Last updated

:

12/05/2026

Privacy Policy

1. Who We Are

Novra LTD ("Novra," "we," "us," "our") is the data controller for personal data collected through novra.design and through engagements with our clients.

Registered address: 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom Company number: 16780560 Contact for data matters: hi@novra.design

We act as a data controller when we determine why and how personal data is processed (our website visitors, our prospect lists, our client contacts, our billing data). We act as a data processor when we process personal data on a client's instructions in the course of delivering creative work (for example, when a client provides real user data, customer photos, or research participant information for a campaign or product design project). Where we act as a processor, the controller is the client and a separate Data Processing Agreement may apply.

1. Who We Are

Novra LTD ("Novra," "we," "us," "our") is the data controller for personal data collected through novra.design and through engagements with our clients.

Registered address: 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom Company number: 16780560 Contact for data matters: hi@novra.design

We act as a data controller when we determine why and how personal data is processed (our website visitors, our prospect lists, our client contacts, our billing data). We act as a data processor when we process personal data on a client's instructions in the course of delivering creative work (for example, when a client provides real user data, customer photos, or research participant information for a campaign or product design project). Where we act as a processor, the controller is the client and a separate Data Processing Agreement may apply.

2. What This Policy Covers

This policy applies to personal data we collect through:

  • Our website at novra.design

  • Forms, emails, calls, and direct messages you send us

  • Account creation, billing, and ongoing client work

  • Outreach activities (prospect identification and contact)

  • Marketing communications and analytics

It does not cover third-party websites we link to. Those have their own privacy policies.

2. What This Policy Covers

This policy applies to personal data we collect through:

  • Our website at novra.design

  • Forms, emails, calls, and direct messages you send us

  • Account creation, billing, and ongoing client work

  • Outreach activities (prospect identification and contact)

  • Marketing communications and analytics

It does not cover third-party websites we link to. Those have their own privacy policies.

3. Personal Data We Collect

3.1 Information you provide directly

  • Contact details: name, email address, company name, role, phone number (if provided)

  • Project information: briefs, brand assets, references, feedback, files, and other materials shared during onboarding and in the course of work

  • Account and billing data: billing contact, company address, VAT number (where applicable), payment method (payment card details are handled directly by our payment processor and are not stored by us)

  • Communications: the content of emails, Slack messages, ClickUp comments, video calls, and any other channels we use together

3.2 Information collected automatically

  • Technical and device data: IP address, browser type, device type, operating system, referral source, pages visited, time on page, and similar analytics

  • Cookies and similar technologies: see Section 12

3.3 Information we collect from third parties

  • Public business information about prospective clients (LinkedIn, company websites, Crunchbase, public funding databases, press coverage, public social profiles) where we research companies we may want to reach out to

  • Referral information from people who introduce you to us

  • Information from our service providers (for example, Stripe sharing payment status with us, Cal.com sharing booking metadata)

3.4 Sensitive personal data

We do not deliberately collect special category personal data (data revealing racial or ethnic origin, political opinions, religious beliefs, trade union membership, genetic or biometric data, health data, sex life, or sexual orientation). If you share special category data with us voluntarily (for example, in a creative brief about a healthcare or advocacy project), we will treat it with appropriate care and only process it where there is a lawful basis under Article 9 of the UK GDPR.

3. Personal Data We Collect

3.1 Information you provide directly

  • Contact details: name, email address, company name, role, phone number (if provided)

  • Project information: briefs, brand assets, references, feedback, files, and other materials shared during onboarding and in the course of work

  • Account and billing data: billing contact, company address, VAT number (where applicable), payment method (payment card details are handled directly by our payment processor and are not stored by us)

  • Communications: the content of emails, Slack messages, ClickUp comments, video calls, and any other channels we use together

3.2 Information collected automatically

  • Technical and device data: IP address, browser type, device type, operating system, referral source, pages visited, time on page, and similar analytics

  • Cookies and similar technologies: see Section 12

3.3 Information we collect from third parties

  • Public business information about prospective clients (LinkedIn, company websites, Crunchbase, public funding databases, press coverage, public social profiles) where we research companies we may want to reach out to

  • Referral information from people who introduce you to us

  • Information from our service providers (for example, Stripe sharing payment status with us, Cal.com sharing booking metadata)

3.4 Sensitive personal data

We do not deliberately collect special category personal data (data revealing racial or ethnic origin, political opinions, religious beliefs, trade union membership, genetic or biometric data, health data, sex life, or sexual orientation). If you share special category data with us voluntarily (for example, in a creative brief about a healthcare or advocacy project), we will treat it with appropriate care and only process it where there is a lawful basis under Article 9 of the UK GDPR.

4. How We Collect Personal Data

We collect personal data:

  • When you fill out a form on our website (contact form, email capture, project intake)

  • When you book a call through Cal.com

  • When you email or message us

  • When you become a client and we onboard you

  • When you visit our website (via cookies and server logs)

  • When we research and reach out to prospective clients using publicly available business sources

  • When someone refers you to us

  • When you interact with our content on third-party platforms (LinkedIn, Instagram, X)

4. How We Collect Personal Data

We collect personal data:

  • When you fill out a form on our website (contact form, email capture, project intake)

  • When you book a call through Cal.com

  • When you email or message us

  • When you become a client and we onboard you

  • When you visit our website (via cookies and server logs)

  • When we research and reach out to prospective clients using publicly available business sources

  • When someone refers you to us

  • When you interact with our content on third-party platforms (LinkedIn, Instagram, X)

5. Why We Process Personal Data and Our Lawful Basis

Under UK GDPR, we need a lawful basis to process personal data. Ours are set out below.

5.1 Performance of a contract (UK GDPR Article 6(1)(b))

To deliver subscription or project services we have agreed with you. This includes invoicing, communication, scheduling, file delivery, support, and account management.

5.2 Legitimate interests (UK GDPR Article 6(1)(f))

To run and grow our business, including:

  • Reaching out to prospective B2B clients in industries we serve, using publicly available business contact information

  • Internal analytics on website usage and service performance

  • Security monitoring, fraud prevention, and protecting Novra against misuse

  • Direct marketing to existing clients about related services

  • Maintaining our portfolio and case studies (subject to the rules in our Terms of Service)

  • Pursuing or defending legal claims

When we rely on legitimate interests, we have considered the impact on you and concluded that our interests are not outweighed by your rights. You can object at any time (see Section 11).

5.3 Consent (UK GDPR Article 6(1)(a))

For non-essential cookies, marketing communications to non-clients where the law requires consent, and any other processing where consent is the appropriate basis. You can withdraw consent at any time without affecting the lawfulness of processing carried out before withdrawal.

5.4 Legal obligation (UK GDPR Article 6(1)(c))

For tax records, accounting obligations, anti-money-laundering checks, responding to lawful requests from regulators and authorities, and complying with court orders.

5.5 Vital interests and public task

We do not generally process personal data on these bases. If we ever needed to (for example, in an emergency), we would notify you.

5. Why We Process Personal Data and Our Lawful Basis

Under UK GDPR, we need a lawful basis to process personal data. Ours are set out below.

5.1 Performance of a contract (UK GDPR Article 6(1)(b))

To deliver subscription or project services we have agreed with you. This includes invoicing, communication, scheduling, file delivery, support, and account management.

5.2 Legitimate interests (UK GDPR Article 6(1)(f))

To run and grow our business, including:

  • Reaching out to prospective B2B clients in industries we serve, using publicly available business contact information

  • Internal analytics on website usage and service performance

  • Security monitoring, fraud prevention, and protecting Novra against misuse

  • Direct marketing to existing clients about related services

  • Maintaining our portfolio and case studies (subject to the rules in our Terms of Service)

  • Pursuing or defending legal claims

When we rely on legitimate interests, we have considered the impact on you and concluded that our interests are not outweighed by your rights. You can object at any time (see Section 11).

5.3 Consent (UK GDPR Article 6(1)(a))

For non-essential cookies, marketing communications to non-clients where the law requires consent, and any other processing where consent is the appropriate basis. You can withdraw consent at any time without affecting the lawfulness of processing carried out before withdrawal.

5.4 Legal obligation (UK GDPR Article 6(1)(c))

For tax records, accounting obligations, anti-money-laundering checks, responding to lawful requests from regulators and authorities, and complying with court orders.

5.5 Vital interests and public task

We do not generally process personal data on these bases. If we ever needed to (for example, in an emergency), we would notify you.

6. Specific Purposes and Activities

To translate the lawful bases above into concrete activities, the following table sets out what we do, what data is involved, and which lawful basis applies.

6. Specific Purposes and Activities

To translate the lawful bases above into concrete activities, the following table sets out what we do, what data is involved, and which lawful basis applies.

Loading...

7. Children's Data

Our services are designed for businesses, not consumers. We do not knowingly collect personal data from individuals under 18. If you believe a minor has provided personal data through our website, contact us and we will delete it.

7. Children's Data

Our services are designed for businesses, not consumers. We do not knowingly collect personal data from individuals under 18. If you believe a minor has provided personal data through our website, contact us and we will delete it.

8. Who We Share Personal Data With

We do not sell personal data. We share it only with the categories of recipient set out below.

8.1 Service providers (sub-processors) who help us operate

8. Who We Share Personal Data With

We do not sell personal data. We share it only with the categories of recipient set out below.

8.1 Service providers (sub-processors) who help us operate

Loading...

This list may change as our toolset evolves. We will keep it current and reflect changes here.

8.2 Professional advisors

Lawyers, accountants, auditors, and insurers, where strictly necessary for the purposes set out in Section 5.

8.3 Authorities

Where we are legally required to disclose personal data to courts, regulators, tax authorities, or law enforcement, or where disclosure is necessary to protect our rights, your safety, or the safety of others.

8.4 In the context of a business transfer

If Novra is acquired, merged, sold, or restructured, personal data may transfer to the successor entity. The receiving entity will be bound by terms at least equivalent to this policy, and we will notify affected individuals where required.

This list may change as our toolset evolves. We will keep it current and reflect changes here.

8.2 Professional advisors

Lawyers, accountants, auditors, and insurers, where strictly necessary for the purposes set out in Section 5.

8.3 Authorities

Where we are legally required to disclose personal data to courts, regulators, tax authorities, or law enforcement, or where disclosure is necessary to protect our rights, your safety, or the safety of others.

8.4 In the context of a business transfer

If Novra is acquired, merged, sold, or restructured, personal data may transfer to the successor entity. The receiving entity will be bound by terms at least equivalent to this policy, and we will notify affected individuals where required.

9. International Transfers

Some of our service providers are based outside the United Kingdom and the European Economic Area, notably in the United States. When we transfer personal data internationally, we rely on:

  • UK adequacy regulations where they exist (for example, for transfers to organisations participating in approved data bridges)

  • International Data Transfer Agreement (IDTA) or Standard Contractual Clauses with the UK Addendum for transfers to jurisdictions without adequacy

  • Appropriate supplementary measures (encryption, access controls, contractual safeguards) where required

You can request more information about the specific safeguards in place for any transfer by emailing hi@novra.design.

9. International Transfers

Some of our service providers are based outside the United Kingdom and the European Economic Area, notably in the United States. When we transfer personal data internationally, we rely on:

  • UK adequacy regulations where they exist (for example, for transfers to organisations participating in approved data bridges)

  • International Data Transfer Agreement (IDTA) or Standard Contractual Clauses with the UK Addendum for transfers to jurisdictions without adequacy

  • Appropriate supplementary measures (encryption, access controls, contractual safeguards) where required

You can request more information about the specific safeguards in place for any transfer by emailing hi@novra.design.

10. How Long We Keep Personal Data

We keep personal data only as long as we have a lawful purpose to do so. Specific retention periods:

10. How Long We Keep Personal Data

We keep personal data only as long as we have a lawful purpose to do so. Specific retention periods:

Loading...

After retention periods expire, we delete the data or anonymise it so it can no longer be linked to you.

After retention periods expire, we delete the data or anonymise it so it can no longer be linked to you.

11. Your Rights Under UK GDPR

You have the following rights in relation to your personal data. Most can be exercised free of charge.

11.1 Right of access

You can request a copy of the personal data we hold about you and information about how we process it (a "subject access request").

11.2 Right to rectification

You can ask us to correct inaccurate or incomplete personal data.

11.3 Right to erasure ("right to be forgotten")

You can ask us to delete your personal data in certain circumstances, including where the data is no longer necessary for the original purpose, where you withdraw consent and there is no other lawful basis, or where the data has been unlawfully processed. This right is not absolute and may be subject to legal exceptions (for example, our tax record-keeping obligations).

11.4 Right to restrict processing

You can ask us to restrict how we use your personal data while we verify accuracy, address an objection, or where the processing is unlawful but you prefer restriction over erasure.

11.5 Right to data portability

For data you provided to us, processed by automated means on the basis of consent or contract, you can ask us to give you a structured, commonly used, machine-readable copy or transfer it to another provider where technically feasible.

11.6 Right to object

You can object to processing based on legitimate interests, including direct marketing. We will stop unless we can show compelling legitimate grounds that override your rights, or the processing relates to legal claims.

11.7 Right to withdraw consent

Where processing is based on consent (such as marketing emails or non-essential cookies), you can withdraw consent at any time. Withdrawal does not affect the lawfulness of processing carried out before withdrawal.

11.8 Rights relating to automated decision-making

You have the right not to be subject to a decision based solely on automated processing (including profiling) that produces legal effects or similarly significantly affects you. We do not make decisions of this kind.

11.9 Right to complain

You can complain to the Information Commissioner's Office (ICO), the UK's data protection regulator:

  • Website: ico.org.uk

  • Helpline: 0303 123 1113

  • Address: Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF

We would appreciate the chance to address your concerns before you contact the ICO, but you can complain to the ICO at any time.

11. Your Rights Under UK GDPR

You have the following rights in relation to your personal data. Most can be exercised free of charge.

11.1 Right of access

You can request a copy of the personal data we hold about you and information about how we process it (a "subject access request").

11.2 Right to rectification

You can ask us to correct inaccurate or incomplete personal data.

11.3 Right to erasure ("right to be forgotten")

You can ask us to delete your personal data in certain circumstances, including where the data is no longer necessary for the original purpose, where you withdraw consent and there is no other lawful basis, or where the data has been unlawfully processed. This right is not absolute and may be subject to legal exceptions (for example, our tax record-keeping obligations).

11.4 Right to restrict processing

You can ask us to restrict how we use your personal data while we verify accuracy, address an objection, or where the processing is unlawful but you prefer restriction over erasure.

11.5 Right to data portability

For data you provided to us, processed by automated means on the basis of consent or contract, you can ask us to give you a structured, commonly used, machine-readable copy or transfer it to another provider where technically feasible.

11.6 Right to object

You can object to processing based on legitimate interests, including direct marketing. We will stop unless we can show compelling legitimate grounds that override your rights, or the processing relates to legal claims.

11.7 Right to withdraw consent

Where processing is based on consent (such as marketing emails or non-essential cookies), you can withdraw consent at any time. Withdrawal does not affect the lawfulness of processing carried out before withdrawal.

11.8 Rights relating to automated decision-making

You have the right not to be subject to a decision based solely on automated processing (including profiling) that produces legal effects or similarly significantly affects you. We do not make decisions of this kind.

11.9 Right to complain

You can complain to the Information Commissioner's Office (ICO), the UK's data protection regulator:

  • Website: ico.org.uk

  • Helpline: 0303 123 1113

  • Address: Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF

We would appreciate the chance to address your concerns before you contact the ICO, but you can complain to the ICO at any time.

12. How to Exercise Your Rights

Email hi@novra.design with details of your request. We may ask for proof of identity before responding to confirm we are not disclosing data to the wrong person.

We will respond within one month of receiving your request. In complex cases, we may extend this by two further months and will explain why. There is no fee for most requests. We may charge a reasonable fee or refuse the request if it is manifestly unfounded or excessive.

12. How to Exercise Your Rights

Email hi@novra.design with details of your request. We may ask for proof of identity before responding to confirm we are not disclosing data to the wrong person.

We will respond within one month of receiving your request. In complex cases, we may extend this by two further months and will explain why. There is no fee for most requests. We may charge a reasonable fee or refuse the request if it is manifestly unfounded or excessive.

13. Cookies and Similar Technologies

Our website uses cookies and similar technologies to make the site work and to understand how it is used.

13.1 Categories of cookie

  • Strictly necessary cookies: required for the site to function (for example, session management, form submission, security). These do not require consent under PECR.

  • Analytics cookies: help us understand how visitors use the site so we can improve it. These require consent.

  • Functional cookies: remember preferences (such as cookie banner choices). May require consent depending on use.

  • Marketing or advertising cookies: we currently do not use these. If we add them, we will ask for consent first.

13.2 Managing cookies

You can manage cookie preferences through our cookie banner on first visit. You can change your preferences at any time using the cookie settings link in our footer. You can also block or delete cookies through your browser settings, although this may affect site functionality.

13.3 Do Not Track

Browsers may send a "Do Not Track" signal. Because there is no agreed standard for responding to this signal, we do not currently act on it. We respect explicit cookie preferences set through our banner.

13. Cookies and Similar Technologies

Our website uses cookies and similar technologies to make the site work and to understand how it is used.

13.1 Categories of cookie

  • Strictly necessary cookies: required for the site to function (for example, session management, form submission, security). These do not require consent under PECR.

  • Analytics cookies: help us understand how visitors use the site so we can improve it. These require consent.

  • Functional cookies: remember preferences (such as cookie banner choices). May require consent depending on use.

  • Marketing or advertising cookies: we currently do not use these. If we add them, we will ask for consent first.

13.2 Managing cookies

You can manage cookie preferences through our cookie banner on first visit. You can change your preferences at any time using the cookie settings link in our footer. You can also block or delete cookies through your browser settings, although this may affect site functionality.

13.3 Do Not Track

Browsers may send a "Do Not Track" signal. Because there is no agreed standard for responding to this signal, we do not currently act on it. We respect explicit cookie preferences set through our banner.

14. Marketing Communications

14.1 Existing clients

We may send marketing emails to existing clients about related services, where we believe the content is relevant to your business. This relies on the "soft opt-in" exemption under PECR. You can opt out at any time using the unsubscribe link in any email or by emailing hi@novra.design.

14.2 Non-clients

We only send marketing emails to non-client individuals where consent has been given or where the contact is a corporate subscriber (a business email address such as info@company.com or role-based addresses), in line with PECR.

14.3 B2B prospect outreach

We carry out targeted outreach to corporate contacts at companies that match our ideal client profile, using publicly available business contact data. This relies on our legitimate interests under UK GDPR. Every outreach email includes a clear way to opt out, and we honour opt-out requests immediately. If you do not want us to contact you, email hi@novra.design with the subject line "Opt out" and we will add you to our suppression list.

14. Marketing Communications

14.1 Existing clients

We may send marketing emails to existing clients about related services, where we believe the content is relevant to your business. This relies on the "soft opt-in" exemption under PECR. You can opt out at any time using the unsubscribe link in any email or by emailing hi@novra.design.

14.2 Non-clients

We only send marketing emails to non-client individuals where consent has been given or where the contact is a corporate subscriber (a business email address such as info@company.com or role-based addresses), in line with PECR.

14.3 B2B prospect outreach

We carry out targeted outreach to corporate contacts at companies that match our ideal client profile, using publicly available business contact data. This relies on our legitimate interests under UK GDPR. Every outreach email includes a clear way to opt out, and we honour opt-out requests immediately. If you do not want us to contact you, email hi@novra.design with the subject line "Opt out" and we will add you to our suppression list.

15. AI Tools and Your Data

We use AI-assisted tools (such as image generation models, transcription tools, and text-processing models) as part of our creative workflow. Our practices:

  • We do not knowingly submit confidential client data, unreleased work, or special category personal data to public AI training systems.

  • Where we use AI tools through enterprise or paid-tier accounts, we configure them so that prompt and output data is not used for model training, where this option is available.

  • Where AI tools are central to a deliverable, we discuss this with the client in advance.

  • AI tool usage is covered in our Terms of Service (clause 15).

We may use AI tools to summarise communications, transcribe calls, draft outreach copy, generate moodboards, and similar internal productivity tasks. In each case, the lawful basis and retention periods set out above continue to apply.

15. AI Tools and Your Data

We use AI-assisted tools (such as image generation models, transcription tools, and text-processing models) as part of our creative workflow. Our practices:

  • We do not knowingly submit confidential client data, unreleased work, or special category personal data to public AI training systems.

  • Where we use AI tools through enterprise or paid-tier accounts, we configure them so that prompt and output data is not used for model training, where this option is available.

  • Where AI tools are central to a deliverable, we discuss this with the client in advance.

  • AI tool usage is covered in our Terms of Service (clause 15).

We may use AI tools to summarise communications, transcribe calls, draft outreach copy, generate moodboards, and similar internal productivity tasks. In each case, the lawful basis and retention periods set out above continue to apply.

16. Processing on Behalf of Clients (Processor Role)

When clients engage Novra to create work that involves their own customer data, research data, or other personal data (for example, real user photos for a campaign, beta-user data for a UX project, end-user research for a brand strategy), Novra acts as a processor.

In that case:

  • The client is the controller and remains responsible for the lawful basis of processing

  • Novra processes the data only on the documented instructions of the client

  • A separate Data Processing Agreement may apply where required

  • Novra will assist the client in responding to data subject rights requests and security incidents

  • Novra applies the same security measures set out in Section 17 to client-provided personal data

16. Processing on Behalf of Clients (Processor Role)

When clients engage Novra to create work that involves their own customer data, research data, or other personal data (for example, real user photos for a campaign, beta-user data for a UX project, end-user research for a brand strategy), Novra acts as a processor.

In that case:

  • The client is the controller and remains responsible for the lawful basis of processing

  • Novra processes the data only on the documented instructions of the client

  • A separate Data Processing Agreement may apply where required

  • Novra will assist the client in responding to data subject rights requests and security incidents

  • Novra applies the same security measures set out in Section 17 to client-provided personal data

17. Security

We use reasonable technical and organisational measures to protect personal data, including:

  • Encryption in transit (TLS / HTTPS) for data sent through our website and tools

  • Access controls and role-based permissions for internal systems

  • Strong-password and two-factor authentication policies for staff and contractors

  • Limited access on a need-to-know basis

  • Regular review of access permissions, including immediate revocation when a team member or contractor leaves

  • Confidentiality and data protection clauses in all contractor and subcontractor agreements

  • Regular software updates and patching

  • Backup and recovery procedures for critical data

No system is perfectly secure. We do not guarantee absolute security, but we take it seriously. If we become aware of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the ICO within 72 hours of becoming aware where required, and we will notify you without undue delay where the breach is likely to result in a high risk.

17. Security

We use reasonable technical and organisational measures to protect personal data, including:

  • Encryption in transit (TLS / HTTPS) for data sent through our website and tools

  • Access controls and role-based permissions for internal systems

  • Strong-password and two-factor authentication policies for staff and contractors

  • Limited access on a need-to-know basis

  • Regular review of access permissions, including immediate revocation when a team member or contractor leaves

  • Confidentiality and data protection clauses in all contractor and subcontractor agreements

  • Regular software updates and patching

  • Backup and recovery procedures for critical data

No system is perfectly secure. We do not guarantee absolute security, but we take it seriously. If we become aware of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the ICO within 72 hours of becoming aware where required, and we will notify you without undue delay where the breach is likely to result in a high risk.

18. Automated Decision-Making and Profiling

We do not make decisions based solely on automated processing (including profiling) that produce legal effects on you or similarly significantly affect you.

We do carry out limited profiling for marketing purposes (for example, segmenting prospects by company size, industry, or funding stage). This is not solely automated and does not produce legal or similarly significant effects.

18. Automated Decision-Making and Profiling

We do not make decisions based solely on automated processing (including profiling) that produce legal effects on you or similarly significantly affect you.

We do carry out limited profiling for marketing purposes (for example, segmenting prospects by company size, industry, or funding stage). This is not solely automated and does not produce legal or similarly significant effects.

19. Links to External Sites

Our website and communications may include links to external websites. We are not responsible for the privacy practices of those sites. Review their privacy policies before sharing personal data with them.

19. Links to External Sites

Our website and communications may include links to external websites. We are not responsible for the privacy practices of those sites. Review their privacy policies before sharing personal data with them.

20. Changes to This Policy

We may update this policy as our practices, services, or the law evolves. The "Last updated" date at the top reflects the current version. For material changes that affect how we use personal data, we will notify active clients by email and post a notice on our website at least 30 days before the change takes effect, where reasonable.

20. Changes to This Policy

We may update this policy as our practices, services, or the law evolves. The "Last updated" date at the top reflects the current version. For material changes that affect how we use personal data, we will notify active clients by email and post a notice on our website at least 30 days before the change takes effect, where reasonable.

21. Contact

For privacy questions, subject rights requests, or complaints:
hi@novra.design

Novra LTD 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom Company number: 16780560 novra.design

© 2026 Novra LTD

21. Contact

For privacy questions, subject rights requests, or complaints:
hi@novra.design

Novra LTD 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom Company number: 16780560 novra.design

© 2026 Novra LTD

5/5
SLOTS OPEN

Back to top ↑

Let’s build together

hi@novra.design

Sitemap

Home

Projects

About

Contact

Links

Jobs

Affiliate

Privacy Policy

Terms and Conditions

Socials

Instagram

->

X/Twitter

->

LinkedIn

->

Contra

->

Behance

->

Sign up for the latest work,

news & insights

More Creative Power. No Added Friction.

Novra LTD · Company No. 16780560 · London, United Kingdom

© 2026 Novra LTD

5/5
SLOTS OPEN

Back to top ↑

Let’s build together

hi@novra.design

Sitemap

Home

Projects

About

Contact

Links

Jobs

Affiliate

Privacy Policy

Terms and Conditions

Socials

Instagram

->

X/Twitter

->

LinkedIn

->

Contra

->

Behance

->

Sign up for the latest work,

news & insights

More Creative Power. No Added Friction.

Novra LTD · Company No. 16780560 · London, United Kingdom

© 2026 Novra LTD

5/5
SLOTS OPEN

Back to top ↑

Let’s build together

hi@novra.design

Sitemap

Home

Projects

About

Contact

Links

Jobs

Affiliate

Privacy Policy

Terms and Conditions

Socials

Instagram

->

X/Twitter

->

LinkedIn

->

Contra

->

Behance

->

Sign up for the latest work,

news & insights

More Creative Power. No Added Friction.

Novra LTD · Company No. 16780560 · London, United Kingdom

© 2026 Novra LTD

5/5
SLOTS OPEN

Back to top ↑

Let’s build together

hi@novra.design

Sitemap

Home

Projects

About

Contact

Links

Jobs

Affiliate

Privacy Policy

Terms and Conditions

Socials

Instagram

->

X/Twitter

->

LinkedIn

->

Contra

->

Behance

->

Sign up for the latest work,

news & insights

More Creative Power. No Added Friction.

Novra LTD · Company No. 16780560 · London, United Kingdom

© 2026 Novra LTD

5/5
SLOTS OPEN

Back to top ↑

Let’s build together

hi@novra.design

Sitemap

Home

Projects

About

Contact

Links

Jobs

Affiliate

Privacy Policy

Terms and Conditions

Socials

Instagram

->

X/Twitter

->

LinkedIn

->

Contra

->

Behance

->

Sign up for the latest work,

news & insights

More Creative Power. No Added Friction.

Novra LTD · Company No. 16780560 · London, United Kingdom

© 2026 Novra LTD