Privacy Policy

Ryterly Publishing (“Ryterly”, “we”, “us”) is a publishing services company based in the United Kingdom. We are the data controller for personal information collected through this website and our services.

Contact: [email protected]

We collect personal data in the following ways:

• Contact and enquiry forms — your name, email address, phone number (optional), and the message you submit.
• Intake (quote request) forms — your name, email, phone number (optional), project details (genre, word count, timeline, budget range), and service requirements.
• Payment information — when you purchase a service, payments are processed securely by Stripe. We do not store your card details. Stripe provides us with your name, email, and a payment confirmation.
• Technical data — basic server logs (IP address, browser type, pages visited) retained for security and performance purposes.

We do not collect sensitive personal data (such as health or financial history).

We use your personal data to:

• Respond to your enquiries and provide quotes
• Deliver the publishing services you have purchased
• Send transactional emails (order confirmations, project updates)
• Maintain records of our business relationship
• Comply with legal obligations

We do not use your data for automated decision-making or profiling. We do not sell your data to third parties.

We process your data on the following legal bases under UK GDPR Article 6:

• Contract — processing is necessary to fulfil a service you have purchased or requested a quote for.
• Legitimate interests — responding to enquiries and communicating about services you have expressed interest in.
• Legal obligation — retaining financial records as required by UK law.

We work with the following trusted third parties who may process your data on our behalf:

• Stripe — payment processing. Your payment data is handled directly by Stripe under their privacy policy. Stripe is PCI-DSS compliant.
• Supabase — secure database hosting for order and lead records. Data is stored on servers in the EU/EEA.
• Resend — transactional email delivery (order confirmations, enquiry acknowledgements).
• Vercel — website hosting and infrastructure (UK/EU region).
• Google Fonts — fonts are loaded via Google's CDN. Your browser may send your IP address to Google when fonts are requested. See Google's Privacy Policy for details.

All third-party processors are contractually obligated to handle your data securely and only for the purposes we specify.

This website uses only essential cookies necessary for the site to function (for example, Stripe sets cookies to protect against fraud during checkout).

We do not use analytics cookies, advertising cookies, or any tracking pixels. We do not use Google Analytics.

We retain your personal data for the following periods:

• Enquiries and quote requests — up to 2 years from the date of submission, unless you request earlier deletion.
• Order records — 7 years from the date of purchase, as required by UK financial regulations.
• Technical logs — up to 90 days.

Once your data is no longer needed, we delete or anonymise it securely.

You have the following rights regarding your personal data:

• Right of access — request a copy of the personal data we hold about you.
• Right to rectification — ask us to correct inaccurate or incomplete data.
• Right to erasure (“right to be forgotten”) — ask us to delete your data, subject to legal retention requirements.
• Right to restrict processing — ask us to limit how we use your data while a concern is resolved.
• Right to data portability — receive your data in a machine-readable format.
• Right to object — object to processing based on legitimate interests.

To exercise any of these rights, email us at [email protected]. We will respond within 30 days.

You also have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk.

We implement appropriate technical and organisational measures to protect your data against unauthorised access, loss, or disclosure. These include encrypted communications (HTTPS), access controls on our database, and working only with reputable processors.

No method of data transmission over the internet is 100% secure. If you have concerns about a specific data security matter, please contact us.

We may update this privacy policy from time to time. The “Last updated” date at the top of this page reflects when the most recent changes were made. We encourage you to review this page periodically.

For any privacy-related questions or to exercise your rights, please contact:

Ryterly Publishing
Email: [email protected]