Overview
Neptune Digital Ltd is a UK FileMaker consultancy and official Claris Partner with offices in London (E1W 1UN) and Manchester (M3 3JG). We design, build, host and support custom FileMaker, Claris and CRM solutions for clients across the UK and internationally.
This Trust Centre covers data we process through our marketing website neptunedigital.co.uk and our internal Artemis admin tools. Data processed inside client FileMaker systems we develop or host is governed by the separate Data Processing Agreement signed with each client.
Hosting
Lovable Cloud (EU) and Supabase (Frankfurt) for site and backend.
Data region
EU-first; some analytics suppliers operate from the US under SCCs.
Encryption
TLS 1.2+ in transit. Database encryption at rest provided by our hosting platforms.
Privacy Policy
Neptune Digital Ltd ("we", "us") is the data controller for personal data collected through this website. We comply with the UK GDPR and the Data Protection Act 2018.
1. What we collect
- Enquiry data โ name, email address and message you submit via our contact or booking forms.
- Booking data โ name, email and scheduled time when you book a call via Calendly.
- Usage data โ pseudonymous analytics (pages viewed, referrer, device/browser) via PostHog and Google Analytics.
- Company-level visitor data โ Leadfeeder identifies the company behind a public IP address. We never identify individuals from this.
2. Why we process it
- Respond to enquiries and deliver requested services (legitimate interest / contract).
- Improve our website and marketing (legitimate interest).
- Comply with legal obligations (e.g. accounting records).
3. How long we keep it
- Enquiry and lead records: up to 24 months from last contact, then deleted or anonymised.
- Client project data: for the duration of the engagement plus 7 years for accounting purposes.
- Analytics: PostHog 12 months; Google Analytics up to 14 months.
4. Your rights (UK GDPR)
You may request to access, correct, delete, restrict or port your personal data, or object to processing.
To exercise any right contact data@neptunedigital.co.uk. You also have the right to complain to the UK Information Commissioner's Office (ICO) at ico.org.uk.
5. International transfers
Where data is transferred outside the UK/EEA (e.g. to US-based suppliers), we rely on UK International Data Transfer Addenda and EU Standard Contractual Clauses with the recipient.
Cookie Policy
We use a small number of cookies and similar technologies on neptunedigital.co.uk. Strictly necessary cookies are required for the site to function. Analytics cookies help us understand how visitors use the site so we can improve it.
| Cookie | Provider | Purpose | Duration | Category |
|---|
| neptune_utm | Neptune Digital | Stores UTM/campaign attribution for the current session | Session | Strictly necessary |
| ph_* | PostHog | Pseudonymous product analytics identifier | 365 days | Analytics |
| _ga, _ga_* | Google Analytics | Distinguishes users and sessions for aggregated analytics | Up to 2 years | Analytics |
| _lfa | Leadfeeder | B2B company identification from IP data | 2 years | Analytics |
| _GRECAPTCHA / Calendly cookies | Calendly | Set when the booking widget is loaded | Session โ 6 months | Strictly necessary |
You can block or delete cookies via your browser settings. Doing so may affect how the site functions. To opt out of Google Analytics across all sites, install the Google Analytics opt-out add-on.
Terms of Service
These terms govern your use of the Neptune Digital website. Paid engagements (FileMaker development, hosting, support) are governed by a separate signed Statement of Work and Master Services Agreement provided to each client.
1. Use of the site
You may use this site for lawful purposes only. You must not attempt to gain unauthorised access, scrape at volume, or disrupt the service.
2. Intellectual property
All content on neptunedigital.co.uk โ including copy, design, logos and case studies โ is the property of Neptune Digital Ltd or its licensors. You may share excerpts with attribution but may not republish full pages without written permission.
3. Content accuracy
We take care to keep information accurate but provide it "as is" without warranty. Pricing guidance, benchmarks and articles are educational and not contractual offers.
4. Liability
To the maximum extent permitted by law, Neptune Digital is not liable for indirect or consequential loss arising from use of this website. Nothing in these terms limits liability for death, personal injury caused by negligence, or fraud.
5. Governing law
These terms are governed by the laws of England and Wales, with exclusive jurisdiction in the English courts.
Subprocessors
We use the following third-party services to operate the Neptune Digital website and our internal workflows. Each supplier has its own privacy policy linked below.
| Subprocessor | Purpose | Data processed | Region |
|---|
| Supabase | Application database, authentication and serverless functions (Lovable Cloud backend) | Lead enquiries (name, email, message), Artemis admin accounts | EU (Frankfurt) |
| SendGrid (Twilio) | Transactional email delivery for enquiry notifications | Lead name, email address, message body, source page | US / EU |
| Calendly | Booking discovery calls | Name, email, scheduled time, optional notes | US |
| PostHog (EU) | Product analytics โ page views, button clicks, conversion funnels | Pseudonymous device ID, page URL, UTM parameters, IP (truncated) | EU (Frankfurt) |
| Leadfeeder (Dealfront) | B2B website-visitor company identification from public IP/ASN data | IP address, company name (no personal identification) | EU (Finland / Germany) |
| Google Tag Manager | Tag deployment container (loads other analytics tags) | Does not collect data itself; loads tags listed above | US / EU |
| Google Analytics 4 | Aggregated traffic analytics deployed via GTM | Pseudonymous client ID, page URL, device/browser info, IP (anonymised) | US / EU |
| Google Search Console | Search performance monitoring | Aggregated search query data (no personal data) | US / EU |
| Lovable | Application hosting and Lovable Cloud platform | All site content and backend data processed via the platform | EU |
Security
The security controls described below relate to the Neptune Digital website and internal admin tools. We hold no formal compliance certifications at this time and do not present ourselves as independently audited.
- Encryption in transit โ TLS 1.2+ enforced on all routes (HSTS, automatic HTTPS).
- Encryption at rest โ provided by Supabase / Lovable Cloud at the platform level.
- Access control โ admin access to our Artemis CMS requires email + password authentication with row-level security and role-based authorisation.
- Lead form abuse protection โ honeypot field and time-trap to block automated submissions, enforced both client-side and server-side.
- Input validation โ schema validation on all form submissions, server-side length and format checks.
- Backups โ managed daily by our hosting platform.
- Vulnerability reporting โ please email security@neptunedigital.co.uk with any responsible-disclosure reports. We acknowledge within 5 working days.
Contact & Data Protection Officer
Data Protection / GDPR
Caroline Kimble
data@neptunedigital.co.ukFor subject access requests, deletion requests, DPA queries and supervisory-authority correspondence.
This Trust Centre is maintained by Neptune Digital and updated as our practices and suppliers change. Material changes will be reflected in the "Last updated" date at the top of the page. Get in touch if anything is unclear.