Privacy
Policy
Plain language summary: We collect only what we need to communicate with you and improve our services. We do not sell your data. We do not run advertising networks. If you are in the EU, UK, or Australia, you have specific rights over your data outlined in Section 9. Questions: hello@crownseoagency.com
Who We Are
Crown SEO Agency (“Crown”, “we”, “us”, “our”) is a professional search engine optimisation company headquartered in New York, NY, United States, operating globally with clients and team members in the US, UK, Australia, and Canada.
This Privacy Policy explains how Crown SEO Agency collects, uses, stores, and protects personal information when you visit our website (crownseoagency.com), submit enquiries, request audits, or engage our services.
Crown SEO Agency is the data controller for information collected through this website. For any privacy-related questions, contact us at hello@crownseoagency.com.
Data We Collect
We collect two categories of information:
2.1 Information You Provide Directly
When you contact us, request a free SEO audit, submit a consultation form, or communicate with our team by email, you may provide:
- Full name
- Business email address
- Company name and website URL
- Phone number (if provided voluntarily)
- Details about your business and SEO goals as described in your message
- Any other information you choose to include in correspondence
2.2 Information Collected Automatically
When you visit crownseoagency.com, we and our third-party analytics providers may automatically collect:
- IP address (anonymised where technically possible)
- Browser type and version
- Operating system
- Pages visited and time spent on each page
- Referring URL (the page you came from)
- Date and time of your visit
- General geographic location derived from IP address (country or city level)
What we do not collect: We do not collect payment card data (no transactions are processed on this website), social security numbers, government identification, sensitive personal categories (health, religion, ethnicity), or personal data from minors under 16.
How We Collect It
| Method | What it collects | Can you opt out? |
|---|---|---|
| Contact and audit forms | Name, email, company, website URL, message content | Yes. Simply do not submit the form. |
| Email correspondence | Email address, message content, metadata | Yes. Simply do not email us. |
| Analytics (Google Analytics) | Anonymised usage data, device/browser info, page views | Yes, via our cookie banner or browser opt-out tools. |
| Server logs | IP address, access time, request type | Limited. Standard server operation; logs are regularly purged. |
| Cookies | Session identifiers, analytics preferences | Yes. See Section 10. |
Why We Use Your Data
Crown uses your personal information only for the following purposes:
- Responding to enquiries: When you contact us or request a free SEO audit, we use your details to respond, prepare the audit, and discuss your requirements.
- Delivering contracted services: If you become a client, we process your business contact details to manage the engagement, communicate about work, and deliver reports and dashboards.
- Improving our website: Anonymised analytics data helps us understand how visitors use our site so we can improve the content and user experience.
- Email communications: If you have enquired or become a client, we may send service-related communications and occasional updates about our work. You can opt out at any time.
- Legal compliance: We process data to the extent required to comply with applicable law, respond to legal process, and enforce our agreements.
We do not use your personal data for automated decision-making or profiling that produces legal or similarly significant effects.
Legal Basis for Processing
For visitors from the European Union, United Kingdom, or other jurisdictions where a lawful basis for processing personal data is required, Crown relies on the following:
| Processing Activity | Lawful Basis |
|---|---|
| Responding to contact form submissions and audit requests | Legitimate interests / pre-contractual steps at your request |
| Delivering services under a client agreement | Performance of a contract |
| Analytics and website improvement | Legitimate interests (with opt-out available) / consent where required |
| Service-related email communications | Legitimate interests or consent |
| Legal compliance and dispute resolution | Legal obligation / legitimate interests |
US visitors: Crown processes your data in accordance with applicable US federal and state privacy laws, including the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) where applicable. See Section 9 for your specific rights.
How We Share Your Data
Crown does not sell, rent, or trade your personal information to third parties. We share data only in the following limited circumstances:
6.1 Service Providers
We use a small number of trusted third-party service providers to operate our business. These providers process data only on our instructions and are bound by appropriate data processing agreements:
- Google Analytics: website analytics (anonymised, with IP masking enabled)
- Email service provider: for sending and receiving business correspondence
- CRM software: for managing client relationships and enquiries
- Cloud hosting provider: for website hosting and storage
6.2 Legal Requirements
We may disclose your information if required to do so by law, court order, or valid legal process, or if we believe disclosure is necessary to protect the rights, property, or safety of Crown, our clients, or others.
6.3 Business Transfers
If Crown is involved in a merger, acquisition, or sale of assets, your personal information may be transferred as part of that transaction. We will notify you via email or prominent notice on our website before your data becomes subject to a different privacy policy.
No advertising networks: Crown does not participate in advertising networks, data brokers, or any arrangement that involves sharing your data with third parties for marketing or advertising purposes.
Data Retention
We keep your personal data only for as long as necessary for the purposes described in this policy, or as required by law.
| Data Type | Retention Period |
|---|---|
| Enquiry and audit request data (non-client) | 2 years from last contact, unless you request earlier deletion |
| Client engagement data | 7 years from end of engagement (for accounting and legal compliance) |
| Email correspondence | 3 years from last communication, unless part of an active client record |
| Analytics data | 26 months (Google Analytics default, reduced from maximum) |
| Server logs | 90 days, then permanently deleted |
When data is no longer required, we delete or anonymise it securely. You may request earlier deletion at any time. See Section 9.
How We Protect Your Data
Crown implements appropriate technical and organisational measures to protect personal information against unauthorised access, disclosure, alteration, or destruction, including:
- HTTPS encryption for all data transmitted through our website
- Access controls limiting data access to authorised team members only
- Regular review of our data handling practices and third-party provider security
- Password policies and multi-factor authentication on all systems holding personal data
No method of transmission over the internet or electronic storage is 100% secure. While we take reasonable precautions, we cannot guarantee absolute security. If you have reason to believe your interaction with us is no longer secure, please contact us immediately at hello@crownseoagency.com.
International Transfers
Crown is headquartered in the United States. If you are located in the EU, UK, or Australia, your personal data may be transferred to and processed in the US. We take steps to ensure such transfers are protected by appropriate safeguards, including standard contractual clauses where required under GDPR or UK GDPR.
Your Rights
Depending on your location, you have the following rights regarding your personal information:
9.1 Rights for EU and UK Residents (GDPR / UK GDPR)
- Right of access: Request a copy of the personal data we hold about you.
- Right to rectification: Request correction of inaccurate or incomplete data.
- Right to erasure: Request deletion of your personal data (“right to be forgotten”), subject to legal retention requirements.
- Right to restrict processing: Request that we limit how we use your data in certain circumstances.
- Right to data portability: Receive your data in a structured, machine-readable format.
- Right to object: Object to processing based on legitimate interests, including direct communications.
- Right to withdraw consent: Where processing is based on consent, withdraw it at any time without affecting prior processing.
- Right to lodge a complaint: Contact your local data protection authority. For EU residents: your national supervisory authority. For UK residents: the Information Commissioner’s Office (ICO) at ico.org.uk.
9.2 Rights for California Residents (CCPA / CPRA)
- Right to know: Request details about personal information we have collected, used, disclosed, or sold in the past 12 months.
- Right to delete: Request deletion of personal information we have collected, subject to legal exceptions.
- Right to correct: Request correction of inaccurate personal information.
- Right to opt out of sale or sharing: Crown does not sell or share personal information for cross-context behavioural advertising. This right is therefore not applicable, but you may confirm this by contacting us.
- Right to non-discrimination: We will not discriminate against you for exercising any of your CCPA/CPRA rights.
9.3 Rights for Australian Residents (Privacy Act 1988)
- You have the right to access personal information we hold about you and to request correction of inaccurate information, in accordance with the Australian Privacy Principles.
- To make a request, contact us at hello@crownseoagency.com. If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.
9.4 How to Exercise Your Rights
To exercise any of the above rights, email us at hello@crownseoagency.com with the subject line “Privacy Request” and a description of your request. We will respond within 30 days. We may need to verify your identity before processing requests relating to specific personal data.
We will not charge a fee for reasonable requests. We reserve the right to charge a reasonable fee for manifestly unfounded or excessive requests.
Cookies
Cookies are small text files stored on your device when you visit a website. Crown uses cookies for the following purposes:
| Cookie Type | Purpose | Duration |
|---|---|---|
| Strictly necessary | Required for the website to function (e.g. session management). Cannot be disabled. | Session |
| Analytics | Google Analytics: tracks anonymised page views and user behaviour to help us improve the site. Requires consent where applicable. | Up to 26 months |
| Preferences | Remembers choices you have made (e.g. cookie consent preference). | 12 months |
Managing Cookies
You can control cookies through our cookie consent banner (shown on first visit), your browser settings, or the following opt-out tools:
- Google Analytics: tools.google.com/dlpage/gaoptout
- All browsers: Most browsers allow you to refuse cookies or delete them via Settings. Disabling analytics cookies will not affect your ability to use this website.
Third-Party Links
Our website may contain links to external websites, case study partners, or resource pages operated by third parties. This Privacy Policy does not apply to those websites. We have no control over and assume no responsibility for the content or privacy practices of any third-party sites.
We encourage you to review the privacy policy of any external site you visit via a link from crownseoagency.com.
Children’s Privacy
Crown SEO Agency’s website and services are intended solely for business professionals and organisations. We do not knowingly collect personal information from individuals under the age of 16.
If we become aware that we have inadvertently collected personal data from someone under 16, we will delete it promptly. If you believe we have collected such data, please contact us at hello@crownseoagency.com.
Changes to This Policy
We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or service offerings. When we make material changes, we will update the “Last updated” date at the top of this page.
For significant changes, we will provide additional notice, such as a prominent notice on our website or an email to known contacts, before the change takes effect. We encourage you to review this page periodically.
Contact Us
For any questions, concerns, or requests relating to this Privacy Policy or the personal data we hold about you, contact us at:
Crown SEO Agency
New York, NY, United States
Email: hello@crownseoagency.com
Subject line: Privacy Request
Response time: Within 30 days of receipt
This policy should be read alongside our Terms of Service.