• Home
  • Podcast
  • More
    • Home
    • Podcast
  • Sign In
  • My Account

  • Signed in as:

  • filler@godaddy.com

  • My Account

  • Sign out

Signed in as:

filler@godaddy.com

  • Home
  • Podcast

Account

  • My Account

  • Sign out

  • Sign In
  • My Account

Privacy Policy

Effective Date: 17 February 2026


1. Who We Are


StoryLux Ltd (“StoryLux”, “we”, “us”, “our”) is a company registered in England and Wales.

Company Name: StoryLux Ltd
Registration Number: 15231583
Registered Office: 128 City Road, EC1V 2NX, London, United Kingdom
Operating Address: 128 City Road, EC1V 2NX, London, United Kingdom
Email: chappuzeau@storylux.com


For the purposes of the UK GDPR and Data Protection Act 2018, StoryLux Ltd is the Data Controller.


2. Information Officer (POPIA)


Information Officer: Simon Chappuzeau
Email: chappuzeau@storylux.com

If you are located in South Africa, you may lodge a complaint with:
The Information Regulator (South Africa)
https://inforegulator.org.za/


3. Personal Data We Collect


3.1 Information You Provide Directly


We may collect:

  • Name
  • Email address
  • Company name
  • Phone number
  • Information submitted via website forms
  • Information shared during calls or consultations


3.2 Technical and Website Information


When you visit our website, our hosting provider may automatically collect limited technical information such as:

  • IP address
  • Browser type
  • Device type
  • Date and time of access


This information is used for security, performance, and website functionality purposes.


We do not currently use analytics, advertising pixels, or behavioural tracking technologies.


3.3 CRM and B2B Outreach Data


We use HubSpot CRM to manage business contacts and professional relationships.

We may process publicly available business contact information for B2B communication purposes, including:

  • Professional name
  • Job title
  • Company
  • Business email address
  • Public LinkedIn profile information


4. Legal Basis for Processing


We process personal data under the following lawful bases:

  • Contractual necessity – where processing is required to respond to enquiries or deliver services.
  • Legitimate interests – including B2B marketing and business development, provided your rights do not override these interests.
  • Consent – where you opt into marketing communications.
  • Legal obligation – including accounting and regulatory compliance.


Where we rely on legitimate interests for B2B outreach, we ensure communications are relevant, proportionate, and include opt-out mechanisms.


5. Direct Marketing


We may contact business professionals regarding our services.


You have the right to object at any time to processing for direct marketing purposes.


You may unsubscribe via email links or by contacting chappuzeau@storylux.com.


6. Automated Decision-Making


We do not engage in automated decision-making or profiling that produces legal or similarly significant effects.


7. Sharing of Personal Data


We may share personal data with:

  • HubSpot (CRM provider)
  • LinkedIn (business networking platform)
  • Google Workspace (email and document infrastructure)
  • Asana (project management platform)
  • Website hosting providers
  • Professional advisers (legal and accounting)


All third parties process data under contractual safeguards.


We do not sell personal data.


8. International Transfers


Some service providers may process data outside the United Kingdom.


Where personal data is transferred internationally, we rely on:

  • UK adequacy regulations
  • UK International Data Transfer Agreement (IDTA)
  • Standard Contractual Clauses (SCCs)


9. Data Retention


We retain personal data as follows:

  • Website enquiries: up to 24 months from last interaction
  • Active client records: duration of engagement + 6 years
  • CRM marketing contacts: until objection or removal request
  • Financial records: minimum 6 years under UK law


10. Data Security


We implement appropriate technical and organisational measures including:

  • Encrypted website connections (HTTPS)
  • Role-based access controls
  • Secure cloud infrastructure
  • Restricted internal data access


11. Your Rights


Under UK GDPR and, where applicable, POPIA or EU GDPR, you have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Request erasure
  • Restrict processing
  • Object to processing (including direct marketing)
  • Data portability
  • Withdraw consent


You may contact us at: chappuzeau@storylux.com

UK Supervisory Authority:
Information Commissioner’s Office (ICO)
https://www.ico.org.uk/


12. Data Breach Notification


In the event of a personal data breach likely to result in a risk to individuals’ rights and freedoms, we will notify the relevant supervisory authority within 72 hours where required by law.


13. Cookies


We use only strictly necessary cookies required for website functionality and security.

For more information, please see our Cookie Policy.


14. Updates


We may update this Privacy Policy periodically. The current version will always be published on this page with an updated effective date.

Copyright © 2023 Storylux - All Rights Reserved.

  • Podcast
  • Terms and Conditions
  • Terms of Use
  • Cookie Policy
  • Privacy Policy

Powered by

This website uses cookies.

We use cookies to analyze website traffic and optimize your website experience. By accepting our use of cookies, your data will be aggregated with all other user data.

DeclineAccept