Privacy Policy

We respect the EU’s General Data Protection Regulations (GDPR) and this policy explains how we collect and treat any information you give us. You won’t find any complicated legal terms or long passages of unreadable text. We’ve no desire to trick you into agreeing to something you might later regret.


This policy covers:

  1. Who we are
  2. Why we value your privacy
  3. How we collect information
  4. What information we hold
  5. Where we store your information
  6. What we use your information for
  7. Who’s responsible for your information at our company
  8. Who has access to information about you
  9. The steps we take to keep your information private
  10. Changes to the policy

who we are

David Hughes, trading as R&S Hughes Limited ("us", "we", or "our") operates the website (the "Website"). You can contact us at any time via the contact form on our website, or by called David Hughes directly on 07595 303418.

Why we value your privacy

We value your privacy as much as we do our own, so we’re committed to keeping your personal and business information safe. We’re uncomfortable with the information companies, governments, and other organisations keep on file, so we ask for only the bare minimum from our customers. We’ll never use your personal information for any reason other than why you gave it, and we’ll never give anyone access to it unless we’re forced to by law.

How we collect information

We ask for contact information including your name, email address, and phone number, on our website so that we can reply to your enquiry. The same information may be collected via a phone call or face-to-face meeting.

We ask for further contact information when you hire us or buy something from us.

Occasionally, we might receive your contact information from a third-party referral source or partner organisation. If we do, we protect it in exactly the same way as if you give it to us directly.

Cookies: We use cookies on our website to help it to run effectively and provide the best user experience. Our site runs on Squarespace. You can read more about how Squarespace uses cookies on this page.

What information we hold

  • When you contact us by email or through our website, we collect your name, email address, phone number, the company you work for (if you’ve given us that), and the reason for your enquiry.
  • If you do business with us, we keep records of the invoices we send you and the payments you make.
  • All credit or debit card payments are processed by Stripe (via the Zoho CRM), our merchant platform, and we never have access to your credit card information.

Where we store your information

When you contact us by email or through our website, we may store your information in Zoho, our Customer Relationship Management (CRM) software. When you hire us and we raise an invoice, your information is stored in Zoho Invoice. We chose this system partly for their commitment to security.

What we use your information for

We occasionally use your contact information to send you details of our services. When we do, you have the option to unsubscribe from these communications and we won’t send them to you again. We might also email or phone you about our products and services, but if you tell us not to, we won’t get in touch again. We will use your information to send you invoices, statements, or reminders.

Who’s responsible for your information at our company

David Hughes is responsible for the security of your information. You can contact him by email at or by phone on 07595 303418 if you have any concerns about the information we store.

Who has access to information about you

Only David Hughes has access to the the contact information you provide to us.

The steps we take to keep your information private

Where we store your information in third-party services, access is restricted. We use a different password for each service, and never use the same password twice. Wherever possible, we use two-factor authentication.

The devices we use are all encrypted and are protected by a secure password, passcode or fingerprint access. These devices ask for authentication whenever they’re started or after five minutes of inactivity. Our mobile devices are also protected by a fingerprint.

Changes to the policy

If we change the contents of this policy, those changes will become effective the moment we publish them on our website.

This policy is based on "(Data) Protection Racket" by Stuff & Nonsense Ltd. and was last updated on 20th May 2018.