Privacy Policy

This Privacy Policy explains how GetMeOnlineFast collects, uses, and protects your personal data when you use our website-building service. We are a UK-based business serving customers worldwide — primarily in the United Kingdom, the European Economic Area, and the United States. Below: what we collect, why we collect it, who we share it with, and the rights you have wherever you live.

Last updated: March 2026

1. Who We Are

GetMeOnlineFast operates the website at getmeonlinefast.com. We are a UK-based business serving customers globally. We comply with applicable data protection laws including:

• The UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, for users in the United Kingdom
• The EU General Data Protection Regulation (EU GDPR), for users in the European Economic Area
• The California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), for residents of California
• Other applicable regional and state-level privacy laws — we apply the same baseline protections globally

2. Data We Collect

When you use our service, we may collect:

• Contact information: name, email address, phone number
• Business information: business name, description, services, logo and images
• Payment information: processed by Stripe — we never store card details
• Usage data: page visits, form interactions (via anonymous analytics)

3. How We Use Your Data

• To build and deliver your website
• To send you your login link and site access details
• To communicate about your order or support requests
• To improve our service

Our lawful bases for processing under UK and EU GDPR are: (a) performance of a contract (delivering your site); (b) legitimate interests (improving the service, preventing fraud); and (c) consent where required (e.g. marketing emails — you can withdraw consent at any time).

4. Data Storage and Retention

Your data is stored securely in Supabase (hosted in the EU). Uploaded images are stored in Supabase Storage. We retain your data for as long as your site is active plus 12 months, after which it is deleted unless we are legally required to keep it.

5. Third Parties

We share data only with:

• Stripe — payment processing (US/IE)
• Supabase — database and file storage (EU)
• Render.com — website hosting (US)
• Cloudflare — domain registration and DNS, if purchased (US)
• Resend — transactional emails (US)

We do not sell your personal information to third parties. We do not "share" personal information for cross-context behavioural advertising as defined by California law.

6. International Data Transfers

Because we use third-party services based in different countries, your data may be transferred between the UK, EU/EEA, and the United States. Where data is transferred outside your home region, we rely on appropriate safeguards including the UK-EU adequacy decision, Standard Contractual Clauses (SCCs) approved by the UK ICO and European Commission, and the EU-US Data Privacy Framework where applicable.

7. Your Rights

You have rights over your personal data wherever you live. We honour these core rights for everyone:

• Access — get a copy of the data we hold about you
• Correction — fix anything that's inaccurate
• Deletion — ask us to erase your data
• Portability — receive your data in a machine-readable format
• Objection — object to processing based on legitimate interests
• Withdrawal of consent — where processing is based on consent

If you are in the UK or EU/EEA: these rights are granted by UK GDPR and EU GDPR. You also have the right to lodge a complaint with a supervisory authority — for the UK, that's the Information Commissioner's Office (ICO) at ico.org.uk. For the EU/EEA, contact your national data protection authority.

If you are a California resident: you have additional rights under CCPA/CPRA — including the right to know what personal information we collect, the right to delete it, the right to opt out of "sale" or "sharing" (we do neither), and the right not to be discriminated against for exercising any of these rights. To exercise California rights, email us with "California Privacy Request" in the subject line.

If you are elsewhere: we apply the spirit of these protections globally. Email us and we will treat your request seriously.

To exercise any of these rights, contact hello@getmeonlinefast.com. We will respond within 30 days.

8. Cookies

We use minimal cookies necessary for authentication and session management. We do not use advertising or third-party tracking cookies. No cookie banner is required for strictly necessary cookies under UK and EU law.

9. Children

Our service is not directed to children under 16 (or under 13 in the United States). We do not knowingly collect personal data from children. If you believe a child has submitted information to us, contact us and we will delete it.

10. Changes to This Policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top of this page reflects the most recent revision. Material changes will be communicated by email where we have your address.

11. Contact

For privacy-related queries: hello@getmeonlinefast.com

This Privacy Policy is provided for transparency and is not legal advice. We recommend professional legal review for jurisdiction-specific questions.