GDPR Compliance Protocol

Data Retention Policy:
- Initial Contract Period: Client data remains stored for up to 12 months from the contract commencement.
- Purpose: Data is strictly utilized for essential communications and collaborative purposes.
- Cancellation: Upon service termination, pertinent account information continues to be retained.
- Payment & Invoicing: Kept for 6 years to comply with HMRC and tax guidelines.

Retention of Account Campaign Data (up to 12 months):
- Performance reports
- Analytical insights
- Task records
- Business-related correspondences (both within and beyond the initial agreement)
- Traffic metrics
- Relevant contact particulars
- Website documentation (where applicable)
- Other campaign or client account documents
- Account annotations
- Client input and feedback

Your Rights to Information:
- Initial Data Request: A complimentary copy of initially collected data is provided upon contract commencement.
- Subsequent Data Requests: May incur a nominal fee under certain conditions:
 - Frequent data retrieval requests
 - Requests for substantial data volumes over time
For further information on your 'Right of Access,' please visit [www.ico.com](http://www.ico.com).

GDPR Communication Guidelines:
- Consent for Communication: All parties must explicitly consent to receive further communications, encompassing:
 - Non-relevant phone calls
 - Unsolicited emails
 - Unauthorized digital or physical correspondences

Data Sharing Policy:
- No Sharing Without Consent: Data will not be disclosed to any third party, either internal or external, without prior written consent from the data owner.