Book a call
Legal

Privacy Policy

How Time to First Bite Ltd collects, uses, and protects information when you visit our website or get in touch.

Last updated28 May 2026

This policy explains what data Time to First Bite Ltd (“we”, “us”, “our”) collects when you interact with this website, why we collect it, how we use it, and the rights you have under UK data protection law. We try to keep this short and readable. If anything is unclear, get in touch.

Who we are

Time to First Bite Ltd is a growth marketing consultancy registered in England and Wales, operating from London, United Kingdom. We are the data controller for the personal data described in this policy.

Website: https://timetofirstbite.com
Contact: nikhil@timetofirstbite.com

What we collect and why

Contact form submissions

When you complete the form on our Contact page, we collect the name, email address, company name (if provided), and the message you submit. We use this only to respond to your enquiry and, if a working relationship begins, to keep a record of the original conversation.

Legal basis: legitimate interests (responding to enquiries) and, where applicable, taking steps to enter into a contract.

Email correspondence

If you email us directly, your email and any information you choose to share are stored in our Gmail mailbox. We use this only to communicate with you.

Technical data

Our hosting provider, Hostinger, logs basic technical information about every request to the website (IP address, browser type, timestamp, page requested). This is standard server logging used for security, abuse prevention, and performance diagnostics. Logs are retained on a rolling short-term basis by the host.

Comments

If you leave a comment on a blog post, we collect the name, email, and (optional) website you provide, plus the IP address and browser user agent string to help with spam detection. An anonymised hash of your email may be sent to the Gravatar service (privacy policy) so a profile picture can appear next to your comment.

Cookies

We use a small number of cookies. None are used for advertising or cross-site tracking.

  • Comment cookies: if you leave a comment and tick the box, your name, email, and website are saved in a cookie for your convenience for up to one year.
  • WordPress login cookies: only relevant if you are a site administrator. These store session and screen preferences while logged in.
  • Cache cookies: our caching layer (LiteSpeed) may set technical cookies to serve the right version of a page. These contain no personal data.

You can clear or block cookies in your browser settings at any time. Blocking cookies will not break browsing of public pages on this site.

Analytics and tracking

We may use privacy-respecting analytics in future to understand which pages are read most. If we add a tool that places cookies or processes personal data beyond what is described above, this policy will be updated and (where required) consent will be requested before that tool is loaded.

Embedded content from other websites

Some posts may include embedded content (for example videos or social media posts). Embedded content behaves exactly as if you had visited the other website directly. Those third parties may collect data about you, set their own cookies, and track your interaction with the embedded content under their own privacy policies.

Who we share your data with

We do not sell your personal data, ever. We share it only with service providers who help us run the website or respond to you:

  • Hostinger (hosting and email infrastructure)
  • Google (Gmail) (email)
  • Automattic / Gravatar (only if you leave a comment with a Gravatar-linked email)
  • Spam detection services for comments, where automated checks are run on submitted content

If a court order, regulator, or law enforcement agency lawfully requires us to share data, we will comply.

How long we keep your data

  • Enquiry form submissions and emails: retained for up to 24 months after the last interaction, then deleted unless we are required to retain them for tax or contractual reasons.
  • Comments: retained indefinitely so we can recognise and approve follow-up comments automatically. You can ask for yours to be removed at any time.
  • Server logs: retained on a short rolling window by our hosting provider.

Your rights under UK GDPR

If we hold personal data about you, you have the right to:

  • request a copy of it (right of access);
  • ask us to correct anything that is inaccurate (right to rectification);
  • ask us to delete it (right to erasure), subject to legal retention requirements;
  • object to or restrict how we process it;
  • request that it be transferred to another provider (right to data portability);
  • withdraw any consent you previously gave.

To exercise any of these rights, email nikhil@timetofirstbite.com. We will respond within one month.

If you believe we have mishandled your data, you can complain to the Information Commissioner’s Office (ICO), the UK regulator: ico.org.uk.

International transfers

Some of our service providers (notably Google and certain hosting and analytics vendors) may process data outside the UK or EEA. Where that happens, we rely on the safeguards required under UK GDPR, including the UK International Data Transfer Addendum or equivalent contractual protections.

Changes to this policy

We will update this page if our practices change or if a new tool is added that affects how data is handled. The “last updated” date at the top will always reflect the most recent revision.

Contact

Questions about this policy, or want to exercise any of your rights? Email nikhil@timetofirstbite.com.