Privacy Policy

Last updated: 2026-01-26

Who we are

Our website address is: https://udawards.com (“we”, “us”, “our”).

We are committed to protecting your privacy and handling your personal data in a transparent and secure manner, in accordance with applicable data protection laws including the UK GDPR, EU GDPR, and relevant US privacy and email marketing laws.

Personal data we collect

Comments

When visitors leave comments on the site, we collect the data shown in the comments form, as well as the visitor’s IP address and browser user agent string to help with spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to check if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Newsletter & email marketing

When you subscribe to our newsletter or sign up via a form or popup on our website, we collect personal data such as your email address and, if provided, your name.

This data is used to:

• Send newsletters and email communications
• Share updates, announcements, and promotional content
• Improve our communications and engagement

We use MailerLite as our email marketing service provider. By subscribing, you acknowledge that your information will be transferred to MailerLite for processing in accordance with their privacy practices.

MailerLite may also collect additional information such as:

• IP address
• Date and time of subscription
• Email interaction data (e.g. opens and clicks)

You can unsubscribe from our emails at any time by clicking the unsubscribe link in any email we send.

MailerLite’s Privacy Policy is available here: https://www.mailerlite.com/legal/privacy-policy

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS), as visitors may be able to download and extract this information from images on the site.

Cookies

If you leave a comment on our site, you may opt in to saving your name, email address, and website in cookies. These cookies are for your convenience and last for one year.

If you visit our login page, a temporary cookie will be set to determine whether your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we set cookies to save your login information and display preferences. Login cookies last for two days, and screen options cookies last for one year. If you select “Remember Me”, your login will persist for two weeks. Logging out removes the login cookies.

If you edit or publish an article, an additional cookie is saved in your browser. This cookie contains no personal data and expires after one day.

Where required by law (such as in the UK and EU), cookies and similar technologies are used only with your consent.

Third-party tools and services

Google Tag Manager

We use Google Tag Manager (GTM) to manage and deploy various marketing and analytics tags on our website. Google Tag Manager itself does not collect personal data or set cookies. However, GTM may collect aggregated data about tag firing for diagnostics and performance monitoring. This data does not include user IP addresses or personal identifiers.

GTM connects to Google servers when pages load, which means certain technical data (such as IP address, device information, and referrer URL) is transmitted to Google as part of standard internet protocol.

Important: In accordance with recent regulatory guidance (including a March 2025 German court ruling), we require explicit user consent before loading Google Tag Manager and any tags it controls. Tags that collect personal data will only fire after you provide consent through our cookie consent banner.

Data processed:

• Technical connection data (IP address, date, time, requested page, browser information)
• Tag firing diagnostics (aggregated, non-personal data)

Legal basis for processing: Your consent according to Art. 6 (1) a GDPR.

For more information: https://policies.google.com/privacy

Google Analytics

We use Google Analytics to analyze how visitors use our website. Google Analytics uses cookies to collect information about website traffic and user interactions. This includes data such as pages visited, time spent on site, and referral sources.

Data processed:

• IP address (anonymized where possible)
• Device and browser information
• Pages visited and user interactions
• Geographic location (approximate)

Legal basis for processing: Your consent according to Art. 6 (1) a GDPR.

We have entered into a Data Processing Agreement (DPA) with Google through their Google Ads Data Processing Terms. This agreement ensures that Google processes data on our behalf in accordance with GDPR requirements.

For more information: https://policies.google.com/privacy

Google Web Fonts

We use Google Fonts to display custom typography on our website. When you visit our website, your browser makes requests to Google’s servers to load the necessary font files.

During this process, Google receives your IP address and other HTTP request data (such as browser type, operating system, and the webpage requesting the font). Google states that this data is used to respond to font requests and for security purposes. Google Fonts does not set cookies.

Data processed:

• IP address
• Browser and device information (via HTTP headers)
• Referring webpage URL

Legal basis for processing: Your consent according to Art. 6 (1) a GDPR.

Alternative: To avoid sending data to Google, we may self-host fonts locally in the future. Currently, Google Fonts are loaded only after you provide consent through our cookie consent banner.

For more information: https://developers.google.com/fonts/faq/privacy

Font Awesome

We use Font Awesome to display icons on our website. When icons are loaded from Font Awesome’s CDN (Content Delivery Network), your browser connects to Font Awesome’s servers.

During this process, your IP address is transmitted to Font Awesome as part of standard internet protocol. This is necessary for the server to respond to your browser’s request.

Data processed:

• IP address
• Browser and device information (via HTTP headers)

Legal basis for processing: Your consent according to Art. 6 (1) a GDPR, or legitimate interests according to Art. 6 (1) f GDPR (for essential icon functionality).

Note: We are evaluating options to self-host Font Awesome files locally to minimize external data transfers.

For more information: https://fontawesome.com/privacy

Consent management

Cookie consent tool

We use CookieScript as our cookie consent management platform. CookieScript helps us obtain, manage, and document your consent choices for cookies and similar technologies.

CookieScript processes data to:

• Display the cookie consent banner
• Record your consent preferences
• Ensure only consented cookies are set

CookieScript anonymizes IP addresses during processing and does not permanently store personally identifiable information on our behalf. The anonymized consent data is stored with a user consent ID and consent string in your browser.

CookieScript’s products are designed in compliance with GDPR regulations. As CookieScript does not process personal data on our behalf in a manner requiring a Data Processing Agreement, we rely on their published privacy practices and compliance documentation.

For more information: https://cookie-script.com/privacy-policy

Embedded content from other websites

Articles on this site may include embedded content (such as videos, images, or articles). Embedded content behaves in the same way as if you visited the other website.

These websites may collect data about you, use cookies, embed third-party tracking, and monitor your interaction with embedded content, particularly if you are logged in to that website.

Who we share your data with

We may share your personal data with trusted third-party service providers who help us operate our website and services, including:

• MailerLite – for email marketing and newsletter distribution
• Google – for analytics (Google Analytics), tag management (Google Tag Manager), and fonts (Google Web Fonts)
• Font Awesome – for icon display
• CookieScript – for cookie consent management
• Cloudflare – for security and performance services (via HubSpot)
• HubSpot – for chat functionality and marketing automation
• Spam detection services – for comment moderation

These third parties process personal data only on our instructions and in compliance with applicable data protection laws.

If you request a password reset, your IP address will be included in the reset email.

Data Processing Agreements (DPAs)

In accordance with Article 28 of the GDPR, we have ensured that appropriate contractual arrangements are in place with our data processors:

• Google Analytics / Google Tag Manager: We have accepted the Google Ads Data Processing Terms, which serve as our Data Processing Agreement with Google. This can be accepted within the Google Analytics/Tag Manager Administration settings.
• CookieScript: CookieScript has confirmed that their products are designed with GDPR compliance built-in. As they anonymize IP addresses and do not process personally identifiable customer data on our behalf, a separate DPA is not required according to their documentation.
• MailerLite: We rely on MailerLite’s published Data Processing Agreement and privacy practices for GDPR compliance.

If you require documentation of our data processing arrangements, please contact us.

Cross-border data transfers

Some of the third-party services we use may process data outside your country of residence, including outside the UK or European Economic Area (EEA). This includes:

• Google services (Analytics, Tag Manager, Fonts): Data may be transferred to the United States. Google participates in the EU-U.S. Data Privacy Framework and has implemented Standard Contractual Clauses (SCCs) to ensure adequate protection for international data transfers.
• MailerLite: Data may be processed outside the EEA. MailerLite uses appropriate safeguards including SCCs for international transfers.
• Font Awesome: Data may be transferred to the United States. Font Awesome’s privacy practices govern such transfers.
• HubSpot: Data may be processed in the United States. HubSpot participates in the EU-U.S. Data Privacy Framework.

Your consent for cross-border transfers: By providing your consent through our cookie consent banner and by using our services, you acknowledge and consent to the transfer of your personal data to countries outside the EEA, including the United States, where data protection laws may differ from those in your jurisdiction. We ensure that appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission, to protect your personal data during such transfers.

Where this occurs, we ensure appropriate safeguards are in place to protect your personal data in accordance with applicable data protection laws, including:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Participation in recognized data transfer frameworks (such as the EU-U.S. Data Privacy Framework)
• Supplementary technical and organizational measures where necessary

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely to allow automatic approval of follow-up comments.

For users who register on our website (if any), we store the personal information provided in their user profile. Users can see, edit, or delete their personal information at any time (except usernames). Website administrators can also see and edit that information.

Newsletter subscriber data is retained for as long as you remain subscribed. You may unsubscribe at any time.

Analytics data is retained according to our Google Analytics settings and Google’s data retention policies.

Legal basis for processing personal data

If you are located in the UK or European Economic Area (EEA), we process your personal data on the following legal bases:

• Consent – when you subscribe to our newsletter, accept cookies and tracking technologies, or consent to data transfers
• Legitimate interests – to operate, secure, and improve our website (where such processing is necessary and does not override your rights)
• Legal obligations – where required by law

You may withdraw your consent at any time by adjusting your cookie preferences, unsubscribing from emails, or contacting us directly.

What rights you have over your data

Depending on your location, you may have the right to:

• Request access to the personal data we hold about you
• Request correction or deletion of your personal data
• Withdraw consent for email marketing at any time
• Withdraw consent for cookies and tracking at any time (via our cookie consent banner)
• Object to or restrict certain data processing
• Request data portability

If you have an account or have left comments, you may request an exported file of the personal data we hold about you. You may also request deletion of your personal data, except where we are required to retain it for administrative, legal, or security purposes.

Where your data is sent

Visitor comments may be checked through automated spam detection services.

Your data may be sent to the following locations:

• Google servers (United States and other locations) for Analytics, Tag Manager, and Fonts
• MailerLite servers for email marketing
• Font Awesome servers for icon delivery
• HubSpot servers for chat and marketing functionality

All transfers are conducted with appropriate safeguards as described in the “Cross-border data transfers” section above.

Contact information

If you have questions about this Privacy Policy or how we handle your personal data, you may contact us:

Email: info@udawards.com
Phone: +370 618 88992
Address: Lazdynėlių g. 32A-14, LT-04126 Vilnius, Lithuania

---

This Privacy Policy was last updated on 2026-01-26 to include information about Google Tag Manager, Google Web Fonts, Font Awesome, consent requirements for cross-border data transfers, and Data Processing Agreements.