← Back

Privacy Policy

Last updated: April 2, 2026  ·  Applies to enterprise.getwebbricks.com

1. Introduction and Controller Identity

This Privacy Policy describes how WebBricks ("we," "us," "our") collects, processes, stores, and discloses personal information in connection with the enterprise.getwebbricks.com website and associated services. This Policy applies to visitors to our website, prospective clients, current clients, and any individuals whose personal data we process in the course of providing services.

For the purposes of applicable data protection law, WebBricks is the data controller with respect to personal data collected through this website. Questions and requests regarding personal data may be directed to: [email protected]

2. Information We Collect

Information you provide directly. We collect information you voluntarily submit, including:

  • Contact information (name, email address, business name, website URL) submitted through the audit request form or any inquiry form on this website;
  • Communications you send to us by email or through contact forms, including the content of those communications;
  • Business and technical information you provide in connection with a project engagement, including access credentials, brand assets, and business documentation;
  • Payment information processed through our third-party payment processor (we do not store payment card numbers directly).

Information collected automatically. When you visit this website, certain technical information is collected automatically by our hosting infrastructure (Cloudflare, Inc.), including:

  • IP address and approximate geographic location derived therefrom;
  • Browser type and version, operating system, and device type;
  • Pages viewed, time spent on pages, and referring URL;
  • Date and time of access.

This website does not use first-party cookies for tracking or analytics purposes. We do not place advertising cookies or cross-site tracking pixels.

Information obtained from third parties. In the course of providing SEO and domain intelligence services, we may process publicly available information about websites, including backlink profiles, technical performance data, and search ranking data obtained from third-party data sources. Such information relates to websites, not to natural persons, and is not personal data unless it identifies an individual.

3. Legal Bases for Processing (GDPR)

For individuals located in the European Economic Area or the United Kingdom, we process personal data on the following legal bases:

  • Contract performance (Article 6(1)(b) GDPR): Processing necessary to provide services you have requested or to take pre-contractual steps at your request, including reviewing your audit request, preparing a proposal, and delivering contracted services;
  • Legitimate interests (Article 6(1)(f) GDPR): Processing necessary for our legitimate business interests, including maintaining service records, improving our services, communicating with prospective clients, and preventing fraud, where such interests are not overridden by your rights and interests;
  • Legal obligation (Article 6(1)(c) GDPR): Processing necessary to comply with applicable legal obligations, including tax, accounting, and anti-money laundering requirements;
  • Consent (Article 6(1)(a) GDPR): Where we have obtained your consent for specific processing activities, such as receiving marketing communications. You may withdraw consent at any time.

4. How We Use Your Information

We use the information we collect for the following purposes:

  • To respond to your audit request and provide the requested analysis;
  • To communicate with you regarding your inquiry, project scope, deliverables, and engagement status;
  • To prepare, execute, and fulfill service agreements;
  • To process payments and maintain billing records;
  • To provide client reporting on SEO performance, link acquisition, and technical metrics;
  • To comply with applicable legal, tax, and regulatory obligations;
  • To protect our rights, investigate potential violations, and prevent fraud;
  • To improve the quality and relevance of our services based on aggregated, non-identifiable usage patterns.

We do not sell, rent, or trade your personal information to third parties for their own marketing purposes.

5. Information Sharing and Disclosure

We disclose personal information only in the following circumstances:

Service providers. We engage the following categories of third-party service providers who process personal data on our behalf under data processing agreements:

  • Hosting and content delivery infrastructure (Cloudflare, Inc. — servers may be located globally);
  • Email communication services;
  • Payment processing services (payment data is processed directly by the payment processor under their privacy policy);
  • Project management and document signing tools.

Legal requirements. We may disclose personal information when required to do so by law, court order, regulatory authority, or in response to a valid legal process. Where legally permissible, we will provide advance notice of such disclosures.

Business transfers. In the event of a merger, acquisition, or sale of substantially all of our business assets, personal data may be transferred to the acquiring entity. We will provide notice of any such transfer and any resulting changes to this Policy.

With your consent. We may share information with third parties when you have provided express consent.

6. Data Retention

We retain personal information for as long as necessary to fulfill the purposes described in this Policy, subject to the following:

  • Inquiry data (no engagement): Retained for 12 months from the date of last contact, then deleted;
  • Client project data: Retained for the duration of the engagement plus 7 years for financial and contractual records, consistent with standard accounting retention requirements;
  • Correspondence and communication records: Retained for 3 years from the date of last communication;
  • Technical access logs: Retained by Cloudflare infrastructure in accordance with their data retention practices, typically not exceeding 30 days for standard log data.

Upon expiry of the applicable retention period, personal data is securely deleted or anonymized.

7. International Data Transfers

Our infrastructure is operated globally through Cloudflare's network. Personal data submitted through this website may be processed on servers located outside your country of residence, including in the United States.

For transfers of personal data from the EEA or UK to countries not recognized as providing an adequate level of data protection, we rely on appropriate safeguards including Standard Contractual Clauses approved by the European Commission, or equivalent mechanisms recognized under UK data protection law.

8. Your Rights

Depending on your jurisdiction, you may have the following rights with respect to your personal data:

  • Right of access: The right to obtain confirmation of whether we process your personal data and to receive a copy of that data;
  • Right to rectification: The right to have inaccurate personal data corrected and incomplete data completed;
  • Right to erasure: The right to request deletion of personal data in certain circumstances, including where the data is no longer necessary for the purposes for which it was collected;
  • Right to restriction of processing: The right to request that we restrict processing of your personal data in certain circumstances;
  • Right to data portability: The right to receive personal data you have provided to us in a structured, commonly used, machine-readable format;
  • Right to object: The right to object to processing based on legitimate interests, and to object to direct marketing at any time;
  • Right to withdraw consent: Where processing is based on consent, the right to withdraw consent at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, please contact us at [email protected]. We will respond within 30 days. We may need to verify your identity before processing your request.

If you are located in the EEA or UK and believe your data protection rights have been violated, you have the right to lodge a complaint with your local supervisory authority.

California Residents. California residents may have additional rights under the California Consumer Privacy Act (CCPA), including the right to know, delete, and opt out of the sale of personal information. We do not sell personal information. To submit a California privacy request, contact us at the address above.

9. Security

We implement technical and organizational measures designed to protect personal data against unauthorized access, alteration, disclosure, or destruction. These measures include encrypted transmission (TLS), access controls limiting personal data access to personnel with a need to know, and regular review of our data handling practices.

No method of transmission over the internet or electronic storage is completely secure. While we use commercially reasonable means to protect your information, we cannot guarantee absolute security. In the event of a data breach affecting your rights and freedoms, we will notify affected individuals and applicable supervisory authorities as required by law.

10. Third-Party Links

This website may contain links to third-party websites, including client portfolio sites. These third-party sites are governed by their own privacy policies. We have no control over and assume no responsibility for the content or privacy practices of any third-party site. We encourage you to review the privacy policy of any site you visit.

11. Children's Privacy

Our services are directed exclusively to business clients and are not directed to individuals under the age of 18. We do not knowingly collect personal information from minors. If you believe we have inadvertently collected information from a minor, please contact us and we will delete it promptly.

12. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the "Last updated" date at the top of this page. For significant changes affecting how we use data you have already provided, we will provide notice by email where we have your contact information.

Continued use of this website following notice of changes constitutes your acknowledgment of the updated Policy.

13. Contact and Data Protection Inquiries

For questions about this Privacy Policy, to exercise your data rights, or to report a privacy concern, contact us at:

WebBricks
Email: [email protected]
Website: enterprise.getwebbricks.com

We are committed to working with you to resolve any concerns about your privacy. If you are not satisfied with our response, you have the right to escalate your concern to the relevant data protection authority in your jurisdiction.