Privacy Policy

This Privacy Policy explains how Vanessa Katzen Design ("we", "us", "our") collects, uses, discloses and protects personal information in connection with our interior design services based in New York and provided nationally. It applies to information collected through our website, email, telephone, in-person consultations and other interactions with clients, prospective clients, suppliers and other contacts.

  • Controller Vanessa Katzen Design is the data controller for personal information processed in connection with our services. Contact details for privacy queries: Vanessa Katzen Design, [studio address], New York, NY, United States. Email: [studio email]. Telephone: [studio phone number].

  • Information we collect We collect personal and business information necessary to provide design services, communicate with clients and comply with legal obligations. This may include:

  • Identity and contact details: name, company name, postal address, delivery addresses, email address, telephone numbers.

  • Project details: property address, room descriptions, photographs, measurements, design preferences, budget and project timelines.

  • Financial and billing information: invoicing details, payment card information (collected via our payment processor), bank account details for payments, billing history and tax information.

  • Communications and correspondence: records of emails, calls, messages and meeting notes.

  • Supplier and contractor information: contact details, contractual terms, insurance and professional credentials.

  • Technical and usage data: IP address, device information, cookies and analytics data from our website.

  • Marketing preferences: consented preferences for newsletters, promotional communications and event invitations.

  • Other information you provide: notes from consultations, documents, identity verification information for contracts, references and background checks where applicable.

  • Legal bases for processing For individuals in jurisdictions where required (including under UK/EU law principles), we rely on the following lawful bases:

  • Performance of a contract: processing necessary to provide design services, manage projects, deliver goods and perform contractual obligations.

  • Legitimate interests: for communications about project updates, internal recordkeeping, improving our services, fraud prevention and ensuring safety and security of our premises and project sites.

  • Consent: where we send marketing communications or use certain cookies/analytics, we will obtain consent where required.

  • Legal compliance: processing required to comply with legal obligations such as tax, accounting and disputes.

  1. How we use information We use personal information to:

  • Provide and manage design services, including site surveys, project management, procurement and installation.

  • Communicate with clients, suppliers and contractors regarding projects, scheduling and invoicing.

  • Process payments, prepare invoices and manage accounts.

  • Personalise design recommendations and quotations.

  • Maintain records for professional, legal and tax obligations.

  • Respond to enquiries, complaints and legal requests.

  • Send marketing communications where consented or otherwise permitted.

  • Improve our website, services and client experience through analytics.

  1. Sharing and disclosure We may share personal information with the following categories of recipients:

  • Suppliers and contractors: manufacturers, retailers, tradespeople and logistics providers involved in delivering project goods and services.

  • Professional advisors: accountants, legal advisors and insurers to assist with administration and compliance.

  • Third-party service providers: payment processors, IT and cloud hosting providers, email and marketing platforms, CRM providers and analytics services.

  • Authorities and courts: where required by law, to respond to legal process or to protect rights and safety.

  • Successors: in the event of a business reorganisation, sale or transfer of assets we may transfer data to a new owner.

We require service providers to protect personal data and not to use it for other purposes. We do not sell personal information.

  1. International transfers As a US-based business serving clients nationally, personal data may be processed and stored in the United States. Where data is transferred outside the country of residence, we take reasonable steps to ensure appropriate safeguards are in place in accordance with applicable data protection frameworks.

  2. Data retention We retain personal information for as long as necessary to fulfil the purposes set out in this policy, to comply with legal obligations, resolve disputes and enforce agreements. Typical retention periods include:

  • Project records and invoices: retained for a minimum of seven years for tax and accounting purposes or longer where required by law.

  • Marketing consents: retained until consent is withdrawn.

  • Enquiry records: retained for a limited period for business development and recordkeeping.

  1. Your rights Subject to local law, you may have rights regarding your personal information, including:

  • Access: obtain a copy of information we hold about you.

  • Rectification: correct inaccurate or incomplete data.

  • Erasure: request deletion of data where there is no lawful reason to retain it.

  • Restriction: request limitation of processing in certain circumstances.

  • Objection: object to processing based on legitimate interests or direct marketing.

  • Portability: request transfer of your data to another controller in a commonly used