Privacy & Cookie Policy

This Privacy & Cookie Policy explains how WEBFWD LTD trading as Webforward (“Webforward”, “we”, “us”) collects, uses, shares and protects personal data. It applies to visitors to our websites, customers and their authorised users, and anyone who contacts us for information or support. We are the data controller for this data.

< Back to Legal Information

1. Who we are & how to contact us

WEBFWD LTD, Leonard House, 12-14 Silver Street, Tamworth, Staffordshire B79 7NH, United Kingdom.
Email: hello@webfwd.co.uk | Phone: 01827 781 311
For privacy questions or to exercise your rights, please contact us at the above email address.

2. What this policy covers

Our websites and portals (including the My Account area).
Provision of services such as website design, hosting, cloud and dedicated servers, email, and domain name services.
Sales, billing and customer support communications.

3. Data we collect

Identity & contact data: name, job title, company, email, phone, billing and service addresses.
Account & transaction data: services purchased, renewal dates, invoices, payment status (we do not store full card numbers).
Communications & support: emails, tickets, call notes and live chat transcripts.
Technical/credential data (service delivery): configuration details you provide (e.g., DNS, FTP, CMS admin).
Usage & log data: access logs, security logs and diagnostic information generated by our systems.
Cookie and device data: IP address, browser type, settings and identifiers (see Cookie section).

4. How we collect data

Directly from you when you create an account, purchase services, or contact us.
Automatically through our websites and systems (e.g., access logs, cookies).
From third parties (e.g., registries/registrars, payment providers) where necessary to provide services.

5. How we use your data & lawful bases

To provide and administer services, including provisioning, support, billing and renewals (Contract).
To communicate about service notices, security updates and changes (Legitimate Interests/Contract).
To maintain security, prevent fraud/abuse and ensure network integrity (Legitimate Interests/Legal Obligation).
To send service-related and product update communications to business contacts (Legitimate Interests).
To run analytics to improve our websites and services (Consent for non-essential cookies).
To comply with legal and regulatory obligations (Legal Obligation).

6. Sharing your data

Domain registries and registrars (e.g., Nominet for .UK and ICANN-accredited registrar partners for gTLDs).
Payment processors/merchants for transaction handling.
Infrastructure and hosting providers we use to deliver services (e.g., UK data centres, cloud providers).
Backup and storage services used for resilience and disaster recovery.
Professional service providers and subcontractors (under confidentiality and data-protection obligations).
Law enforcement or regulators where required by law, and prospective buyers/investors as part of a business transaction.

7. International transfers

Where we transfer personal data outside the UK or EEA, we use lawful safeguards such as the UK International Data Transfer Addendum (IDTA) or EU Standard Contractual Clauses (SCCs), and we implement appropriate technical and organisational measures to protect the data.

8. Data retention

Customer account and billing records: generally kept for 7 years for tax/accounting, then securely deleted.
Support tickets and operational correspondence: typically up to 24 months.
System and security logs: typically 12 months (longer if required for security or legal reasons).
Backups: retained on rolling schedules for disaster recovery; not intended as long-term archiving.
Domain registration data: retained in line with registry requirements and our contract obligations.

9. Security

Restricted access to systems and facilities; authentication and least-privilege controls.
Encryption in transit where supported, and at rest for select services.
Network and host security measures, including firewalls, monitoring and intrusion detection.
Regular patching and vulnerability management for managed platforms.
Vendor due diligence and contractual protections for our suppliers and subcontractors.

10. Your rights (UK GDPR)

You have the rights to be informed, access, rectification, erasure, restriction, portability, and to object (including to direct marketing), as well as rights regarding automated decision-making. To exercise your rights, contact hello@webfwd.co.uk. We may need to verify your identity. We aim to respond within one month.

11. Marketing

We may send business contacts information about our services that is relevant to their role. You can opt out at any time using the unsubscribe link in our emails or by contacting hello@webfwd.co.uk.

12. Cookies

Cookies are small text files stored on your device. We use cookies to make our websites work, remember your preferences, and—with your consent—analyse how our sites are used and improve performance.

Types of cookies we use

Strictly necessary: required for core functionality (e.g., secure login, checkout). No consent required.
Preferences/functional: remember choices (e.g., language).
Analytics/performance: help us understand site usage (set only with your consent).
Advertising/third-party: used by third parties to deliver features or measure campaigns (set only with your consent).

Managing your cookie preferences

On your first visit we present a cookie banner. You can accept all or manage preferences to opt in to non-essential cookies.
You can change or withdraw consent any time via the Cookie Settings link in the website footer (where available).
You can also block cookies in your browser settings. Blocking non-essential cookies won’t affect core functionality, but some features may not work as intended.

Analytics & third-party cookies

If enabled, we may use analytics services (e.g., Google Analytics) to collect aggregated usage statistics. Some pages may load content and cookies from third parties (e.g., embedded media, maps, or payment providers). These third parties control their cookies; please review their privacy policies for details.

13. Domains & WHOIS

When you register a domain through us, we share your details with the relevant registry/registrar to process the registration and manage the domain. Your details may be published in public WHOIS records in accordance with registry policy (with redaction/opt-out where available).

14. Children

Our services are intended for business users. We do not knowingly collect data relating to children.

15. Changes to this policy

We may update this policy from time to time to reflect changes in law or our services. Material changes will be posted on our website and, where appropriate, notified to you by email.

16. Complaints

If you are unhappy with how we handle your personal data, please contact us first so we can try to resolve it. You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO) at ico.org.uk.

Let's make something great together!

If you'd like to discuss your next project with us, please feel free to give us a call on 01827 781 311 or press the "Start My Project" button to get in touch for a quick quote.

Start My Project

Services

Quick Links

Get in touch

Webforward
Leonard House
12-14 Silver Street
Tamworth
Staffordshire B79 7NH

01827 781 311

ku.oc.dwfbew@olleh

Webforward is a trading name of WEBFWD LTD
Company No: 09217673
VAT No: GB200076175