Privacy Policy

1. Who we are

Karl George Governance ("we", "us") is the data controller for personal data processed via karlgeorge.com. You can contact us via the Contact page.

2. Data we collect

• Analytics data: pseudonymous information about how you use the Site — pages viewed, referring site, browser type, approximate location (country/city level).
• Contact form data: name, email and message content if you submit the contact form.
• Cookies: see our Cookie Policy for the full list.

We do not knowingly collect data from anyone under 18.

3. Lawful basis

• Consent — for non-essential cookies and analytics.
• Legitimate interest — for protecting the Site against fraud and abuse.
• Performance of a contract — if you make an enquiry that we respond to.

4. How we use data

To operate and improve the Site, respond to enquiries, prevent abuse, and measure (in aggregate) which content is most useful to readers. We do not sell personal data.

5. Third parties

Hosting, analytics and security services may process personal data on our behalf. We use reputable providers with appropriate data-processing agreements. Affiliate links open in a new window on the operator's own domain — once you click through, the operator's privacy policy applies.

6. Retention

Contact form data is retained for 12 months after our last reply. Analytics data is retained in aggregate for up to 26 months.

7. Your rights

Under UK GDPR you have the right to access, correct, delete, restrict or object to processing of your personal data, and to data portability. Requests can be made via the Contact page. You also have the right to complain to the Information Commissioner's Office.

8. International transfers

Some of our service providers operate outside the UK. Where this is the case we ensure appropriate safeguards (adequacy decisions or standard contractual clauses) are in place.

9. Changes

We may update this policy. The "last updated" date reflects the most recent revision.