Privacy Policy

We keep data collection to a minimum. This page explains what we collect, why we collect it, how long we keep it, how we secure it, and the rights you have under UK GDPR. If anything is unclear, contact us.

Controller: Saltaire Guide
Jurisdiction: UK GDPR
Last reviewed: 2025-10-12

Quick links

What we collect
Lawful bases
How long we keep data
Cookies & analytics
Your rights
Contact us

See also: Editorial policy, Corrections, About.

Who we are

Saltaire Guide ("we", "us") operates saltaireguide.uk. We're an independent, local guide to Saltaire. For privacy enquiries, email hello@saltaireguide.uk.

Data controller

Organisation: Saltaire Guide
Website: https://saltaireguide.uk
Email: hello@saltaireguide.uk
Jurisdiction: United Kingdom (UK GDPR & Data Protection Act 2018)

How to contact us

Corrections & accuracy: Email subject "Privacy: correction" if a page contains personal data or inaccuracies about you.
Data requests: Email subject "Privacy: request" to access, rectify, delete or restrict processing of your data.
Complaints: If unresolved, you can complain to the UK ICO. We prefer to resolve issues directly first.

What data we collect (and why)

We collect the minimum needed to run a helpful, safe website. We do not sell your data, run third-party advertising scripts, or buy personal information from brokers.

Contact details (you provide)

Examples: Name, email, message content
Purpose: Reply to your query; verify tips/corrections
Lawful basis: Consent; Legitimate interests

Technical logs (automatic)

Examples: IP (truncated/hashed), user-agent, URL, timestamp
Purpose: Security, abuse prevention, debugging
Lawful basis: Legitimate interests

Analytics (aggregated)

Examples: Page views, referrers, device categories
Purpose: Understand what's useful, fix UX issues
Lawful basis: Consent / Legitimate interests

Email newsletter (optional)

Examples: Email address, opt-in timestamp
Purpose: Send updates and service emails
Lawful basis: Consent

User contributions

Examples: Tips, route corrections, photos
Purpose: Editorial verification and publication
Lawful basis: Consent; Legitimate interests

Category	Examples	Purpose	Lawful basis (UK GDPR)
Contact details (you provide)	Name, email, message content	Reply to your query; verify tips/corrections; manage media permissions	Consent; Legitimate interests (running a responsive local guide)
Technical logs (automatic)	IP (truncated/hashed where possible), user-agent, URL, timestamp, error traces	Security, abuse prevention, debugging, service reliability	Legitimate interests (security & operations)
Analytics (aggregated)	Page views, referrers, device categories, approximate location (city/region)	Understand what's useful, fix UX issues, plan content	Consent where required; otherwise Legitimate interests (low-risk, privacy-respecting analytics)
Email newsletter (optional)	Email address, opt-in timestamp	Send "The Saltaire Weekend" and essential service updates	Consent (you can unsubscribe anytime)
User contributions	Tips, route corrections, photos you send us	Editorial verification and publication decisions	Consent; Legitimate interests (publishing a community resource)

Special category data

We don't seek special category data (e.g., health, beliefs). If such details are included in your message, we'll delete or redact them unless strictly necessary to handle your request (e.g., accessibility feedback).

Our lawful bases

Under UK GDPR, we rely on a small set of lawful bases appropriate for a content site:

Consent -- when you subscribe to email updates or explicitly opt-in to analytics cookies.
Legitimate interests -- operating a secure website, preventing abuse, measuring what content is useful in a privacy-respecting way, and responding to messages you send us.
Contract -- if we agree to provide something you request directly (e.g., commissioned content).
Legal obligation -- where we must keep certain records or respond to lawful requests.

How long we keep data

We keep data only as long as needed for the purpose collected, then delete or anonymise it.

Contact form & email threads

Retention: Up to 24 months
Notes: Follow up on editorial issues; delete earlier on request.

Server/access logs

Retention: 30-90 days
Notes: Security & reliability; longer temporarily for incident review.

Analytics aggregates

Retention: Up to 26 months
Notes: Trend analysis only; we avoid storing raw IPs.

Newsletter list

Retention: Until you unsubscribe
Notes: Minimal suppression record kept.

User contributions (published)

Retention: As long as published
Notes: Remove or amend on request if appropriate.

Data	Typical retention	Notes
Contact form & email threads	Up to 24 months	So we can follow up on long-running editorial issues; delete earlier on request.
Server/access logs	30-90 days	Security & reliability. Shorter where feasible; longer temporarily for incident review.
Analytics aggregates	Up to 26 months	Trend analysis only; we avoid storing raw IPs where possible.
Newsletter list	Until you unsubscribe	We keep a minimal suppression record so we don't email you again by mistake.
User contributions (published)	As long as published	We'll remove or amend on request if appropriate.

Cookies & analytics

We aim to run with light, privacy-respecting analytics and essential cookies only. If we introduce optional analytics or preferences cookies, you'll see a clear choice.

Cookie categories

Strictly necessary -- security, load balancing, basic site functions. Always on.
Functional -- saves simple preferences (e.g., text size). Optional.
Analytics -- aggregated usage to improve content. Optional where consent is required.

Your choices

You can block or delete cookies via your browser settings. If we add an on-site cookie control, you'll find it linked from this page and the footer.

We don't use cross-site advertising trackers.

Security & international transfers

We use reputable providers with modern security practices (HTTPS, encryption in transit, access controls). Data may be processed outside the UK/EEA where providers operate; where that happens, appropriate safeguards (such as UK IDTA/EU SCCs) are used.

Your rights

Under UK GDPR you can ask us to access, correct, delete or restrict your data; to object to certain processing; and to provide a portable copy of data you provided. Where our basis is consent, you can withdraw it at any time. We'll respond within one month where feasible.

Right of access (copy of your data we hold)
Right to rectification (fix inaccurate data)
Right to erasure ("right to be forgotten")
Right to restriction (pause certain processing)
Right to object (e.g., analytics on legitimate interests)
Right to data portability (copy in a common format)
Right to withdraw consent (for optional features)

To exercise rights, email hello@saltaireguide.uk. If unresolved, you can complain to the UK Information Commissioner's Office (ICO).

Children

Our site is aimed at a general audience. We don't knowingly collect personal data from children under 13. If you believe a child has provided personal data, contact us and we'll delete it.

Changes & how to contact us

We'll update this policy when our practices change. Significant changes will be highlighted on this page with a new review date.

Contact

Email: hello@saltaireguide.uk

For faster handling, include "Privacy" in the subject and tell us what right you wish to exercise.

Who we are

What data we collect (and why)

Contact details (you provide)

Technical logs (automatic)

Analytics (aggregated)

Email newsletter (optional)

User contributions

Special category data

Our lawful bases

How long we keep data

Contact form & email threads

Server/access logs

Analytics aggregates

Newsletter list

User contributions (published)

Who we share data with

Cookies & analytics

Security & international transfers

Your rights

Children

Changes & how to contact us