Skip to main content

Legal

Privacy Policy

Last updated: April 2026

This Privacy Policy describes how Direct Signs ("we", "us", "our") collects, uses, and protects information about you when you use our website at directsigns.co.uk and our related services.

1. Who we are

Direct Signs is a UK sign manufacturer trading from England. We are the data controller for the personal information we hold about you under UK GDPR and the Data Protection Act 2018.

Contact: info@directsigns.co.uk

2. Information we collect

  • Information you give us: When you contact us, request a quote, place an order, or sign up to our newsletter, we collect your name, business name (where applicable), email, phone number, delivery address, and any details about your project.
  • Information collected automatically: Like most websites, we collect IP address, browser type, device information, pages visited, referral source, and approximate location. This is collected via cookies and analytics tools (see Cookie Policy).
  • Information from third parties: If you place an order through our shop, we receive transaction data from Shopify (our e-commerce platform).

3. How we use your information

  • To respond to your enquiries and provide quotes
  • To process and fulfil orders
  • To deliver our products and services
  • To send transactional emails (order confirmations, dispatch notifications)
  • To improve our website and services
  • To send marketing communications (where you have opted in)
  • To comply with our legal obligations

4. Lawful basis for processing

Under UK GDPR we process your personal information on the following lawful bases:

  • Contract: processing necessary to provide our products and services to you
  • Legitimate interests: for analytics, fraud prevention, and improving our services
  • Consent: for marketing communications and non-essential cookies
  • Legal obligation: for accounting, tax, and regulatory compliance

5. Sharing your information

We share your information only with:

  • Service providers who help us operate (Shopify, payment processors, delivery couriers, email services, hosting)
  • Professional advisers (accountants, legal advisers)
  • Law enforcement or regulators where legally required

We do not sell your personal information to third parties.

6. International transfers

Some of our service providers (e.g. Shopify, certain analytics tools) are based outside the UK. Where we transfer your information internationally, we use the safeguards required by UK GDPR (UK adequacy regulations or Standard Contractual Clauses).

7. How long we keep your information

We keep your personal information for as long as we need it for the purposes described, plus any retention period required by law (typically 6 years for accounting records, 7 years for tax records).

8. Your rights

Under UK GDPR you have the right to:

  • Access the personal information we hold about you
  • Correct inaccurate information
  • Request deletion (in certain circumstances)
  • Object to processing
  • Restrict processing
  • Data portability
  • Withdraw consent at any time (where processing is based on consent)

To exercise any of these rights, contact us at info@directsigns.co.uk. You also have the right to complain to the Information Commissioner's Office (ICO) at ico.org.uk.

9. Security

We use appropriate technical and organisational measures to protect your information. This includes HTTPS, access controls, and secure data storage.

10. Changes to this policy

We may update this Privacy Policy from time to time. The updated version will be posted on this page with a new "last updated" date.

11. Contact

For privacy questions or to exercise your rights, contact us at info@directsigns.co.uk.