GDPR Information

Last updated: January 2024

This page provides information about how flicker-frame complies with the UK General Data Protection Regulation (UK GDPR) and explains your rights as a data subject.

Our Commitment to Data Protection

We take data protection seriously and are committed to processing personal data in accordance with UK GDPR principles. This means we ensure that personal data is:

• Processed lawfully, fairly, and transparently
• Collected for specified, explicit, and legitimate purposes
• Adequate, relevant, and limited to what is necessary
• Accurate and kept up to date
• Kept for no longer than necessary
• Processed securely with appropriate technical and organisational measures

Data Controller Information

For the purposes of UK GDPR, the data controller is:

flicker-frame
Unit 7, Riverside Works
34 Kew Bridge Road
Brentford, TW8 0FJ
Email: [email protected]

Your Rights Under UK GDPR

As a data subject, you have the following rights:

Right of Access

You have the right to request a copy of the personal data we hold about you. This is commonly known as a Subject Access Request (SAR). We will respond to your request within one month of receiving it.

Right to Rectification

You have the right to request that we correct any personal data that is inaccurate or incomplete. We will make the necessary corrections without undue delay.

Right to Erasure

Also known as the 'right to be forgotten', you can request that we delete your personal data in certain circumstances, such as when the data is no longer necessary for the purpose it was collected.

Right to Restrict Processing

You have the right to request that we limit the way we use your personal data in certain circumstances, for example while we verify the accuracy of data you have challenged.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, machine-readable format and to transmit it to another controller where technically feasible.

Right to Object

You have the right to object to processing of your personal data where we are relying on legitimate interests as the legal basis, including processing for direct marketing purposes.

Rights Related to Automated Decision Making

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects or similarly significantly affects you. We do not currently engage in solely automated decision making.

How to Exercise Your Rights

To exercise any of your rights, please contact us using the details provided above. We may need to verify your identity before processing your request. We will respond to your request within one month, although this may be extended by a further two months for complex requests.

International Data Transfers

We primarily store and process data within the United Kingdom. If we need to transfer data outside the UK, we ensure appropriate safeguards are in place in accordance with UK GDPR requirements.

Data Breach Notification

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the Information Commissioner's Office within 72 hours of becoming aware of the breach. Where the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly.

Complaints

If you are not satisfied with how we handle your personal data or respond to your requests, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF
Website: ico.org.uk

Updates to This Information

We may update this GDPR information from time to time to reflect changes in our practices or legal requirements. Please check this page periodically for updates.