Privacy Policy

Last Updated: June 30, 2025

This Privacy Policy describes how ARC Guernsey (“we”, “our”, or “us”) collects, uses, and shares your personal information when you visit or use our website https://arc.gg (the “Service”).

1. Information We Collect

Personal Information You Provide

We may collect personal information that you voluntarily provide to us when you:

  • Complete contact forms on our website
  • Subscribe to our newsletter or mailing list
  • Request information about our services
  • Download resources or guides
  • Contact us through email or phone
  • Participate in surveys or promotions

This information may include:

  • Contact Information: Full name, email address, phone number, company name, job title
  • Business Information: Company size, industry, website URL, business address
  • Service Inquiry Details: Type of services you’re interested in, project requirements, budget information, timeline
  • Communication Preferences: How you prefer to be contacted, frequency of communications
  • Marketing Consent: Whether you opt-in to receive marketing communications from us
  • Any additional information you choose to provide in message fields or during consultations

Information Collected Automatically

When you visit our Service, we automatically collect certain information about your device and usage through various technologies including Google Analytics, Google Tag Manager, and Cloudflare security services:

  • IP address and general location information (city/region level)
  • Browser type, version, and language settings
  • Device type, operating system, and screen resolution
  • Pages visited, time spent on pages, and navigation paths
  • Referring website or traffic source (how you found our website)
  • Date and time of access
  • User interactions (clicks, scrolls, form submissions)
  • Website performance metrics and error reports
  • Security-related information to protect against threats and ensure website availability

This information helps us understand how visitors use our website, improve our services, optimize the user experience, and maintain website security and performance.

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our Service. For detailed information about our use of cookies, please see our Cookie Policy section below.

2. How We Use Your Information

We use the information we collect for various purposes, including:

  • Service Delivery: Providing information about our services and responding to your inquiries
  • Communication: Contacting you about your service requests and following up on inquiries
  • Marketing: Sending relevant service information, case studies, and promotional content (only with your consent)
  • Lead Management: Storing and managing your contact information in our CRM system to track communications and service opportunities
  • Website Optimization: Analyzing how visitors use our website to improve user experience and service offerings
  • Performance Monitoring: Using Google Analytics to understand website traffic patterns and user behavior
  • Service Improvement: Identifying popular services and content to better serve our clients
  • Legal Compliance: Meeting our legal obligations and protecting our business interests
  • Security: Detecting and preventing fraud, spam, and security threats

3. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA) or United Kingdom, our legal basis for collecting and using your personal information depends on the information concerned and the context in which we collect it. We may process your personal information because:

  • We need to perform a contract with you
  • You have given us consent to do so
  • The processing is in our legitimate interests (and not overridden by your rights)
  • We need to comply with legal obligations

4. How We Share Your Information

We do not sell, trade, or rent your personal information to third parties. We may share your information in the following circumstances:

Service Providers

We may share your information with trusted third-party service providers who perform services on our behalf, including:

  • CRM Services: our CRM system for managing contact information and communications
  • Email Marketing: Email service providers for sending newsletters and marketing communications (only if you’ve opted in)
  • Website Analytics: Google Analytics for website performance analysis and user behavior insights
  • Website Hosting: EU/UK-based hosting providers for website infrastructure and maintenance
  • Content Delivery Network: Cloudflare for website security, performance optimization, and DDoS protection
  • Communication Tools: Services that help us respond to inquiries and provide customer support
  • Security Services: Providers that help protect our website from spam, fraud, and security threats

All service providers are contractually required to protect your information and use it only for the specific services they provide to us. Our hosting and CDN services operate within the EU/UK to ensure your data remains within these jurisdictions.

Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities, including:

  • Compliance with legal processes
  • Protection of our rights, property, or safety
  • Prevention of fraud or illegal activities
  • National security or law enforcement requirements

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

Consent

We may share your information for other purposes with your explicit consent.

5. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. The retention period depends on:

  • The nature of the information
  • The purposes for which it is processed
  • Legal and regulatory requirements
  • The need to resolve disputes or enforce agreements

When we no longer need your personal information, we will securely delete or anonymize it.

6. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

Access and Portability

  • Request access to your personal information
  • Receive a copy of your personal information in a structured, commonly used format

Correction and Updates

  • Request correction of inaccurate or incomplete information
  • Update your account information and preferences

Deletion

  • Request deletion of your personal information (subject to certain exceptions)

Restriction and Objection

  • Request restriction of processing in certain circumstances
  • Object to processing for direct marketing purposes
  • Object to processing based on legitimate interests

Withdrawal of Consent

  • Withdraw consent at any time (where processing is based on consent)

Marketing Communications

You can opt out of marketing communications at any time by:

  • Clicking the unsubscribe link in any marketing email
  • Contacting us directly at hello@arc.gg
  • Updating your preferences through our website

Important: You will continue to receive service-related communications (such as responses to your inquiries) even if you opt out of marketing communications.

To exercise these rights, please contact us at hello@arc.gg. We will respond to your request within the timeframes required by applicable law.

7. International Data Transfers

All our websites are hosted within the European Union or United Kingdom, ensuring that your personal data remains within jurisdictions that provide strong data protection standards. Our hosting infrastructure is located in [EU/UK – specify region], and we use Cloudflare’s content delivery network which operates data centers across the EU and UK.

When we use third-party service providers (such as Google Analytics or our CRM system), we ensure that:

  • Appropriate data transfer agreements are in place
  • Adequate safeguards protect your personal information
  • All transfers comply with GDPR and UK GDPR requirements
  • We only work with providers that offer strong privacy protections

8. Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

9. Children’s Privacy

Our Service is not intended for anyone under the age of 18. We do not knowingly collect personal information from children under the age of 18. If you believe we have collected information from a child under the applicable age, please contact us immediately so we can delete such information.

10. Third-Party Links

Our Service may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any personal information.

11. Cookie Policy

What Are Cookies

Cookies are small text files stored on your device when you visit our website. They help us provide you with a better experience by remembering your preferences and analyzing how you use our Service.

Types of Cookies We Use

Essential Cookies These cookies are necessary for the website to function properly and cannot be disabled:

WordPress & Website Functionality:

  • WordPress Session Cookies: Enable basic website functionality and form submissions
  • Security Cookies: Protect against spam and malicious activity
  • GDPR Consent Cookies: Remember your cookie preferences and consent choices

Cloudflare Security & Performance Cookies (Mandatory):

  • __cf_bm: Cloudflare Bot Management cookie that identifies and mitigates automated traffic (expires after 30 minutes)
  • cf_clearance: Cloudflare security cookie that stores the result of a challenge (expires after 30 minutes to 24 hours)
  • __cflb: Cloudflare Load Balancer cookie for session affinity and load distribution (expires after 24 hours)
  • __cfwaitingroom: Cloudflare Waiting Room cookie for managing website traffic during high load (session-based)
  • cf_ray: Cloudflare Ray ID for troubleshooting and identifying requests (session-based)

These Cloudflare cookies are essential for:

  • Protecting the website from malicious attacks and bot traffic
  • Ensuring website availability and performance
  • Load balancing and traffic management
  • Providing security challenges when necessary
  • Enabling proper functionality of the content delivery network

Performance and Analytics Cookies These cookies help us understand how visitors interact with our website:

Google Analytics Cookies:

  • _ga: Distinguishes unique users (expires after 2 years)
  • ga*: Contains campaign, session, and traffic source information (expires after 2 years)
  • _gid: Distinguishes unique users (expires after 24 hours)
  • gat_gtag-*: Used to throttle request rate (expires after 1 minute)

Google Tag Manager Cookies:

  • _gtm: Associated with Google Tag Manager to track user interactions (session-based)

Functional Cookies These cookies remember your preferences and provide enhanced features:

  • Cookie Consent Preferences: Remember your choices about cookie usage
  • Form Data: Temporarily store form information to improve user experience
  • Language/Region Settings: Remember your location and language preferences

Marketing and Advertising Cookies (if applicable) These cookies may be used if you opt-in to marketing communications:

  • Google Ads Cookies: Track conversions and website interactions for advertising purposes
  • Remarketing Cookies: Enable targeted advertising to previous website visitors
  • Social Media Cookies: If social media integration is present (Facebook Pixel, LinkedIn Insight Tag, etc.)

Third-Party Cookies and Services

We use the following third-party services that may set their own cookies:

Cloudflare (Content Delivery Network & Security)

  • Purpose: Website security, performance optimization, DDoS protection, and content delivery
  • Data Collected: IP addresses, request headers, security challenge responses, performance metrics
  • Retention: Varies by cookie type (30 minutes to 24 hours for most security cookies)
  • Privacy Policy: https://www.cloudflare.com/privacypolicy/
  • Note: Cloudflare cookies are essential for website security and cannot be disabled

Google Analytics 4 (GA4)

  • Purpose: Website traffic analysis, user behavior tracking, and performance measurement
  • Data Collected: Page views, session duration, traffic sources, device information, general location data
  • Retention: User-level data is retained for 14 months, event-level data for 2 months
  • Privacy Controls: Users can opt-out via Google’s opt-out browser add-on

Google Tag Manager

  • Purpose: Manages and deploys marketing tags without modifying website code
  • Data Collected: User interactions, page views, and custom events
  • Retention: Based on individual tag configurations

Additional Third-Party Services (customize based on actual usage):

  • our CRM system: For contact form submissions and lead management
  • Email Marketing Platform: If newsletter signup forms are embedded
  • Social Media Platforms: If social sharing or login features are present

Managing Cookies

You can control and manage cookies in various ways:

Browser Settings Most browsers allow you to:

  • View cookies stored on your device
  • Block cookies from specific websites
  • Delete existing cookies
  • Set preferences for future cookies

Google Analytics Opt-Out You can opt-out of Google Analytics tracking by:

  • Installing the Google Analytics Opt-out Browser Add-on
  • Using browser settings to block analytics cookies
  • Enabling “Do Not Track” in your browser (where supported)

Cookie Consent Management When you first visit our website, you’ll see a cookie consent banner where you can:

  • Accept all cookies
  • Reject non-essential cookies
  • Customize your cookie preferences
  • Change your preferences at any time using the cookie settings link

Impact of Blocking Cookies Please note that blocking certain cookies may:

  • Affect website functionality and security
  • Require you to re-enter information
  • Limit our ability to improve the website experience
  • Prevent us from measuring website performance
  • Important: Cloudflare security cookies cannot be disabled as they are essential for protecting the website from attacks and ensuring availability. Blocking these cookies may prevent you from accessing the website.

Essential vs. Optional Cookies

  • Essential cookies (including Cloudflare security cookies) are required for basic website functionality and security
  • Analytics cookies can be controlled through your browser settings or our cookie consent banner
  • Marketing cookies are only used with your explicit consent

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any material changes by:

  • Posting the updated policy on this page
  • Updating the “Last updated” date
  • Sending email notifications for significant changes (where required by law)

Your continued use of our Service after any changes constitutes acceptance of the updated Privacy Policy.

13. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

  • ARC Guernsey
  • Email: hello@arc.gg
  • Phone: +44 1481 249318
  • Address: ARC, Southside, St. Sampsons, Guernsey, GY2 4QL

Data Protection Officer: hello@arc.gg

For residents of the EEA or UK, you also have the right to lodge a complaint with your local data protection authority if you believe we have not addressed your concerns adequately.