our services
  • To run and measure advertising campaigns
  • To comply with legal and regulatory obligations

We will never sell your personal data.

4. Legal Bases for Processing (GDPR)

We process personal data under the following lawful bases:

  • Consent – when you sign up to newsletters or marketing communications
  • Contract – when data is required to deliver services you’ve requested
  • Legitimate Interests – for analytics, website optimisation, and business development
  • Legal Obligation – where required by law

You may withdraw consent at any time.

5. Analytics (Google Analytics)

We use Google Analytics, a web analytics service provided by Google LLC.

Google Analytics uses cookies and similar technologies to analyse how users interact with the Website. The information generated (including IP addresses) may be transmitted to and stored by Google on servers outside the UK/EU. We use Google Analytics to:

  • Understand website traffic and usage patterns
  • Improve content and user experience

Where required, IP anonymisation is enabled. You can opt out of Google Analytics via browser settings or Google’s opt-out tools.

6. Advertising (Meta / Facebook Ads)

We use Meta (Facebook) advertising tools, including the Meta Pixel. These tools may collect or receive information from our Website and use it to:

  • Measure ad performance
  • Deliver targeted advertisements

Meta may process this data in accordance with its own privacy policies. You can manage ad preferences directly through your Facebook account.

7. Email Marketing & Newsletters (Kit)

We use Kit (formerly ConvertKit) to manage email subscriptions and newsletters. When you sign up:

  • Your name and email address are stored securely by Kit
  • Emails are only sent with your explicit consent

You can unsubscribe at any time using the link in any email. Kit processes data in accordance with GDPR and applies appropriate safeguards for international data transfers.

8. Cookies

Our Website uses cookies and similar technologies to:

  • Enable core functionality
  • Analyse traffic
  • Support advertising efforts

Where required by law, we display a cookie consent banner allowing you to manage preferences. You can also disable cookies via your browser settings, though some site features may not function correctly.

9. Data Sharing & Third Parties

We may share your data with trusted third-party service providers, including:

  • Analytics providers (Google)
  • Advertising platforms (Meta)
  • Email marketing platforms (Kit)
  • Booking, hosting, and technical infrastructure providers

All third parties are required to handle data securely and lawfully.

10. International Data Transfers

Some of our service providers are located outside the UK or EU.

Where data is transferred internationally, we rely on:

  • Adequacy decisions
  • Standard Contractual Clauses (SCCs)
  • Other lawful safeguards under GDPR

11. Data Retention

We retain personal data only for as long as necessary to:

  • Fulfil the purposes outlined in this Policy
  • Meet legal, accounting, or regulatory obligations

You may request deletion of your data at any time, subject to legal requirements.

12. Your Rights Under GDPR

You have the right to:

  • Access your personal data
  • Request correction of inaccurate data
  • Request deletion (“right to be forgotten”)
  • Restrict or object to processing
  • Withdraw consent at any time
  • Request data portability

To exercise your rights, contact us at: [insert email]

13. Data Security

We implement appropriate technical and organisational measures to protect personal data, including:

  • Secure hosting
  • Access controls
  • Encryption where applicable

14. Children’s Data

This Website is not intended for children under the age of 16.
We do not knowingly collect data from children.

15. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated “Last updated” date.

16. Contact

If you have questions about this Privacy Policy or how we handle your data, contact:

Hanelore Dumitrache
Website: https://hanelore.com
Email: [email protected]