privacy policy

key points

This privacy notice describes how Heather Eason, Sprig of Heather Specialist Business Proofreading, protects and uses the information that you provide when using the Sprig of Heather website and proofreading/editing services. This notice was updated on 28.01.2021. For more information, please use the contact form provided on this website.

information collected

I may collect personal data from and about you when you contact Sprig of Heather Proofeading regarding my services, or when you complete a form on this website. The information I may keep on record is covered by the General Data Protection Regulations – UK-GDPR (2020) and EU-GDPR (2018). Any data transfer to/from countries deemed non-adequate will be covered by a Standard Contractual Clause on Data Protection. Please ask if you would like more details about this.

Information collected may include:

  • Name and company position
  • Contact address
  • Email address
  • Telephone number(s)
  • Any personal data included in the information sent for the purpose of translation, proofreading or other language services
  • Website usage data (see cookie policy)

why and how I use this data

I collect, store and use the personal data I collect to:

  • provide you with the services you have ordered, including issuing quotes and providing proofreading, editing or other language-related services
  • request proofreading or editing services from you
  • to comply with legal requirements.

I do not use your personal data for marketing or promotional purposes.

I do not disclose your personal data to unauthorized third parties.

In the event that your personal data is contained in information provided to a colleague in order to fulfil the contract I have with you, eg. for proofreading, editing or related language services, that colleague will also comply with the UK-GDPR 2020 and EU-GDPR 2018.

how is this data held?

All data I hold is securely stored on password-protected hard drives. For administrative purposes, other parties, such as the providers of my website and email hosting services may have access to your personal data. All of these parties have satisfied UK-GDPR and EU GDPR compliance requirements.

how long will we keep your data?

I will keep your data for 10 years in order to cover legal requirements and related business needs. Your electronic data will then be permanently deleted and any hard copies will be shredded.

right to access

You have the right to contact me at any time to request a copy of your personal data. You may also ask me to correct or delete the information that I hold on you, provided that in so doing I am still able to maintain my legal obligations. I will reply to all such requests within 28 calendar days.


If you have complaints about the processing of your personal data, please contact me. You also have the right to complain to the Information Commissioner’s Office (ICO) if you believe that a data breach has occurred.