How this site handles personal data.

This privacy policy applies to the BaseLayer Digital site itself. It explains what personal data is handled through this site, why it is used, how long it is kept, and where third-party infrastructure or search-engine activity sits outside direct editorial control.

Policy scope

This notice is about this site, not every future client build.

This site keeps its direct data footprint deliberately small. At the time of writing, the site itself does not run advertising technology, retargeting tags, or an active analytics stack. The persistent storage used by the site itself is the accessibility/runtime preference layer and the consent-preference layer.

Data handled by this site.

This website is publicly available on the web and therefore necessarily processes certain technical request data when a visitor opens a page, including IP-address level connection data, browser and device headers, and other standard request metadata required to deliver web content. In addition, the site stores accessibility/runtime preferences and consent preferences when a visitor actively chooses those settings.

Handled directly by the site

Accessibility, display, motion, and reading preferences chosen by the visitor
Consent-preference state once a visitor makes a storage choice
Standard server request data needed to deliver pages securely

Not currently active in site code

No analytics layer
No marketing pixels
No third-party ad network scripts
No account, checkout, or customer portal system on this site itself

Purposes and retention.

Accessibility/runtime preferences are processed so the site can reopen in the state a visitor asked for, rather than forcing that person to rebuild their reading environment on every visit. Consent preferences are processed so the site can remember whether optional storage categories were accepted, declined, or customised.

That preference data is not used for advertising, profiling, or behavioural targeting. Standard request-level data is processed to deliver the site, maintain security, and diagnose faults. Public pages may also be crawled and indexed by search engines in the ordinary course of operating a public website.

Retention

Local preference data remains in the browser until it is cleared by the visitor, reset through the engine, or replaced with a new choice. Security, delivery, and infrastructure logs are retained only for as long as reasonably necessary for delivery, security, technical administration, or lawful business record-keeping.

Third-party infrastructure and search engines.

The live site is delivered through Cloudflare as a third-party hosting, CDN, security, and performance layer. Cloudflare may therefore process connection metadata, caching behaviour, security events, and similar delivery information as part of serving the site. That infrastructure layer should be understood as a third-party service provider rather than as a bespoke in-house network stack.

Public pages may also be crawled, indexed, cached, and summarised by search engines. Search Console and similar webmaster tools may report on crawling and indexing status, but BaseLayer Digital does not control whether any search engine crawls, indexes, ranks, snippets, or otherwise presents a page. Search-engine behaviour is external to the editorial control of this site.

Rights and complaints.

If you are entitled to make a data-rights request relating to this site, you may ask for access, correction, deletion, objection, or restriction where the law provides that right. This site does not currently publish a public personal email address for those requests. Existing clients or correspondents should use the contact route already provided to them. Once a public business contact route is published for general use, this policy will be updated to reflect it.

You may ask for confirmation of whether personal data about you is being processed.
You may ask for inaccurate data to be corrected.
You may ask for erasure where there is no lawful reason to retain the data.
You may object to processing or ask for it to be restricted where the law allows.
You may complain to the UK Information Commissioner's Office if you believe personal data has been handled unfairly or unlawfully.

This policy covers the public BaseLayer Digital site itself. A separate client project, third-party builder account, payment provider, booking system, or ecommerce service may operate under its own privacy terms and should be reviewed separately where it applies.

Want the practical layer behind this policy?

See the package routes and support plans in full.

The packages page explains how custom builds, builder platforms, and ongoing service plans fit different businesses in practice.

View packages