This website contains promotional content about our services

GDPR Compliance

Our commitment to protecting your data rights

Last updated: 1 June 2026

Our Commitment to GDPR

breeze-gazelle is committed to ensuring that your personal data is protected in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This page outlines how we comply with data protection regulations and your rights as a data subject.

Data Controller

breeze-gazelle acts as the data controller for personal information collected through this website and our services. This means we determine the purposes and means of processing your personal data.

Contact details:
breeze-gazelle
128 Technology Park
London, EC2A 4NE
United Kingdom
Email: [email protected]

Lawful Basis for Processing

We process personal data only when we have a lawful basis to do so. The legal bases we rely on include:

  • Consent: You have given clear consent for us to process your personal data for a specific purpose
  • Contract: Processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract
  • Legal Obligation: Processing is necessary for us to comply with the law
  • Legitimate Interests: Processing is necessary for our legitimate interests or those of a third party, provided your interests and fundamental rights do not override those interests

Your Rights Under GDPR

The UK GDPR provides you with the following rights regarding your personal data:

Right to Access

You have the right to request a copy of the personal data we hold about you. This is known as a Subject Access Request (SAR). We will respond to your request within one month.

Right to Rectification

You have the right to request that we correct any inaccurate personal data we hold about you. We will make the correction without undue delay.

Right to Erasure

You have the right to request deletion of your personal data in certain circumstances, including when the data is no longer necessary for its original purpose or when you withdraw consent.

Right to Restrict Processing

You have the right to request that we limit how we use your personal data while concerns about accuracy or legitimacy are being resolved.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to have that data transmitted to another controller where technically feasible.

Right to Object

You have the right to object to processing of your personal data where we are relying on legitimate interests as our legal basis, or where processing is for direct marketing purposes.

Rights Related to Automated Decision Making

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

How to Exercise Your Rights

To exercise any of your rights, please contact us using the details provided above. We may need to verify your identity before processing your request. We will respond to all legitimate requests within one month. In some cases, we may extend this period by two months where requests are complex or numerous.

Data Security

We implement appropriate technical and organisational measures to ensure a level of security appropriate to the risk, including:

  • Encryption of personal data where appropriate
  • Regular testing and evaluation of security measures
  • Staff training on data protection
  • Access controls to limit who can access personal data
  • Secure disposal of data no longer needed

Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. Our retention periods are determined based on:

  • The nature of the data and sensitivity
  • Legal and regulatory requirements
  • The purposes for which the data was collected
  • Potential future need for the data

International Data Transfers

When we transfer personal data outside the UK, we ensure appropriate safeguards are in place to protect your data, such as Standard Contractual Clauses approved by the Information Commissioner's Office (ICO).

Data Breaches

In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify the ICO within 72 hours of becoming aware of the breach. If the breach is likely to result in a high risk to you, we will also inform you directly.

Complaints

If you are not satisfied with how we handle your personal data or respond to your requests, you have the right to lodge a complaint with the Information Commissioner's Office:

Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF
Website: ico.org.uk

Updates to This Information

We may update this GDPR information from time to time. Any changes will be posted on this page with an updated revision date. We encourage you to review this page periodically.

Further Information

For more detailed information about how we collect and use your personal data, please refer to our Privacy Policy.