Privacy Policy

Studio Blueprint

1. Data Controller

The data controller for information processed through the Studio Blueprint Generator is Howard Scott, trading as Studio Blueprint, contactable via hsdigital.substack.com. This policy applies to all data collected through the Tool and associated PDF delivery service.

2. What Data We Collect

Data Type	When Collected	Purpose
Questionnaire answers	When you complete the blueprint generator	Generating your personalised blueprint
Email address	When you request a PDF blueprint	Delivering the PDF to you
Blueprint ID	Automatically generated	Identifying your specific report

3. Legal Basis for Processing

We process your data on the following legal bases under UK GDPR:

Consent (Article 6(1)(a)): When you submit your email address to receive a PDF, you explicitly consent to processing for that purpose.
Legitimate interest (Article 6(1)(f)): Processing questionnaire answers to generate the blueprint in your browser, where you have a reasonable expectation of this processing.

4. How We Use Your Data

Blueprint generation (browser-based)

Your questionnaire answers are processed entirely in your browser. No answers are transmitted to our servers unless you request a PDF. The blueprint you see on screen is generated locally on your device.

PDF delivery (server-based)

If you request a PDF blueprint, your answers and email address are transmitted to our server to generate and deliver the PDF. After delivery, your email address is retained by our email delivery provider (Resend) in their delivery logs. Your questionnaire answers are not stored on our servers after PDF generation is complete.

5. Data Sharing

We share data with the following third-party processors, solely for the purpose of operating the service:

Resend (email delivery): receives your email address and the generated PDF for delivery. Subject to Resend's privacy policy.
Vercel (hosting): processes your request to generate the PDF. Subject to Vercel's privacy policy.
Cloudflare (hosting): serves the frontend application. Subject to Cloudflare's privacy policy.

We do not sell, rent, or trade your personal data to any third party. We do not use your data for marketing purposes unless you separately opt in.

6. Data Retention

Questionnaire answers: Not stored. Processed in-memory during PDF generation and discarded.
Email address: Retained in email delivery logs for up to 30 days for delivery verification, then automatically deleted by the email provider.
Blueprint ID: A hash of your answers. Not linked to your identity without the original answers.

7. Your Rights

Under UK GDPR, you have the right to:

Access: Request a copy of any personal data we hold about you.
Rectification: Request correction of inaccurate data.
Erasure: Request deletion of your data ("right to be forgotten").
Restrict processing: Request that we limit how we use your data.
Data portability: Receive your data in a structured, machine-readable format.
Withdraw consent: Withdraw consent at any time where processing is based on consent.
Object: Object to processing based on legitimate interest.

To exercise any of these rights, contact Howard Scott via hsdigital.substack.com. We will respond within 30 days.

8. Cookies and Tracking

The Tool does not use cookies, tracking pixels, analytics scripts, or any form of user tracking. No behavioural data is collected. No advertising identifiers are used.

9. International Transfers

Our hosting providers (Vercel, Cloudflare) and email provider (Resend) may process data in the United States. These transfers are protected by Standard Contractual Clauses and the providers' compliance with applicable data protection frameworks.

10. Children

The Tool is not intended for use by anyone under 18 years of age. We do not knowingly collect data from children.

11. Changes to This Policy

We may update this policy from time to time. Material changes will be noted on this page with an updated date.

12. Complaints

If you are unsatisfied with our handling of your data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.

Last updated: February 2026