Privacy Notice and GDPR

At hatched we are all for data privacy and welcome the latest General Data Protection Regulations (GDPR). Here’s how we comply with GDPR and Data Protection.

We believe it’s important to be as transparent and clear as possible when it comes to data collection. This document has been carefully put together in an effort to make all related information accessible and understandable by yourselves. If you have any further questions or there’s anything that’s unclear please email us and we’d be happy to help.

Who are hatched?

Hatched is a registered limited company working in the advertising and marketing space and are based in London, United Kingdom. We can be contacted by email at and by phone on +44 (0)20 3176 5292. Our office address is Hatched, 5th Floor, 79 Clerkenwell Road, London EC1R 5AR.

We are affected by GDPR in three areas

  1. How we collect and use data collected via our website (
  2. How we manage data as a result of being the data processor for a number of clients
  3. How we manage data and information gathered as a result of working with a client in our role as a data controller


There are some more details about each of these below.

Data from our website

Why we collect data from our website

Data collected from our website is used for one of two things; to help us understand how the website is being used so that we can improve the users’ online experience, and to allow us to receive enquiries via contact forms within the website.

What data is collected and how it’s used

When someone visits we use Google Analytics to collect standard internet log information and details of visitor behaviour patterns. We do this to find out things such as the number of visitors to the various parts of the site. This information is only processed internally and in a way which does not personally identify anyone. You can read more about their Terms and Conditions here: and

If you submit information through a contact form on our website, your personal data is collected through a form. This form includes your name, email address and any message you have written. These details are emailed to our email account and also get stored within our WordPress database (this is so that if the email fails we still have a record of your enquiry). The lawful basis for collecting data from the contact form is consent. You are required to check the field to agree to the terms set out in this privacy notice. If you don’t check this field you will be unable to submit the form.

How it’s stored

We use Google’s G Suite as our email provider and their Gmail service to access and store emails. This account is secured via strong passwords for each member of staff. You can read more about their privacy policy here:

The website database is securely hosted with Pressable and is only accessible by ourselves via a secure password. You can read more about their privacy policy here:

We do not actively share any of the information collected with third-parties outside of those listed above. It is used internally to help us improve our service to you.

Links to other websites

This website may contain links to websites run by other organisations. This Privacy Policy applies only to this website, so we encourage you to read the privacy statements on the other websites you visit. We cannot be responsible for the privacy policies and practices of other sites even if you access them using links from this website.

If we work together

We’re lucky to work with many great clients and, if you aren’t already, we think you should probably be one of them too. If we work together, there’s clearly going to be an increase in data collected and sharing as a result of a working relationship.

Our role as a data controller

As a client, inevitably there will be a large amount of information shared between both parties as part of a project. This will include information from yourselves for business reasons (to sign contracts etc), and perhaps details/access to services you may use if they need to be integrated into the new website in any way (for example, your MailChimp details). We have secure and planned processes in place for the collection and retention of this data and more specific details will be provided in a separate privacy document when we decide to work together.

Our role as a data processor

Often as part of website design and development projects there is a requirement to share user information and/or customer details between parties. In these instances it is the responsibility of the client to make their users/customers aware of this transfer of their information as deemed appropriate. When such data is passed to us, we ensure the data is stored securely and is only used for its intended project use. We retain this information for as long as is required for the completion of the project and then delete accordingly.

Transferring your information outside of Europe

As part of the services offered to you through this website, the personal information you provide may be transferred to countries outside the European Union (‘EU’).  By way of example, this may happen if any of our servers are, from time to time, located in a country outside of the EU. These countries may not have similar data protection laws to the UK. By submitting your personal information, you are agreeing to this transfer, storing, or processing. If we transfer your information outside of the EU in this way, we will take steps to ensure that appropriate security measures are taken with the aim of ensuring that your privacy rights continue to be protected.

Access to your personal information

You have the right to request a copy of your data or to ask us to delete any data that relates to you. If you would like to do so please email us at Please note that requests may take up to 30 days to process and we will require proof of identification prior to acting upon the request.

Changes to this privacy notice

This policy is under regular review. This policy was last updated in May 2018.