Client login
Michael Wood Web Dev • Plugins CRMs • Automation
Let’s build something
Legal

Privacy Policy

Last updated: 1 May 2026

This Privacy Policy explains how Michael Wood Web & Automation (“I”, “me”, “my”) collects, uses, and protects personal data when you use michaelwood.tech.

I am UK-based and operate as a sole trader. For data protection law, I am the data controller.

Contact details

What data I collect

I may collect the following personal data:

  • Contact enquiries: name, email address, message content, and optional details you provide (e.g. website, phone).
  • Newsletter subscribers: email address (and optionally name if you supply it).
  • Client and project data: contact details, business details, billing details, and information needed to quote for or deliver services.
  • Payment data: if you pay by bank transfer, payment-related details may include payer name, payment reference, invoice details, amount paid, and payment status. If you pay via Stripe, I may receive limited payment-related information such as your name, email address, billing details, payment status, and transaction reference.
  • Technical data: IP address, device/browser info, approximate location (e.g. city), pages visited and timestamps.

How I use your data

  • To respond to enquiries and provide quotes / next steps
  • To provide and manage services (where agreed)
  • To issue invoices, payment links, and keep payment records
  • To process or record payments made by bank transfer or Stripe
  • To send newsletter emails (only if you subscribe)
  • To keep the site secure and prevent spam/abuse
  • To measure website performance (only if you consent to analytics cookies)

Legal bases (UK GDPR)

Depending on the situation, I rely on the following legal bases:

  • Consent: newsletter signups, non-essential cookies (analytics/marketing).
  • Legitimate interests: replying to enquiries, protecting the site from abuse, basic service administration.
  • Contract: where you engage me for paid services, including quotes, invoicing, payment administration, and delivery of agreed work.
  • Legal obligation: where I need to keep accounting, tax, or transaction records.

Payments

I may accept payment by bank transfer or by Stripe payment link.

If you pay by bank transfer, I will process the payment information necessary to reconcile the payment, maintain records, and manage the services provided.

If you pay using a Stripe payment link, your payment is processed by Stripe. Stripe may collect and process personal data including your name, email address, billing information, payment method information, transaction details, and other data necessary to complete and protect the payment transaction.

I do not store your full card details on my own servers. Stripe acts as a separate payment services provider and operates under its own privacy terms. You can read Stripe’s privacy information here: Stripe Privacy Policy.

Cookies and tracking

This site uses essential cookies to function. Analytics and marketing cookies (if used) are only activated after consent. See the Cookie Policy for details and cookie choices.

Newsletter (marketing) emails

If you subscribe, I will send occasional emails about web development, launches, and relevant service updates. My newsletter system is a custom build. You can unsubscribe at any time using the link in any email.

Data sharing

I do not sell your data. I may share limited data with trusted providers required to operate the website and deliver services, such as hosting providers, email infrastructure providers, and payment service providers.

For example, where relevant, personal data may be shared with:

  • Stripe – to create and process payment links and transactions
  • Hosting and infrastructure providers – to run the website and related systems
  • Email service providers – to deliver transactional or newsletter emails

Where third parties process data, they do so under appropriate safeguards and only where necessary for the relevant purpose.

International transfers

Some providers may process data outside the UK. Where this occurs, appropriate safeguards are used (for example, contractual protections or other lawful transfer mechanisms).

How long I keep data

  • Enquiries: typically up to 12 months (unless you become a client).
  • Client/project records: for as long as reasonably necessary to provide services and manage the client relationship.
  • Payment and accounting records: for as long as required for accounting, tax, and legal purposes.
  • Newsletter subscriptions: until you unsubscribe.
  • Security logs: short-term, for abuse prevention.

Your rights

Under UK GDPR, you have rights including:

  • Access to your personal data
  • Correction of inaccurate data
  • Deletion of your data (in certain cases)
  • Restriction or objection to processing (in certain cases)
  • Withdrawal of consent (where processing is based on consent)

You can also lodge a complaint with the Information Commissioner’s Office (ICO) in the UK.

Contact

If you have any questions, contact: hello@michaelwood.tech .