Information on this site is advertising in nature Professional Localisation Solutions

GDPR Information

Our commitment to protecting your data rights

Last updated: January 2024

About GDPR

The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy for all individuals within the European Union and the European Economic Area. Although the United Kingdom has left the EU, the UK GDPR (the retained EU law version) continues to apply alongside the Data Protection Act 2018.

fjord-hawk is committed to complying with these regulations and protecting the privacy rights of all individuals whose data we process.

Data Controller

For the purposes of the GDPR, fjord-hawk acts as a data controller for personal information collected through this website and in the course of providing our services. As a data controller, we determine the purposes and means of processing personal data.

Our contact details are:

fjord-hawk
47 Whitmore Street
London, EC2A 4BH
United Kingdom

Your Rights Under GDPR

Under the GDPR, you have the following rights regarding your personal data:

Right to Access

You have the right to request a copy of the personal data we hold about you. This is commonly known as a "data subject access request." We will respond to such requests within one month, though this may be extended by two further months for complex requests.

Right to Rectification

You have the right to request that we correct any personal data that is inaccurate or incomplete. We will respond to rectification requests within one month.

Right to Erasure

You have the right to request the deletion of your personal data in certain circumstances, including when:

  • The data is no longer necessary for the purpose for which it was collected
  • You withdraw consent and there is no other legal basis for processing
  • You object to processing and there are no overriding legitimate grounds
  • The data has been unlawfully processed

Right to Restrict Processing

You have the right to request that we restrict the processing of your personal data in certain circumstances, such as when you contest the accuracy of the data or when processing is unlawful but you do not want the data erased.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller where technically feasible.

Right to Object

You have the right to object to processing based on legitimate interests or for direct marketing purposes. We will stop processing unless we can demonstrate compelling legitimate grounds that override your interests.

Rights Related to Automated Decision-Making

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects or similarly significantly affects you. We do not currently use automated decision-making in our services.

Exercising Your Rights

To exercise any of these rights, please contact us using the details provided above. We may need to verify your identity before processing your request. There is no fee for making a request, though we may charge a reasonable fee for repetitive, manifestly unfounded, or excessive requests.

Legal Bases for Processing

We process personal data on the following legal bases:

  • Consent: Where you have given explicit consent to the processing of your personal data for specific purposes.
  • Contract: Where processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract.
  • Legal Obligation: Where processing is necessary for compliance with a legal obligation to which we are subject.
  • Legitimate Interests: Where processing is necessary for our legitimate interests or those of a third party, except where such interests are overridden by your fundamental rights and freedoms.

Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected. Retention periods vary depending on the nature of the data and the purposes for processing. We have established retention schedules that comply with legal requirements and business needs.

International Transfers

When we transfer personal data outside the UK or EEA, we ensure that appropriate safeguards are in place, such as standard contractual clauses approved by the relevant authorities or adequacy decisions.

Data Security

We implement appropriate technical and organisational measures to ensure a level of security appropriate to the risk, including measures to protect against unauthorised or unlawful processing and against accidental loss, destruction, or damage.

Data Breaches

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority without undue delay and, where feasible, within 72 hours. If the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly.

Supervisory Authority

You have the right to lodge a complaint with a supervisory authority if you believe that our processing of your personal data violates the GDPR. In the UK, the supervisory authority is the Information Commissioner's Office (ICO).

Information Commissioner's Office
Wycliffe House, Water Lane
Wilmslow, Cheshire, SK9 5AF
United Kingdom

Updates to This Information

We may update this GDPR information page from time to time. Any changes will be posted on this page with an updated revision date.

This information is provided for general guidance on GDPR compliance and your data protection rights. It does not constitute legal advice. If you have specific questions about how GDPR applies to your circumstances, we recommend consulting with a qualified legal professional or contacting the relevant supervisory authority.

We use cookies to enhance your browsing experience and analyse site traffic. By continuing, you consent to our use of cookies. Learn more