GDPR Compliance

Last updated: June 19, 2026

General Data Protection Regulation

We are committed to protecting your personal data in accordance with the General Data Protection Regulation (GDPR). This page outlines how we comply with GDPR requirements when processing personal information of individuals in the European Economic Area and the United Kingdom.

Legal Basis for Processing

We process personal data under the following legal bases:

  • Consent: When you submit a service request, you provide explicit consent for us to process your information
  • Contractual necessity: Processing required to fulfill service agreements
  • Legitimate interests: Maintaining service records and improving our offerings

Data Subject Rights

Under GDPR, you have the following rights regarding your personal data:

Right to Access

You may request confirmation of whether we process your personal data and obtain a copy of that data.

Right to Rectification

You may request correction of inaccurate personal data or completion of incomplete data.

Right to Erasure

You may request deletion of your personal data when it is no longer necessary for the purposes for which it was collected, or when you withdraw consent.

Right to Restriction of Processing

You may request that we limit how we use your personal data in certain circumstances.

Right to Data Portability

You may request to receive your personal data in a structured, commonly used format and have it transmitted to another controller.

Right to Object

You may object to processing of your personal data when based on legitimate interests.

Right to Withdraw Consent

Where processing is based on consent, you may withdraw that consent at any time.

How to Exercise Your Rights

To exercise any of these rights, please contact us at [email protected] with your request. We will respond within one month of receiving your request.

Data Protection Officer

For questions regarding our data protection practices or to exercise your GDPR rights, contact our data protection contact at [email protected]

Data Security

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

  • Encryption of personal data in transit and at rest
  • Regular security assessments
  • Access controls limiting data access to authorized personnel
  • Staff training on data protection requirements

Data Breach Notification

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify you and the relevant supervisory authority within 72 hours of becoming aware of the breach.

International Data Transfers

We store and process data within the United Kingdom. Any transfers of data outside the UK are conducted in accordance with GDPR requirements and appropriate safeguards.

Automated Decision Making

We do not use automated decision-making or profiling that produces legal effects or similarly significantly affects individuals.

Supervisory Authority

You have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe we have not complied with GDPR requirements. Contact details for the ICO can be found at ico.org.uk

Updates to This Policy

We may update this GDPR compliance statement to reflect changes in our practices or legal requirements. The revision date at the top of this page indicates when it was last updated.