Skip to content
Folk Ledger Studio
Careful choices, plain-spoken checks
Privacy & data protection

Privacy Policy

This Privacy Policy explains what personal data Folk Ledger Studio Ltd collects, why we collect it, how long we keep it, who we share it with, and how you can exercise your rights. We write this policy in a plain, practical style because privacy choices should be understandable without legal training.

Controller: Folk Ledger Studio Ltd

Registered office: 12 Baker Street, London, W1U 3BH, United Kingdom

Email: [email protected]

Last Updated

January 15, 2026

At a glance

We run an educational website about evaluating traders and trading services. We do not ask for sensitive personal data. If you submit a form, we use the details to respond or manage your subscription. We use a cookie banner so you can accept or reject non-essential cookies.

  • Data we collect: name, email, optional phone if you contact us, plus technical data like IP and device info.
  • Why: to operate the site, reply to requests, improve content, and measure usage.
  • Your choices: accept/reject cookies, unsubscribe from emails, and request deletion.
folk styled privacy notebook with lock icon on desk

Need help?

Write to [email protected] and we will respond.

Related pages

You can also review our Terms of Service for how the site is used. For practical guidance content, browse Checks & checklist.

Contents

1. Who we are

Folk Ledger Studio Ltd is the data controller for personal data processed through this website. We publish educational material about evaluating traders and trading services. Our work includes checklists, articles, and explanations that help visitors compare offers and ask better questions. We do not manage client funds and we do not provide personalised investment advice.

Controller details: Folk Ledger Studio Ltd, 12 Baker Street, London, W1U 3BH, United Kingdom. For privacy matters, you can email [email protected] or write to the same postal address marked for the attention of “Privacy”.

2. Personal data we collect

We collect data that is reasonably necessary to operate the site, respond to messages, and understand how our content is used. We aim to minimise collection and avoid sensitive categories. Depending on how you interact with the site, we may collect:

  • Identity and contact data: full name and email address when you subscribe to updates; name and email when you contact us. If you choose to include a phone number in a message, we may process it to reply.
  • Message content: any information you place in a form field or email to us, including the subject, body text, and attachments you send.
  • Technical and usage data: IP address, approximate location derived from IP (country or region level), browser type, device type, operating system, referral URL, pages viewed, timestamps, and interactions such as clicks and scroll depth when analytics is enabled.
  • Cookie and identifiers: small identifiers stored in your browser such as a cookie-consent choice, session identifiers, and analytics identifiers if you accept analytics cookies.

We do not intentionally collect special category data (such as health information, political opinions, or biometric data). Please do not submit sensitive data through our forms. If you send it anyway, we will handle it with care and delete it where feasible and lawful.

3. How we collect data

We collect data through direct inputs you provide and through technical signals generated when your device connects to the site. In practice, the main collection methods are:

Web forms

When you submit a form (for example, the optional email subscription), the data is processed to complete your request. We collect only the fields shown. Each form includes a link back to this Privacy Policy so you understand how your details will be used.

Cookies and similar technologies

We store a cookie consent choice in local storage so your selection is remembered. If you accept analytics, additional cookies or identifiers may be used to measure visits and improve content structure.

Analytics tools

We may use Google Analytics 4 to understand page usage, and we may use Meta Pixel for measuring campaign performance when we run ads. These tools are enabled only when cookies are accepted for analytics and marketing where required.

Server logs

Like most websites, our hosting infrastructure automatically records log data for security and reliability: IP address, request time, requested page, and response code. These logs help prevent abuse and diagnose technical issues.

5. Purposes of processing

We use personal data for specific, limited purposes connected to operating an educational website. We do not use personal data in a way that is incompatible with these purposes. Main purposes include:

  • Service delivery: delivering website pages, remembering cookie consent choices, and providing requested information.
  • Customer support: responding to messages you send, troubleshooting issues, and keeping a record of communication where appropriate.
  • Marketing (consent-based only): sending you optional educational updates if you subscribed and consented, and measuring performance of campaigns where you accepted marketing cookies.
  • Site improvement and analytics: understanding which pages are useful, how visitors navigate, and what content is unclear. This helps us improve the structure and clarity of guides such as the checklist pages.
  • Security and fraud prevention: protecting the site, limiting automated abuse, and monitoring for suspicious traffic patterns.
  • Legal compliance: maintaining records required by law and handling complaints or disputes.

6. Retention periods

We keep personal data only as long as needed for the purposes described in this policy. Retention depends on the data category and why we collected it. Standard periods are:

Category
Typical retention
Reason
Form submissions (contact messages)
2 years
To respond, maintain context for follow-up, and handle disputes.
Email subscription list
Until unsubscribe + 30 days
To deliver updates and complete suppression processing after opt-out.
Analytics data (GA4)
14 months
To measure trends over time while limiting long-term profiling.
Server logs
30 days (security logs up to 90 days)
To investigate abuse and maintain reliability.
Cookie consent record (local storage)
Until you clear browser storage
To remember your cookie choice.

If we must keep data longer due to legal obligations or active disputes, we will restrict access and keep it only for as long as necessary.

7. Data sharing and processors

We do not sell your personal data. We share data only when necessary to operate the site, deliver requested communications, or comply with law. Where third parties process data on our behalf, they act as processors under a contract that requires appropriate security and confidentiality.

Categories of processors we may use include:

  • Hosting and infrastructure providers: to store and serve website content and maintain uptime and security.
  • Email delivery providers: to manage newsletter delivery and unsubscribe processing.
  • Analytics providers: Google Analytics 4 for aggregated site usage and performance measurement when enabled.
  • Advertising measurement tools: Meta Pixel may be used for campaign measurement and retargeting when enabled by cookie choice.

We may also disclose data to public authorities or law enforcement where we are legally required to do so, or where disclosure is necessary to protect rights, safety, and security.

8. International transfers

Our company is based in the United Kingdom. Some of our service providers may process data outside the UK or European Economic Area. When personal data is transferred internationally, we use safeguards such as:

  • Transfers to countries with an adequacy decision where applicable.
  • Standard Contractual Clauses (SCCs) or UK International Data Transfer Agreement (IDTA) style provisions with relevant suppliers.
  • Additional technical and organisational measures appropriate for the risk, such as access controls and minimisation.

If you want more information about specific safeguards used for a particular transfer, contact us at [email protected].

9. Your rights (GDPR)

Subject to conditions and exceptions under GDPR and UK GDPR, you may have the following rights regarding your personal data:

Access

Request a copy of the personal data we hold about you and information about how we use it.

Rectification

Ask us to correct inaccurate or incomplete personal data.

Erasure

Ask us to delete your data where we no longer need it or where consent has been withdrawn.

Restriction

Ask us to limit processing in certain cases, such as a dispute about accuracy.

Portability

Receive your data in a structured, commonly used format where processing is based on consent or contract and carried out by automated means.

Object

Object to processing based on legitimate interests. We will stop unless we have compelling legitimate grounds.

Withdraw consent

If we rely on your consent (for example, for email updates or non-essential cookies), you can withdraw it at any time. For emails, use the unsubscribe link in the message or email [email protected]. For cookies, use the banner choice and your browser controls. Withdrawing consent does not affect prior processing.

How to exercise your rights

Email your request to [email protected] and include the email address you used with us. We may request additional information to verify identity, but we will keep verification proportionate. We aim to respond within one month, and we will tell you if an extension is needed for complex requests.

Right to complain

If you are in the UK, you have the right to complain to the Information Commissioner’s Office (ICO). Website: https://ico.org.uk/. We encourage you to contact us first so we can try to resolve your concern promptly.

10. Cookie policy

Cookies are small files stored on your device. We also use local storage for remembering choices. Cookies can be strictly necessary for a site to work, or optional for analytics and marketing. Our cookie banner lets you accept or reject non-essential cookies.

Strictly necessary

Used to remember your cookie choice and support basic site functionality and security. These are essential to provide the service you request.

Typical duration: until you clear storage, or session-based.

Analytics

Used to understand how visitors use the site, such as which guides are read and what navigation paths work. This supports improvements to content clarity.

Typical duration: up to 14 months for analytics identifiers, depending on the tool configuration.

Marketing

Used to measure advertising performance and, where enabled, to build audiences for retargeting. We use this only where you accept marketing cookies.

Typical duration: varies by provider and your browser settings.

You can manage cookies via your browser settings. You can also clear site storage to reset the cookie banner choice. If you reject cookies, the site remains usable, though we may have less data to understand which pages need improvement.

11. Children’s privacy

Our website is not directed at children under 16. We do not knowingly collect personal data from anyone under 16. If you believe a child has provided us with personal data, please contact us at [email protected] and we will take steps to delete the data where appropriate and lawful.

12. Policy updates

We may update this Privacy Policy to reflect changes in the site, legal requirements, or how we use service providers. If the changes are material, we will provide a clear notice on the site and, where appropriate, notify subscribers by email. The “Last Updated” date at the top of this page shows when the policy was most recently revised.

If you continue to use the website after an update, you acknowledge that you have had an opportunity to review the updated policy. You can always contact us with questions.

13. Contact and DPO

Folk Ledger Studio Ltd does not currently appoint a formal Data Protection Officer (DPO) because our processing activities do not require one under GDPR. We do, however, maintain a dedicated privacy contact for requests and questions.

Privacy contact

Email: [email protected]

Postal: Privacy Team, Folk Ledger Studio Ltd, 12 Baker Street, London, W1U 3BH, United Kingdom

Phone: +44 20 7946 0958

folk postal envelope and seal for privacy requests

For general site questions that are not privacy-related, you can use [email protected].

Cookie choices on this site

You control non-essential cookies with the banner. If you want to revisit your choice, clear site storage in your browser and reload the page. This will show the banner again. If you have questions about specific tools, email us and we will explain what is enabled in our current configuration.

If you are visiting from an ad, our landing pages and guide pages are designed to match the topic you clicked on. We do not use cloaking or show different content to different visitors. If we run analytics, it is used to improve clarity of the guides, not to infer sensitive traits.

Useful links

Home Terms of Service FAQ Checks & checklist

Unsubscribe and deletion

To unsubscribe from emails, use the link in the email. To request deletion, email [email protected].