Privacy Policy
1. Introduction
growthvibe is committed to protecting your privacy and handling your personal data responsibly. This privacy policy explains how we collect, use, store, and protect your personal information when you visit our website (growthvibe.com) or engage with our services.
growthvibe is a trading name of growthvibe HQ Ltd, a company registered in England and Wales under company number 17060985, with its registered office at 131 Finsbury Pavement, London, EC2A 1NT, UK.
For the purposes of data protection legislation, we are the data controller. If you have any questions about how we handle your personal data, please contact us using the details in Section 12.
2. Information We Collect
2.1 Information You Provide Directly
We collect personal data that you voluntarily provide to us, including:
- Name and job title
- Email address
- Phone number
- Company name and website
- Billing and payment information
- Any information you include in correspondence, enquiry forms, or during discovery calls
2.2 Information We Collect Automatically
When you visit our website, we may automatically collect certain technical data, including:
- IP address
- Browser type and version
- Operating system
- Pages visited, time spent on pages, and navigation paths
- Referring website or source
- Device information
This data is collected through cookies and similar technologies. See Section 8 for our cookie policy.
2.3 Information from Third Parties
We may receive personal data about you from third-party sources, including publicly available business information (e.g., LinkedIn, Companies House), referral partners who introduce you to our services, and analytics providers such as Google.
3. How We Use Your Information
We use your personal data for the following purposes:
| Purpose | Lawful Basis | Details |
|---|---|---|
| Providing our Services | Contract | Delivering AEO/GEO consultancy, audits, reports, and strategies as agreed |
| Communicating with you | Legitimate interest / Contract | Responding to enquiries, sending project updates, sharing relevant content |
| Marketing and thought leadership | Consent / Legitimate interest | Sending newsletters, articles, event invitations, and service updates |
| Invoicing and payment | Contract / Legal obligation | Processing payments and maintaining financial records |
| Improving our website and services | Legitimate interest | Analysing website usage, improving user experience, and refining our methodology |
| Legal compliance | Legal obligation | Meeting tax, accounting, and regulatory obligations |
4. Who We Share Your Data With
We do not sell your personal data to third parties. We may share your data with the following categories of recipients where necessary:
- Payment processors — for invoicing and payment collection
- Email and CRM platforms — for managing communications (e.g., Attio, email service providers)
- Analytics providers — for website usage analysis (e.g., Google Analytics)
- Cloud hosting providers — for secure data storage
- Professional advisers — such as accountants and legal advisers, where necessary
- Law enforcement or regulatory bodies — where required by law
All third-party service providers are required to process your data in accordance with applicable data protection laws and only for the purposes we specify.
5. International Transfers
Some of the third-party services we use may process your data outside the United Kingdom. Where this occurs, we ensure that appropriate safeguards are in place, such as standard contractual clauses approved by the UK Information Commissioner's Office (ICO), or adequacy decisions recognising the receiving country's data protection standards.
6. Data Retention
We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected. Our general retention periods are:
- Client data — for the duration of the engagement and six (6) years thereafter for legal and accounting purposes
- Enquiry and prospect data — for up to two (2) years from last contact, unless you opt out sooner
- Website analytics data — in accordance with our analytics provider's retention settings (typically 14-26 months)
- Marketing consent records — for as long as consent remains valid, plus a reasonable period for audit purposes
7. Your Rights
Under UK data protection legislation, you have the following rights:
- Right of access — to request a copy of the personal data we hold about you
- Right to rectification — to request correction of inaccurate or incomplete data
- Right to erasure — to request deletion of your data where there is no compelling reason for continued processing
- Right to restrict processing — to request that we limit how we use your data
- Right to data portability — to receive your data in a structured, commonly used format
- Right to object — to object to processing based on legitimate interests or for direct marketing purposes
- Right to withdraw consent — where processing is based on consent, you may withdraw it at any time
To exercise any of these rights, please contact us using the details in Section 12. We will respond to your request within one month.
If you are not satisfied with how we handle your request, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.
8. Cookies
Our website uses cookies and similar technologies to enhance your browsing experience and to help us understand how our website is used.
8.1 Types of Cookies We Use
- Strictly necessary cookies — required for the website to function (e.g., session management)
- Analytics cookies — to understand how visitors interact with our website (e.g., Google Analytics)
- Marketing cookies — to deliver relevant content and measure the effectiveness of our marketing
8.2 Managing Cookies
You can manage your cookie preferences through your browser settings. Most browsers allow you to refuse cookies or to alert you when cookies are being sent. Please note that disabling cookies may affect the functionality of our website.
9. Data Security
We take appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, destruction, or alteration. These measures include encrypted data transmission (SSL/TLS), access controls and authentication, regular security reviews, and secure cloud infrastructure.
While we take all reasonable precautions, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee the absolute security of your data.
10. Children's Privacy
Our website and services are not directed at individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have inadvertently collected personal data from a child, we will take steps to delete it promptly.
11. Changes to This Policy
We may update this privacy policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. Any changes will be posted on this page with an updated revision date. We encourage you to review this policy periodically.
12. Contact Us
If you have any questions about this privacy policy, wish to exercise your data protection rights, or have a concern about how we handle your data, please contact us:
Data Controller: growthvibe (trading name of growthvibe HQ Ltd)
Email: info@growthvibe.com
Phone: +44 (0) 20 8050 3107
Address: 131 Finsbury Pavement, London, EC2A 1NT, UK
Website: growthvibe.com