How we handle your data.

We collect the minimum we need to reply to your enquiry, build and run your website, and improve our service. We don't sell your data. We don't share it with advertisers. We delete it when you ask.

If you only read one section of this page, that's it. The rest just spells out the specifics.

Acqengi (“we,” “us,” “our”) is a full-service digital agency. We're the data controller for any personal data you share with us through this website or while working with us on a project.

We collect data in three ways:

• You send it to us.The contact form on this site asks for your name, email, optional company and phone, the type of project you're working on, and a description. If you book a call, the calendar provider also collects your timezone and meeting details.
• You email or call us directly. Anything you put in the message body is on the record by default — we treat it like any other inbound enquiry.
• Your browser tells us automatically.Page-level analytics — country (not city), referring site, device type, page visited — collected through privacy-respecting tools that don't require cookies or store personally identifiable information.

We don't collect anything we don't need. We don't track you across other sites. We don't fingerprint your browser.

Specifically:

• To reply to your enquiry. When you submit the contact form, your submission lands in our CRM and triggers a real reply from a real person — typically within one business day.
• To engage with you as a prospect.If you've told us about a project, we may follow up by email or phone to talk about it. We won't spam you. You can opt out of follow-up at any time by replying “unsubscribe” or emailing us directly.
• To use AI to draft responses faster.We use AI tools internally to summarise enquiries, draft replies, and surface the services most relevant to what you're asking about. A human always reviews and sends the actual response. We do not feed your enquiry data into public LLM training.
• To deliver our services.If we end up working together, we'll handle whatever data is needed to design, build, and run your website or app. That data is governed by the same rules as everything else in this policy, plus any specific terms in our project contract.
• To improve the site. Aggregate analytics tell us which pages people read, where they bounce, and what we should write more about. We never connect this to individual identities.

A short list of third parties that touch your data because they power parts of how we run:

• GoHighLevel — our CRM. Contact form submissions are stored here so a real person can reply and follow up. Their privacy policy.
• Vercel — hosts this website. Privacy.
• Supabase— stores our CMS content. Your enquiry data doesn't live here. Privacy.
• Plausible (or equivalent) — privacy-respecting analytics. No cookies, no personal data, no cross-site tracking. How they handle privacy.
• Email providers (Google Workspace, etc.) — for the actual replies you receive from a human at our end.
• AI vendors (Anthropic, OpenAI, etc.) — when we use AI to summarise or draft, your enquiry text is sent to the model provider under their zero-retention / no-training enterprise terms. We only use providers that contractually commit to not training on our data.

We don't sell your data. We don't share it with advertisers. We don't use it for marketing campaigns you didn't opt into.

Different data, different timelines:

• Enquiry data (form, email, calls) — kept for up to three years from the last interaction, so we have continuity if you come back. Deleted on request, sooner.
• Project data— kept for as long as we're working together, plus seven years for accounting and warranty purposes. You can ask us to anonymise or delete project records sooner, subject to whatever the law actually requires us to keep.
• Analytics— aggregate, non-identifiable, retained indefinitely. There's no “you” in it to delete.

We don't use cookies for advertising or cross-site tracking. The site uses a small number of essential cookies for functionality (preferences, session) and may load privacy-respecting analytics that either don't set cookies at all (Plausible) or use a single aggregated cookie with consent (Google Analytics, only if explicitly enabled — currently disabled by default). If we ever enable GA4 or another cookie-based tool, we'll add a clear consent banner and let you opt out before anything is set.

You can ask us to:

• Tell you what data we have about you
• Send you a copy of it
• Correct it if it's wrong
• Delete it
• Stop using it for marketing or follow-up
• Move it to another provider

Email hello@acqengi.com and we'll handle it within 30 days. Where we're legally required to keep certain data (tax records, for example), we'll tell you that and explain why.

Data in transit is HTTPS-encrypted. Data at rest is encrypted in our provider databases. We use scoped access — only the people who need a given piece of data have access to it. We don't store credit card numbers (payments go through a PCI-compliant processor when they apply). No system is perfectly secure, but we'll tell you if something affecting your data goes wrong.

This site isn't aimed at children under 16. We don't knowingly collect their data. If you think we've done so by accident, email us and we'll delete it.

We update this page when something material changes about how we handle data. The “Last updated” date below tells you when. For significant changes (new services, new third parties, new retention rules), we'll also email anyone in our CRM who's opted into updates.