Contact Us

Privacy Policy

Last Updated: October 31, 2025

Introduction

At Lightest Night Ltd, we're committed to protecting your privacy and handling your personal data transparently. This Privacy Policy explains how we collect, use, store, and protect your information when you visit our website or use our services.

We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Who We Are

  • Data Controller: Lightest Night Ltd
  • Website: https://lightestnight.com
  • Contact Email: support@lightestnight.com
  • Company Registration: 12088982
  • Registered Address: Belmont Suite, Paragon Business Park, Chorley New Road, Horwich, Bolton, England, BL6 6HG

Information We Collect

1. Information You Provide Directly

Contact & Account Information:

  • Name and business name
  • Email address
  • Phone number
  • Billing address
  • Account credentials (username, encrypted password)

Project & Service Information:

  • Project requirements and briefs
  • Content and materials you provide
  • Feedback and communications
  • Support requests

Payment Information:

  • Payment card details (processed securely by our payment provider)
  • Billing information
  • Watts purchase history
  • Invoice details

2. Information Collected Automatically

Website Usage Data:

  • IP address
  • Browser type and version
  • Device information
  • Pages visited and time spent
  • Referral source
  • Geographic location (country/city level)

Cookies & Similar Technologies:

  • Session cookies (essential for website function)
  • Analytics cookies (with your consent)
  • Preference cookies (to remember your settings)

See our Cookie Policy section below for more details.

3. Information from Third Parties

We may receive information from:

  • Payment processors (transaction confirmations)
  • Analytics providers (aggregated usage data)
  • Partners or referrals (with appropriate consent)

How We Use Your Information

We use your personal data for the following purposes:

Service Delivery (Legal Basis: Contract Performance)

  • Providing the services you've requested
  • Managing your account and Watts balance
  • Communicating about your projects
  • Delivering support and maintenance
  • Processing payments and issuing invoices

Business Operations (Legal Basis: Legitimate Interests)

  • Improving our services and website
  • Understanding how our services are used
  • Developing new products and features
  • Internal record keeping
  • Fraud prevention and security

Marketing (Legal Basis: Consent or Legitimate Interests)

  • Sending newsletters and updates (with consent)
  • Sharing relevant service information
  • Conducting customer satisfaction surveys
  • You can opt out anytime using unsubscribe links

Legal Compliance (Legal Basis: Legal Obligation)

  • Complying with legal and regulatory requirements
  • Responding to legal requests
  • Protecting our rights and interests
  • Enforcing our terms and conditions

AI Services & Data Processing

When we provide AI-powered solutions:

Data Used for AI:

  • Content you provide for AI processing
  • Project specifications and requirements
  • Historical project data (anonymized where possible)

AI Service Providers:

  • We use third-party AI services
  • Your data may be processed by these providers
  • We select providers with strong privacy commitments
  • AI processing complies with UK GDPR

Your Control:

  • You can request that specific data not be used for AI processing
  • AI-generated outputs are reviewed before delivery
  • We don't use your confidential data to train public AI models

How We Share Your Information

We don't sell your personal data. We share information only in these circumstances:

Service Providers

We work with trusted third parties who process data on our behalf:

  • Payment processors (Stripe)
  • Hosting providers (Vercel)
  • Email service providers
  • Analytics tools
  • AI service providers
  • CRM systems

All providers are contractually bound to protect your data and use it only for specified purposes.

Legal Requirements

We may disclose information when required by law or to:

  • Comply with legal processes
  • Enforce our terms and conditions
  • Protect our rights, property, or safety
  • Prevent fraud or security threats

Business Transfers

If Lightest Night is acquired or merged, your data may transfer to the new entity, who will continue to protect it under this policy.

With Your Consent

We may share information for other purposes with your explicit consent.

International Data Transfers

Your data is primarily stored and processed in the UK. If we transfer data outside the UK/EEA, we ensure:

  • Adequate protection through approved mechanisms
  • Standard contractual clauses with service providers
  • Compliance with UK GDPR transfer requirements

Data Security

We implement appropriate technical and organizational measures:

Technical Measures:

  • Encryption in transit (SSL/TLS)
  • Encryption at rest for sensitive data
  • Secure authentication and access controls
  • Regular security updates and patches
  • Firewall and intrusion detection

Organizational Measures:

  • Staff training on data protection
  • Confidentiality agreements
  • Access limited to authorized personnel only
  • Regular security reviews
  • Incident response procedures

While we strive to protect your data, no system is 100% secure. Please keep your account credentials confidential.

Data Retention

We retain your personal data only as long as necessary:

Active Customers:

  • Account data: Duration of relationship plus 6 years (tax/legal requirements)
  • Project files: Duration of relationship plus 2 years
  • Communications: Duration of relationship plus 1 year

Former Customers:

  • Financial records: 6 years (legal requirement)
  • Project records: 2 years after last engagement
  • Marketing data: Until you unsubscribe or request deletion

Website Visitors:

  • Analytics data: 26 months
  • Cookie data: As specified in cookie settings

After retention periods, data is securely deleted or anonymized.

Your Rights Under UK GDPR

You have the following rights regarding your personal data:

1. Right to Access

Request a copy of the personal data we hold about you.

2. Right to Rectification

Correct inaccurate or incomplete information.

3. Right to Erasure ("Right to be Forgotten")

Request deletion of your data in certain circumstances.

4. Right to Restrict Processing

Limit how we use your data in specific situations.

5. Right to Data Portability

Receive your data in a structured, machine-readable format.

6. Right to Object

Object to processing based on legitimate interests or for marketing purposes.

7. Rights Related to Automated Decision-Making

We don't make solely automated decisions with legal or significant effects. If this changes, you'll have the right to human review.

How to Exercise Your Rights

Email us at support@lightestnight.com with your request. We'll respond within one month.

Cookies & Tracking Technologies

What Are Cookies?

Cookies are small text files stored on your device when you visit our website.

Types of Cookies We Use

Essential Cookies (Always Active):

  • Session management
  • Security features
  • Basic website functionality

Analytics Cookies (With Consent):

  • Google Analytics (anonymized)
  • Usage patterns and statistics
  • Website performance monitoring

Preference Cookies (With Consent):

  • Language and region settings
  • Display preferences
  • Remembered choices

Managing Cookies

You can control cookies through:

  • Our cookie consent banner (first visit)
  • Your browser settings
  • Opt-out tools for specific services

Disabling essential cookies may affect website functionality.

Third-Party Links

Our website may contain links to third-party websites. We're not responsible for their privacy practices. Please review their privacy policies separately.

Children's Privacy

Our services are not directed at children under 16. We don't knowingly collect data from children. If you believe we've collected such data, please contact us immediately.

Changes to This Policy

We may update this Privacy Policy occasionally to reflect:

  • Changes in our practices
  • Legal or regulatory updates
  • New features or services

We'll post updates on this page with a new "Last Updated" date. Significant changes will be communicated via email or website notice.

Your Choices & Controls

Marketing Communications

  • Unsubscribe using links in emails
  • Update preferences in your account
  • Contact us to opt out completely

Account Data

  • Update information in your account settings
  • Request corrections or deletions
  • Download your data

Cookies

  • Manage preferences via cookie banner
  • Adjust browser settings
  • Use opt-out tools

Contact Us & Complaints

Data Protection Queries

If you have questions or concerns about how we handle your data:

We'll respond to all inquiries promptly.

Right to Complain

If you're unhappy with how we've handled your data, you have the right to complain to:

Information Commissioner's Office (ICO)

  • Website: https://ico.org.uk
  • Helpline: 0303 123 1113
  • Address: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF

We'd appreciate the opportunity to address your concerns first, but you can contact the ICO at any time.

Specific Service Privacy Notes

Incognifi Users

If you use our Incognifi product, additional privacy protections apply. See the Incognifi-specific privacy policy at https://www.incognifi.com/privacy-policy

Consulting Clients

For consulting engagements, we may enter into additional data processing agreements as required.

Thank you for trusting Lightest Night with your data. We're committed to protecting your privacy while lighting your way through the digital world.