Skip to main content Scroll Top
Let's Talk

Privacy Policy

Last updated: 14 October 2025

At MHAFs, your privacy is important to us. This Privacy Policy explains how we collect, use, and protect your personal data when you visit our website, engage with our services, or communicate with our team.

We are committed to protecting your data and ensuring transparency in how it’s used, in line with the UK General Data Protection Regulation (GDPR) and Data Protection Act 2018.

1. Who We Are

MHAFs (“we”, “us”, “our”) is a UK-based digital marketing and SEO agency providing services such as search engine optimisation, paid advertising, content marketing, and digital strategy.

Our registered business address:
🏢 Compass Point, Fareham, UK
📧 asad@mhafs.io

2. Information We Collect

We may collect and process the following types of personal data:

Information you provide directly

  • Full name, company name, and job title
  • Email address and contact number
  • Website URL and business information
  • Payment details (processed securely via third-party providers)
  • Any messages or enquiries submitted via our contact forms or live chat

Information collected automatically

  • IP address, browser type, and device information
  • Pages visited and time spent on our website
  • Cookies and analytics data (via tools like Google Analytics, Meta Pixel, etc.)

We only collect information necessary to deliver and improve our services.

3. How We Use Your Information

We use your data for the following purposes:

  • To provide and manage SEO, PPC, and digital marketing services
  • To communicate with you regarding enquiries, campaigns, or support
  • To improve our website, campaigns, and user experience
  • To send marketing updates, newsletters, or case studies (with your consent)
  • To process payments and maintain client accounts
  • To comply with legal obligations and prevent fraud

We never sell your data — ever.

4. Legal Basis for Processing

We process your personal data under the following legal bases:

  • Consent: When you opt into marketing or communication forms.
  • Contractual necessity: To perform a service or project agreement with you.
  • Legitimate interest: To maintain business operations and improve performance.
  • Legal obligation: To comply with tax, accounting, or regulatory requirements.

5. Data Retention

We retain personal data only for as long as necessary:

  • Client data: kept for up to 7 years for record-keeping and accounting purposes.
  • Marketing data: deleted after 2 years of inactivity or upon your request.
  • Website analytics: anonymised and stored for internal performance analysis.

Once the retention period expires, your data is securely deleted or anonymised.

6. Sharing Your Information

We may share data with trusted third parties that help us deliver our services, such as:

  • Payment processors (e.g., Stripe, PayPal)
  • Email marketing tools (e.g., Mailchimp, Brevo)
  • Analytics platforms (e.g, Google Analytics, Meta Pixel)
  • Hosting and IT support providers

All third-party partners are GDPR-compliant and bound by data protection agreements.

We do not share or sell your information to any unrelated third parties for marketing or profit.

7. Cookies and Tracking Technologies

Our website uses cookies to enhance user experience and analyse performance.
Cookies help us:

  • Understand how visitors use our website
  • Improve design, content, and conversion flow
  • Deliver personalised ads or retargeting campaigns

You can manage or disable cookies through your browser settings at any time.
Read our Cookie Policy for more details (if applicable).

8. Your Data Rights

Under GDPR, you have the following rights:

  • Access – request a copy of your personal data
  • Rectification – correct inaccurate or incomplete information
  • Erasure – request deletion of your data (“right to be forgotten”)
  • Restriction – limit how we use your data
  • Portability – transfer your data to another service provider
  • Objection – object to data processing or marketing communications

To exercise your rights, email us at asad@mhafs.io.
We’ll respond within 30 days of receiving your request.

9. Data Security

We take data protection seriously.
Our website uses SSL encryption, secure servers, and multi-factor authentication for internal accounts.

Access to personal data is restricted to authorised staff and handled in accordance with GDPR guidelines.

10. International Data Transfers

In some cases, your data may be processed outside the UK (e.g., by international service providers such as Google or Meta).
We ensure that all transfers comply with the UK GDPR’s adequacy regulations or are protected by Standard Contractual Clauses (SCCs).

11. Third-Party Links

Our website may contain links to external sites.
We are not responsible for the content or privacy practices of these third-party websites.
We encourage users to review each site’s privacy policy before providing personal information.

12. Changes to This Policy

We may update this Privacy Policy from time to time.
The updated version will always be posted on this page with a revised “Last updated” date.
Continued use of our website and services after changes indicates acceptance of the updated terms.

13. Contact Us

If you have any questions or concerns about this Privacy Policy, please contact us at:

📧 asad@mhafs.io
🌐 mhafs.io
🏢 Compass Point, Fareham, UK