Privacy Policy

Last updated: March 2026

1. Who We Are

Little ("we", "us", "our") is a collective of specialised IT, cloud, AI, and marketing companies. This privacy policy explains how we collect, use, and protect your personal information when you visit our website at littlewebco.com and interact with our services.

Data Controller: Little Group of Companies Pty Ltd. For privacy enquiries, please contact our Data Protection Officer at [email protected].

2. Information We Collect

We collect the following personal information when you submit our contact form:

  • Name - to address you in our response
  • Email address - to reply to your enquiry
  • Service of interest - to direct your enquiry appropriately
  • Message content - the details of your enquiry

We do not collect personal information through any other means on this website. We do not use analytics tracking or advertising cookies.

3. Lawful Basis for Processing

We process your personal data on the following legal bases:

  • Consent - You actively choose to submit your information via the contact form
  • Legitimate interest - To respond to your business enquiry and provide the services you have requested information about

4. How We Use Your Information

Your personal information is used solely to:

  • Respond to your enquiry
  • Provide information about our services
  • Direct your enquiry to the appropriate Little member company

We do not use your personal information for marketing purposes unless you explicitly opt in.

5. Data Sharing and Third Parties

Your contact form submissions are processed through the following third-party services:

  • Cloudflare - Website hosting and security (CDN, DDoS protection)
  • am8.dev - Webhook service for processing contact form submissions
  • GDPRcc - Cookie consent management widget

We do not sell, rent, or trade your personal information to any third parties.

6. Data Retention

Contact form submissions are retained for a maximum of 12 months from the date of submission. After this period, your data is securely deleted unless an ongoing business relationship has been established.

7. Your Rights

Under applicable data protection legislation (including GDPR), you have the right to:

  • Access - Request a copy of the personal data we hold about you
  • Rectification - Request correction of inaccurate personal data
  • Erasure - Request deletion of your personal data
  • Restriction - Request restriction of processing of your personal data
  • Portability - Request transfer of your personal data
  • Object - Object to processing of your personal data

To exercise any of these rights, please contact our Data Protection Officer at [email protected]. We will respond to your request within 30 days.

8. Cookies

Our website uses a cookie consent widget provided by GDPRcc. For detailed information about the cookies we use, please see our Cookie Policy.

9. Security

We take the security of your personal data seriously. Our website is served over HTTPS with TLS encryption, protected by Cloudflare's security infrastructure, and we implement Content Security Policy headers to prevent cross-site scripting attacks.

10. Changes to This Policy

We may update this privacy policy from time to time. Any changes will be posted on this page with an updated "Last updated" date.

11. Contact Us

If you have any questions about this privacy policy or our data practices, please contact our Data Protection Officer at [email protected] or visit our contact page.