Back to Home

Privacy Policy

How we protect and handle your data

Last updated:27 June 2025

Introduction

CDM Marketing Ltd, trading as The Local Harvest (“we”, “our”, or “us”) is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website www.thelocalharvest.co.uk and use our services.

We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. CDM Marketing Ltd is registered with the Information Commissioner’s Office (ICO). This policy applies to all data processing activities carried out by CDM Marketing Ltd in relation to The Local Harvest concept.This policy was last reviewed on 27 June 2025.

Data Controller

CDM Marketing Ltd is the data controller for the personal information we collect about you. The Local Harvest is a concept being developed by CDM Marketing Ltd. You can contact us at:

CDM Marketing Ltd

Trading as: The Local Harvest (concept development)

Email: adam@cdmmarketing.co.uk

Data Protection Officer: adam@cdmmarketing.co.uk

ICO Registration: CDM Marketing Ltd is registered with the Information Commissioner’s Office (ICO)

Information We Collect

Personal Information You Provide

When you join our waitlist, we collect:

  • Name: To personalize our communications
  • Email address: To send updates and notifications
  • Location: To connect you with local farms in your area
  • Interest type: Whether you’re a consumer or farmer
  • Newsletter preference: Your consent to receive marketing emails

Automatically Collected Information

  • Usage data: How you interact with our website
  • Device information: Browser type, operating system
  • Analytics data: Via Google Analytics (with your consent)
  • Cookies: For website functionality and analytics

How We Use Your Information

Waitlist Management (Legal basis: Consent)

  • Send you confirmation emails
  • Notify you when we launch
  • Provide early access to our platform

Marketing Communications (Legal basis: Consent)

  • Send newsletter updates (only if you opt-in)
  • Share development progress
  • Announce new features and services

Analytics & Improvement (Legal basis: Legitimate Interest)

  • Understand how our website is used
  • Improve user experience
  • Monitor website performance

Your Rights Under GDPR

Right of Access

Request a copy of your personal data

Right to Rectification

Correct inaccurate personal data

Right to Erasure

Request deletion of your data

Right to Withdraw Consent

Unsubscribe at any time

Right to Data Portability

Export your data in a readable format

Right to Object

Object to certain processing activities

To exercise your rights: Email us at adam@cdmmarketing.co.uk with your request. We’ll respond within 30 days.

International Data Transfers

Third-Party Services

Some of our analytics services process data outside the UK/EEA:

  • Google Analytics: Data may be processed in the US under Google’s adequacy arrangements
  • Microsoft Clarity: Data may be processed in the US under Microsoft’s Standard Contractual Clauses

Your consent covers these transfers. You can withdraw consent at any time via our cookie settings.

Data Security & Retention

Security Measures

  • Encrypted data transmission (HTTPS/TLS)
  • Secure email handling with app-specific passwords
  • Regular security updates and monitoring
  • Access controls and authentication

Data Retention

We retain your waitlist data until you withdraw consent or for a maximum of 2 years after our platform launch. Analytics data is retained for 26 months as per Google Analytics settings.

Cookies & Tracking

Our website uses cookies to enhance your experience and provide analytics. You can control these through our cookie consent banner or your browser settings.

Essential Cookies

Required for website functionality

Analytics Cookies

Google Analytics & Microsoft Clarity (with your explicit consent only)

  • Session recordings may capture your interactions
  • Heatmaps show aggregated click patterns
  • No sensitive data like passwords is recorded

Marketing Cookies

Not used on this website

Data Breach Procedures

Our Commitment

  • We will notify the ICO within 72 hours of becoming aware of any data breach
  • If the breach poses a high risk to your rights, we will notify you without undue delay
  • We maintain incident response procedures and regular security assessments
  • All staff receive data protection training annually

Questions or Concerns?

If you have any questions about this Privacy Policy or how we handle your data, please contact us:

📧 adam@cdmmarketing.co.uk

🛡️ adam@cdmmarketing.co.uk (Data Protection Officer)

🏢 CDM Marketing Ltd (Data Controller)

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO) if you believe your data protection rights have been breached.