Who we are

Heather Mac VA operates as a business service in the UK.  Our website address is:

What personal data we collect and why we collect it


When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: After approval of your comment, your profile picture is visible to the public in the context of your comment.


If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Contact forms

Heather Mac VA may process information contained in any enquiry you submit regarding our services and products.  If a user contacts us via email or via a contact form, the personal information transmitted by the user is automatically stored.  The personal information collected as part of a registration for the newsletter will only be used to send our newsletter.  Contact form submissions are kept for customer service purposes.

We may process information that you provide to us for the purpose of subscribing to our email notifications and/or newsletters. Our newsletter may only be received by the user if the user has a valid email address and the user registers for the newsletter.   Confirmation email will be sent to the email address registered by a user for the first time for newsletter shipping, for legal reasons, in a double opt-in procedure. The confirmation email is used to prove whether the owner of the email address as the user is authorised to receive the newsletter.  Subscription to the newsletter may be terminated by the user at any time.  A link for unsubscribing is found in each newsletter.


If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.


We use a third-party service, Google Analytics, to collect standard internet log information and details of visitor behaviour patterns. We do this to find out such things as the number of visitors to the various parts of the site. This information is only processed in a way that does not directly identify anyone. We do not make, and do not allow Google to make, any attempt to find out the identities of those visiting our website.

If we do collect personal data through our website, we will make it clear when we collect personal information and explain what we intend to do with it.

Who we share your data with

Data will be shared with third-party providers we share site data with these include cloud-based services, payment processors, and third party service providers.  We will not share your information with any third parties for the purposes of direct marketing.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

What rights you have over your data

If you have left comments on this site, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.

Your contact information

It is important to us that the information we hold about you is accurate.  Changes to personal details should be advised by email to

Name:  Heather Maclaurin trading as Heather Mac VA
Phone Number:  07864 044813
Postal Address:  9 Laxlie Drive, Inverkip, PA16 0FQ

Additional information

How we protect your data

We consider data protection issues as part of the design and implementation of systems, services, products and business practices. We only process the personal data that we need for our purposes, and that we only use the data for those purposes.  We ensure that personal data is automatically protected in any IT system, service, product, and/or business practice, so that individuals should not have to take any specific action to protect their privacy.  When we use other systems, services or products in our processing activities, we make sure that we only use those whose designers and manufacturers take data protection issues into account.

What data breach procedures we have in place

A personal data breach is a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data.  We are registered with the Information Commissioner’s Office (ICO), registration number ZA902564 , and take any data breach seriously.  When a security incident takes place, we establish whether a personal data breach has occurred and, if so, promptly take steps to address it, including telling the ICO if required.  We ensure that all breaches are recorded, regardless of whether or not they need to be reported to the ICO.

Third Party Links

Where we provide links to websites of other organisations, this privacy notice does not cover how that organisation processes personal information. When you leave our site we encourage you to read the privacy notices on the other websites you visit.

Date:  12/03/21