Privacy Policy

Last updated: 29 July 2025

1. Introduction

Frosted Moon ("we", "our", or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website frosted-moon.com or use our services.

This policy complies with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Information We Collect

2.1 Information You Provide Directly

  • Contact Information: Name, email address, phone number, and postal address when you contact us or subscribe to our newsletter
  • Business Information: Company details, business stage, and project requirements when you enquire about our services
  • Communication Records: Records of correspondence when you contact us via email, phone, or our website

2.2 Information Collected Automatically

  • Website Usage Data: Pages visited, time spent on pages, click patterns, and referral sources
  • Technical Information: IP address, browser type, operating system, and device information
  • Cookies and Similar Technologies: As described in our Cookie Policy

3. How We Use Your Information

We process your personal information for the following purposes based on legitimate interests or consent:

  • Service Provision: To provide startup consulting services and respond to your enquiries
  • Communication: To send you newsletters, updates, and relevant business information (with your consent)
  • Website Improvement: To analyse website usage and improve user experience
  • Legal Compliance: To comply with applicable laws and regulations
  • Business Operations: For record-keeping, accounting, and other business purposes

4. Legal Basis for Processing

We process your personal data under the following legal bases:

  • Consent: For newsletter subscriptions and marketing communications
  • Legitimate Interests: For website analytics, business development, and improving our services
  • Contract Performance: To fulfil our obligations under service agreements
  • Legal Obligation: To comply with regulatory requirements

5. Data Sharing and Disclosure

We do not sell your personal information. We may share your information with:

  • Service Providers: Third-party companies that help us operate our business (e.g., email service providers, analytics tools)
  • Professional Advisors: Lawyers, accountants, and other professional service providers
  • Legal Requirements: When required by law or to protect our legal rights
  • Business Transfers: In the event of a merger, acquisition, or asset sale

6. Data Security

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit and at rest
  • Regular security assessments and updates
  • Access controls and employee training
  • Secure hosting and backup procedures

7. Data Retention

We retain your personal information for as long as necessary to:

  • Provide our services and maintain our relationship with you
  • Comply with legal obligations and resolve disputes
  • Meet regulatory requirements (typically 6-7 years for business records)

Newsletter subscribers may unsubscribe at any time, and their data will be removed from marketing lists immediately.

8. Your Rights

Under UK data protection law, you have the following rights:

  • Access: Request a copy of the personal information we hold about you
  • Rectification: Request correction of inaccurate or incomplete information
  • Erasure: Request deletion of your personal information (subject to legal obligations)
  • Restriction: Request limitation of processing in certain circumstances
  • Portability: Request transfer of your data to another organisation
  • Objection: Object to processing based on legitimate interests
  • Withdraw Consent: Withdraw consent for marketing communications at any time

To exercise these rights, please contact us using the details in Section 11.

9. International Transfers

Your personal information may be transferred to and stored in countries outside the UK. When we do this, we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses approved by the UK authorities
  • Adequacy decisions recognising equivalent data protection standards
  • Other appropriate safeguards as required by law

10. Children's Privacy

Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please contact us immediately.

11. Contact Information

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

Frosted Moon
42 Regent Street
London W1B 5TE
United Kingdom

Email: [email protected]
Phone: +44 20 7946 2000

12. Complaints

You have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's supervisory authority for data protection matters:

Information Commissioner's Office
Website: ico.org.uk
Phone: 0303 123 1113

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date. Your continued use of our services after such changes constitutes acceptance of the updated policy.

Terms of Service Cookie Policy Return to Homepage