Privacy Policy
Effective Date: 10 November 2025
This Privacy Policy describes how Impex Ventures Limited (trading as “Digital Captain Co.”) (“we”, “our”, or “us”) collects, uses, and protects personal data when you visit digitalcaptain.co or interact with our services. For the purposes of applicable data protection laws, Impex Ventures Limited is the data controller for personal data collected through this website.
1. Who We Are
This website is operated by Impex Ventures Limited, trading as Digital Captain Co. We are a marketing technology consultancy specializing in web analytics, website setup, and marketing automation solutions. Our website (https://digitalcaptain.co) is built using Bluehost and WordPress and integrates HubSpot, Google Analytics 4 (GA4), and Cloudflare for secure and efficient performance.
Registered office: Unit 601, 6F, Mill 5 of the Mills, 45 Pak Tin Par Street, Tsuen Wan, Hong Kong
2. Personal Data We Collect
We collect and process personal data only when it is necessary to provide services, improve the website, or communicate with you. The data we collect includes:
- Information you provide directly via forms or communication, such as name, company name, email address, phone number (if provided), and message content.
- Information collected automatically, such as IP address (anonymized where required by law), browser type and version, device information, pages visited, time spent, click interactions, and referring source, collected through Google Analytics 4 and managed via Google Tag Manager.
- Information from cookies and similar technologies, such as session identifiers, consent preferences, and analytics data stored through cookies (Cloudflare, HubSpot, GA4).
3. How We Use Personal Data
We use the data collected for the purposes below. We rely on consent for analytics and marketing, legitimate interests for security and service continuity, and contract when responding to service requests or quotes. We do not sell, rent, or trade personal data.
Purpose |
Description |
|
Service delivery |
Respond to inquiries, provide quotes, and deliver requested services. |
|
Analytics and website improvement |
Monitor traffic, improve content, and optimize the user experience. |
|
Marketing and communications |
Send updates or promotional messages if you opted in; you may unsubscribe at any time. |
|
Security and performance |
Prevent misuse, spam, or technical issues using Cloudflare and related tools. |
|
Compliance |
Comply with legal obligations or respond to lawful requests from authorities. |
4. Data Sharing and Third-Party Processors
We share personal data only with service providers who help operate the website, manage analytics, and deliver services. These parties process data on our instructions under written agreements and maintain appropriate security and compliance. The main processors include:
- HubSpot, Inc. (CRM and marketing automation) – processes form submissions, email communications, and CRM data.
- Google LLC (Google Analytics 4) – provides aggregated analytics on site usage and performance.
- Cloudflare, Inc. (security and performance) – provides DDoS protection, bot mitigation, and edge caching.
- Bluehost (hosting and infrastructure) – hosts the website and manages server uptime and basic logs.
5. Cookies and Tracking Technologies
We use cookies and similar technologies to ensure website functionality, analyze usage, store consent preferences, and support secure performance. Analytics and marketing cookies are used only after you grant consent. You can manage or withdraw your cookie choices at any time via our cookie banner or your browser settings.
5.1 Types of Cookies
Category |
Description |
|
Strictly Necessary |
Required for core site functionality and security. These cannot be switched off in our systems. |
|
Functional |
Enable non-essential features such as remembering consent choices or optimizing delivery speed. |
|
Analytics |
Help us understand how visitors use the website through aggregated statistics. |
|
Marketing |
Track interactions with forms and marketing content to measure campaign effectiveness. |
5.2 Cookie Inventory
Cookie Name |
Domain |
Source / Tool |
Purpose |
Expiry |
Type |
|
__cf_bm |
.hubspot.com |
Cloudflare |
Verifies legitimate traffic to HubSpot forms and filters out bots to protect HubSpot infrastructure. |
30 minutes |
Strictly Necessary |
|
_cfuvid |
.hubspot.com |
Cloudflare |
Assigns a temporary ID to each request to manage rate limiting and prevent abuse on HubSpot-hosted content. |
Session |
Strictly Necessary |
|
__cf_bm |
digitalcaptain.co |
Cloudflare |
Distinguishes between humans and bots to protect the website from malicious traffic and abuse. |
30 minutes |
Strictly Necessary |
|
nfd-enable-cf-opt |
digitalcaptain.co |
Cloudflare |
Supports performance optimization and caching features managed through Cloudflare to ensure faster page delivery. |
1 year |
Functional |
|
dc_consent |
digitalcaptain.co |
Consent banner |
Stores visitor cookie consent preferences to ensure the website respects user choices across sessions. |
1 year |
Functional |
|
_ga / _ga_* |
digitalcaptain.co |
Google Analytics |
Registers a unique ID to distinguish users and track sessions for aggregated reports on website performance and visitor behavior. |
2 years |
Analytics |
|
__hssc |
digitalcaptain.co |
HubSpot |
Tracks sessions and determines if the session number and timestamps in the __hstc cookie should be updated. |
30 minutes |
Analytics |
|
__hssrc |
digitalcaptain.co |
HubSpot |
Detects whether a visitor has restarted their browser and resets the session if necessary. |
Session |
Analytics |
|
__hstc |
digitalcaptain.co |
HubSpot |
Main tracking cookie used by HubSpot to identify visitors and track website activity over time. |
6 months |
Analytics / Marketing |
|
hubspotutk |
digitalcaptain.co |
HubSpot |
Stores a unique visitor identifier to associate form submissions with past visits and track conversions. |
6 months |
Analytics / Marketing |
6. Data Retention and Storage
We retain personal data only as long as necessary for the purposes described in this policy or as required by law. Typical retention periods are:
- HubSpot form submissions: up to 24 months unless deletion is requested.
- Google Analytics data: 14 months, then automatically deleted or aggregated.
- Server and security logs: up to 90 days.
After these periods, data is securely deleted or anonymized. Data is stored on secure infrastructure with encryption in transit and access controls.
7. Data Deletion and Your Rights
You may request deletion of your personal data, withdraw consent, or exercise access and correction rights at any time. We may ask for information to verify your identity before acting on a request. We respond within one month, subject to permitted extensions for complex requests. Backups may retain limited data for a short period until overwritten, after which the data is not recoverable. To make a request, contact [email protected].
8. Embedded Content from Other Websites
Pages on this site may include embedded content (for example, videos, forms, or links). Embedded content from other websites behaves in the same way as if you visited the other website, which may collect data, use cookies, or track your interaction according to their own policies.
9. User-Uploaded Media
If you upload images or files to the website, do not include embedded location data (EXIF GPS). Visitors could download and extract location data from such files.
10. Security
We employ administrative, technical, and physical safeguards designed to protect personal data against unauthorized access, loss, misuse, or alteration. No method of transmission or storage is completely secure; we maintain and improve safeguards on an ongoing basis.
11. International Data Transfers
Where personal data is transferred across borders, we use appropriate safeguards recognized under applicable data protection laws, including data transfer agreements or participation in recognized transfer frameworks.
12. Children’s Data
This website is not intended for children under the age of 16, and we do not knowingly collect personal data from children. If you believe a child has provided personal data to us, contact [email protected] to request deletion.
13. Complaints
If you have concerns about how we handle your personal data, contact us at [email protected]. You may also lodge a complaint with your local data protection authority.
14. Changes to This Policy
We may update this Privacy Policy to reflect legal, technical, or business changes. The latest version will be posted on this page with its effective date.
15. Contact
Impex Ventures Limited
(trading as Digital Captain Co.)
Email: [email protected]
Registered office: Unit 601, 6F, Mill 5 of the Mills, 45 Pak Tin Par Street, Tsuen Wan, Hong Kong
Website: https://digitalcaptain.co