Privacy Policy

We have updated our Privacy Policy to make it even easier for you to find out how we use and protect your information within the Webforward Group. The new update to our privacy policy will inform you of additional security measures, such as how we use your information, the types of information that Webforward collects about you and changes to how we protect your privacy.



What types of information do we collect?


We need specific data from our customers to enable us to provide our products and services. You provide us with some of this information directly, when you create a new account or hosting/domain name services or contact us for support. We will only ask you to provide information that is critical to us providing these services, some of the information we collect can include the following:


Your name and contact information: We collect your first and last name (or the name of the account holder), email address, registered business address (or personal address if not a registered business), contact telephone number and similar contact information.


Payment Data: Webforward retains a transaction history of any purchases made for products and services. This is also vital for accounting purposes.


Chat Records: We have a number of channels where clients can get in touch with us. This includes calls, emails and live web chat. This allows us to offer you the best possible customer service.


Credentials: We only collect communications from you to us when necessary to provide you with the products you use. For example, FTP information to access your website, website files, email conversations or information that you provide to us for customer support. When you contact us, phone conversations and chat sessions with our team may be monitored and recorded.


How do we use this information?


We use the data we collect to provide you with the products that we offer. We may also use the data you have provided to communicate with you. For example, we may contact you by phone or email to inform you when you have a domain name or hosting service due for renewal, let you know when security updates need to be completed, invite you to participate in a survey or to ask you for feedback on our services.


How is this information shared?


Although we do not sell your information, we do need to share your data from time to time with other providers. We share your information in the following ways:


Third-party integrations: When you make a Debit/Credit Card payment to us, we share information regarding your transaction to Stripe, our payment merchant, in order to complete your transaction. Webforward does not store your debit/credit card information, this is stored as a unique token with Stripe.


Domain Name Purchases: When we register a Domain Name on your behalf, we must share some of your information with our providers to complete the registration of your domain name. This includes your name, email address and postal address. From May 25th, your personal information will no longer be visible on the .UK WHOIS register unless you would like to opt in for your data to be displayed.


New Owners: If ownership or control of part or all of our services changes, we may transfer your information or assets to the new owner.


Webforward may also be obliged to disclose your personal information to meet any legal or regulatory requirements (for example to comply with a court order) or obligations in accordance with applicable law.

Where we store your personal data


Any information that you provide to us is stored within the European Economic Area (“EEA”). It will also be processed by staff operating inside the EEA who work for us. These members of staff will be active in fulfilling your orders, processing your payments or providing support services. By submitting your personal data, you agree to this transfer, storing or processing. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this privacy policy.

  1. Where we have given you (or where you have chosen) a password which enables you to access certain parts of our website, such as your client control panel, you are responsible for keeping this password confidential. We ask you not to share this password, or any others with anybody.
  2. Unfortunately, the transmission of information via the internet is not completely secure. Although we do our very best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access. Webforward does not store any Payment or Credit Card information.
  3. Webforward stores data in several locations, depending on the product or service. We store our data and applications via:
    1. Webforward’s dedicated servers located in Sheffield with HA Hosting Ltd. Our servers are held in keycard controlled racks with separate keys for the front and back locks. All access to the building is via key fob with airlock style doors, logged and checked daily by HA Hosting.

      There is CCTV constantly recording which operates both inside and outside of the building. The alarms and access control is monitored by AMCO (The Alarm Monitoring Company Limited).
    2. We may from time to time temporarily store files on AWS (Amazon Web Servers) who are fully GDPR compliant.
    3. Webforward’s office storage volume is backed up in real time to Backblaze Cloud Storage facilities who are also fully GDPR compliant.
  4. Webforward has a secure development and data protection policy in place, as well as a number of physical, procedural and software based methods to protect your data. This includes:
    1. Dedicated firewalls which block all except essential ports from accessing our servers.
    2. We ensure that all access to our systems is performed over SSL where supported by the client web browser.
    3. All remote access from and to our offices is performed over encrypted links
    4. All Webforward shared hosting servers are configured with intrusion detection systems which look out for suspicious events such as: Remote logins outside of office hours, software installations and service modifications. Clients with Dedicated VPS Services are required to ensure that these measures are in place.

Keeping your information


We’ll keep your information for as long as you have a relationship with us. After our relationship ends, we may keep hold of some of your information, even after you have closed your account to help us to respond to queries or complaints, or for other reasons e.g, responding to requests from regulators.


How will we notify you of changes to this policy?


We’ll notify you before we make changes to this policy and give you the opportunity to review and comment on the revised policy before continuing to use our Services.


How to access to your information


You can write to us at any time to obtain details of the personal information we may hold about you. Please write to: hello@webfwd.co.uk or Webfwd Ltd, Suite 10, Offa House, Orchard Street, Tamworth, Staffordshire, B79 7RE. Please quote your name and address together with your mobile and/or account number (if relevant).

We will take all reasonable steps to confirm your identity before providing you with details of any personal information we may hold about you.