Who we are

This website is operated by George Ashton and is accessible at https://georgeashton.com. We sell digital products directly to customers.

For any privacy-related queries, you can contact us using the details at the bottom of this page.

What data we collect and why

Purchase information

When you buy a digital product, we collect your name, email address, and billing details. This is necessary to process your order, deliver your purchase, and maintain required transaction records. We do not store full payment card details — payments are handled securely by our payment processor.

Contact and enquiries

If you contact us directly, we retain your message and contact details to respond to your enquiry and keep a record of correspondence.

Cookies

We use cookies to make the site work properly and improve your experience. These include:

• Session cookies — set temporarily when you visit the login page to check whether your browser accepts cookies. These contain no personal data and are removed when you close your browser.
• Login cookies — if you log in, cookies are set to keep you signed in. These last two days by default, or two weeks if you select “Remember Me”. Logging out removes them.
• WooCommerce cookies — used to manage your shopping cart and maintain your session while browsing and checking out.

You can control or delete cookies at any time through your browser settings. Disabling certain cookies may affect the functionality of the site.

Who we share your data with

We do not sell your personal data. We share it only where necessary to operate this website and fulfil your orders:

• Payment processors — to securely handle transactions.
• Email service providers — to send order confirmations, receipts, and product delivery emails.
• Spam detection services — visitor comments may be checked through an automated spam detection service.
• Password reset — if you request a password reset, your IP address will be included in the reset email.

All third parties we work with are required to keep your data secure and use it only for the purposes we specify.

How long we retain your data

• Order records — retained for as long as required by law (typically 7 years for financial records in the UK).
• Account data — kept for as long as your account is active. You may request deletion at any time.
• Comments — retained indefinitely so we can recognise and approve follow-up comments automatically.
• Contact enquiries — kept for a reasonable period and then deleted.

Your rights

Under UK GDPR, you have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data (subject to legal obligations)
• Object to or restrict how we process your data
• Request a portable copy of your data
• Withdraw consent at any time where processing is based on consent

To exercise any of these rights, please contact us using the details below. You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO).

Data security

We take reasonable technical and organisational measures to protect your personal data from unauthorised access, loss, or misuse. Our website uses SSL encryption for all data transmitted between your browser and our server.

Changes to this policy

We may update this privacy policy from time to time. Any changes will be posted on this page with a revised date at the top. We encourage you to check back periodically.