Logo
Is this for me?What we doPackagesFAQ

Privacy Policy

Last Updated: 16/01/2025

This Privacy Policy ("Policy") explains how The Next Layer, a project by Ourfires LTD ("Company," "we," "us," or "our") collects, uses, discloses, and safeguards your personal data when you visit our website ("Site") or engage with our services ("Services"). We are committed to respecting your privacy and ensuring the protection of your personal data.

1. Who We Are

  • Entity Name: Ourfires LTD, trading under the agency name The Next Layer

  • Address: 41 Devonshire Street Ground Floor, W1G 7AJ London England

  • Email: start@ourfires.co

2. Scope of this Policy

This Policy applies to personal data we collect when you:

  • Visit our Site or use our Services

  • Contact us via email, phone, or other channels

  • Enter into a contract or agreement with us (e.g., purchasing our branding, product design, or marketing packages)

  • Sign up for newsletters, marketing communications, or events

3. Information We Collect

We may collect and process the following categories of personal data:

  • Contact Information

    Name, email address, phone number, company name, and/or job title.

  • Billing & Payment Details

    Billing address, VAT or tax ID (if relevant), partial payment details (note that we generally use third-party processors and do not store full credit/debit card information on our servers).

  • Account & Project Details

    Username (if you create an account), password (stored in encrypted form), project briefs, brand assets, communication records, and any feedback you provide.

  • Communications Data

    Records of emails or messages you send us, including support requests, comments, or queries.

  • Technical & Usage Data

    IP address, browser type, time zone settings, cookie data, operating system, page interactions, and navigation paths on our Site.

  • Marketing Preferences

    Subscription status, opt-in or opt-out preferences for receiving marketing communications.

4. How We Use Your Information

We process personal data for the following lawful purposes under the UK GDPR and related regulations:

  • Provision of Services

    To perform our contract with you, including delivering design packages, completing your branding/product/marketing projects, invoicing, and project updates.

  • Business Communications

    To respond to inquiries, questions, and comments; to provide customer support or technical assistance.

  • Billing & Payments

    To process transactions securely. We use third-party payment processors (e.g., Stripe, PayPal, or bank transfer) and do not store your full payment details.

  • Marketing & Newsletters

    To send you information about our Services, events, or updates that may interest you—only if you have opted in to receive such communications. You can opt out at any time.

5. Cookies & Tracking Technologies

We use "cookies" and similar tracking technologies (e.g., beacons, pixels) to collect Technical & Usage Data that helps us understand how you use our Site and Services. This data may include:

  • IP addresses

  • Browser types

  • Pages visited

  • Time spent on our Site

6. Disclosure of Your Information

We may share your personal data with:

  • Service Providers

    Third parties who help us run our business or deliver our Services (e.g., payment processors, hosting providers, CRM, analytics tools). We ensure they only process your data in line with our instructions and under appropriate confidentiality agreements.

  • Professional Advisors

    Accountants, lawyers, and auditors, where necessary for business operations and compliance.

  • Regulators & Law Enforcement

    Government authorities or law enforcement officials if required by law or to protect our rights and interests.

7. International Data Transfers

If we transfer your personal data outside of the UK or the European Economic Area ("EEA"), we will ensure that adequate safeguards (e.g., Standard Contractual Clauses) are in place to protect your data in accordance with applicable data protection laws.

8. Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes for which it was collected, including for legal, accounting, or reporting requirements. Typically:

  • Project-related data: Retained for the duration of the project and a reasonable period afterwards (e.g., 6–7 years) to comply with financial and regulatory obligations.

  • Marketing data: Retained until you opt out or unsubscribe.

9. Your Rights

Under the UK GDPR, you have the following rights regarding your personal data:

  • Access

    You can request a copy of the personal data we hold about you.

  • Rectification

    You can ask us to correct incomplete or inaccurate data.

  • Erasure ("Right to Be Forgotten")

    You can request deletion of personal data when it is no longer necessary or when processing is unlawful.

  • Restriction

    You can request that we restrict processing of your personal data in certain circumstances.

10. Security Measures

We take reasonable and appropriate measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. These measures include:

  • • Secure servers & firewalls

  • • Encrypted data transfers (HTTPS/SSL)

  • • Access controls & authentication procedures

  • • Regular security monitoring

11. Third-Party Links

Our Site or communications may contain links to third-party websites or services that we do not control. If you click on a third-party link, you will be directed to that third party's site. We recommend you review the privacy policy of every site you visit. We are not responsible for the privacy practices or content of such third parties.

12. Children's Privacy

Our Services are not directed to children under the age of 13 (or 16 in certain jurisdictions). We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us so we can delete it.

13. Changes to This Policy

We may revise this Privacy Policy from time to time. The most current version will govern our collection, processing, and use of your data. If we make a significant change to this Policy, we will notify you (e.g., by email or via our Site). The date of the latest revision is indicated at the top of this Policy.

14. How to Contact Us

If you have questions, concerns, or requests about this Privacy Policy or our data practices, please contact us at:

  • Ourfires LTD (Project name: The Next Layer)

  • • 41 Devonshire Street Ground Floor, W1G 7AJ London England

  • • start@ourfires.co

15. Complaints

If you feel that we have not addressed your data protection concerns satisfactorily, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) in the UK. You can find more information on how to do so at https://ico.org.uk/.

By continuing to use our Site or Services, you acknowledge that you have read and understood this Privacy Policy.