Privacy Policy

Last updated: 24/11/2025

Woodwork Hero (“we”, “us”, “our”) is operated by Lion’s Roar Media. We are committed to protecting your privacy, handling your data securely, and being transparent about how your information is collected and used. This Privacy Policy explains what information we collect, how we use it, how it is stored, and the rights you have under UK GDPR.

If you have any questions about this policy, you can contact us at: [email protected]

1. Who We Are

Lion’s Roar Media
Trading as Woodwork Hero
United Kingdom
Email: [email protected]

We operate in the United Kingdom and comply with the UK General Data Protection Regulation (UK GDPR).

2. Information We Collect

We collect and process the following types of information:

Personal Information

• Name

• Email address

• Phone number

• Business name

• Business address

• Payment information (processed securely via Stripe or PayPal)

• Photos, videos, or project images you choose to share

• Information submitted through onboarding forms

• Any messaging or communication sent through our website, forms, SMS, or email

• Lead data from your customers (when using our lead management services via HighLevel)

Technical Information

• Cookies and tracking data

• IP address

• Browser type and version

• Device information

• Usage data (pages viewed, time on site, referral source)

• Analytics data from tools such as Google Analytics

3. How We Collect Your Information

We collect data through:

• Website forms

• Order forms

• Onboarding forms

• HighLevel funnels and CRM

• Email or SMS communication

• Payment processors (Stripe, PayPal)

• Cookies and analytics tools

• Automatic tracking technologies

• Any information you voluntarily provide

4. How We Use Your Information

We use your information to:

Provide and manage our services

• Build websites

• Configure CRM and lead management systems

• Set up automations, notifications, and follow-up workflows

• Personalize your website, content, and messaging

Communicate with you

• Email or SMS updates

• Support and customer service

• Scheduling and onboarding

• Sending reports, reminders, and system notifications

Process sales and payments

• Through Stripe or PayPal

• To provide invoices, receipts, and billing information

Marketing and service improvement

• Send newsletters or promotional content (if you opt in)

• Improve our website, services, and user experience

• Analyse trends and performance

Legal and compliance

• Record-keeping

• Fraud prevention

• Regulatory requirements

5. Sharing Your Information

We only share your data with trusted third-party providers necessary to deliver our service:

Third-party processors we use

• GoHighLevel (CRM, automation, communication tools)

• Stripe (payment processing)

• PayPal (payment processing)

These providers process data on our behalf and must comply with GDPR-level security standards.

We do not sell, rent, or trade your information with any third parties.

6. Cookies & Tracking Technologies

This website uses cookies and similar technologies to:

• Enable core site functionality

• Measure site performance

• Analyse visitor behaviour

• Personalise content

Categories of Cookies

• Strictly necessary cookies — required for the website to function

• Analytics cookies — help us understand usage patterns

• Marketing cookies — only active with consent

Under UK GDPR, you may accept or decline non-essential cookies at any time.

A full cookie list can be provided upon request.

7. Data Retention — How Long We Keep Your Information

We retain your data only as long as necessary for:

• Delivering services

• Supporting your account

• Legal or tax obligations

• Resolving disputes

• Maintaining business records

By default:

• Client project data is stored for up to 7 years

• Customer lead data (in HighLevel) is stored for as long as your account remains active

• Emails and communication history may be retained for legitimate business purposes

• You may request deletion at any time (see below)

If you cancel your services, you may request removal of your data from our systems, and we will comply unless legal obligations require us to retain it.

8. How We Protect Your Data

We use multiple layers of security, including:

• SSL encryption on all web traffic

• Encrypted storage by third-party processors (Stripe, HighLevel)

• Secure login and access controls

• Regular system updates

• Limited internal access to data

• Secure handling of client media (photos, documents, etc.)

While no online system can guarantee 100% security, we take all reasonable steps to protect your information.

9. Your Rights Under UK GDPR

As a UK or EU resident, you have the right to:

• Access your personal data

• Correct inaccurate data

• Request deletion (“right to be forgotten”)

• Restrict processing of your data

• Object to processing

• Transfer your data to another provider

• Withdraw consent at any time

• Complain to the ICO if you believe your rights are violated

To submit any request, contact us at:
📧 [email protected]

We will respond within the legally required timeframe.

10. International Data Transfers

Our services may store or process data using third-party providers outside the UK (e.g., HighLevel servers in the US).

When this occurs, we ensure that:

• Your data is processed securely

• GDPR-compliant safeguards such as Standard Contractual Clauses (SCCs) are in place

11. Children’s Privacy

Our services are not intended for individuals under 18.
We do not knowingly collect data from minors.

12. Updates to This Privacy Policy

We may update this policy to reflect:

• Legal requirements

• Service changes

• New features

• Updated security practices

Any changes will be posted on this page with a new “Last updated” date.

13. Contact Us

If you have questions, concerns, or requests relating to your personal data, contact:

📧 [email protected]
United Kingdom

We aim to respond promptly and handle all matters transparently and fairly.