Privacy Policy

Doxelio Digital Agency is a trading brand operated by MegaDev Ltd, company registration number 208560960. In this policy, Doxelio, we, us, and our mean MegaDev Ltd operating the Doxelio Digital Agency brand.

For privacy questions, requests, or complaints, contact us at privacy@doxelio.com or hello@doxelio.com.

We collect information needed to respond to enquiries, prepare proposals, deliver digital services, maintain websites, improve our own website, and comply with legal duties.

• Contact details such as name, email address, phone number, company name, and role.
• Project information such as website URLs, business goals, technical issues, audit answers, calculator selections, support requests, and files you choose to send us.
• Technical information such as IP address, device type, browser, pages visited, approximate location, referral source, and security logs.
• Billing and contract information such as invoices, payment status, tax details, agreed scope, and communication history.

• To answer messages, schedule calls, prepare quotes, and deliver requested services.
• To run website audits, security checks, SEO checks, maintenance tasks, and business automation assessments.
• To operate, secure, monitor, debug, and improve our website and client services.
• To send service-related messages, project updates, invoices, and important security or maintenance notices.
• To comply with accounting, tax, regulatory, fraud prevention, and legal obligations.

Where GDPR or similar privacy laws apply, we rely on one or more lawful bases depending on the context.

• Contract: when processing is needed to provide services or take steps before a contract.
• Legitimate interests: for website security, business communication, service improvement, fraud prevention, and client relationship management.
• Consent: for optional cookies, optional marketing, or where consent is specifically requested.
• Legal obligation: for accounting, tax, compliance, and lawful authority requests.

We do not sell personal information. We may share it only when needed to operate our business, deliver services, or meet legal obligations.

• Hosting, cloud, analytics, email, CRM, project management, payment, accounting, security, and support providers.
• Independent contractors or technical partners working under confidentiality and only where needed for a project.
• Professional advisers, insurers, accountants, auditors, or legal representatives.
• Authorities, courts, or regulators if required by law or necessary to protect rights, safety, or security.

Some providers may process data outside your country. Where required, we use appropriate safeguards such as contractual protections, adequacy decisions, data processing agreements, access controls, and minimisation.

If a project requires a specific hosting region or data residency requirement, it should be written into the project agreement.

We keep personal information only as long as needed for the reason it was collected, including service delivery, support, security, accounting, legal limitation periods, and dispute protection.

• Enquiry records are usually kept while the conversation is active and for a reasonable follow-up period.
• Client project, billing, and contract records may be kept longer where required for tax, accounting, legal, and operational reasons.
• Security logs are kept for a limited period unless needed to investigate abuse, fraud, or an incident.

Depending on your location, you may have rights to access, correct, delete, restrict, object to, or receive a copy of your personal information. You may also withdraw consent where processing is based on consent.

• Email privacy@doxelio.com with enough information for us to identify your request.
• We may need to verify your identity before acting on a request.
• You may have the right to complain to your local data protection authority.

Our services are for businesses and adults. We do not knowingly collect personal information from children. If you believe a child has provided information to us, contact us and we will review it.

We may update this policy when our services, providers, laws, or internal processes change. The date at the top shows the latest version.