Our commitment to data protection under UK GDPR
Last updated: January 2024
solar-pine is committed to ensuring compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We take the protection of personal data seriously and have implemented measures to ensure that all personal information is processed lawfully, fairly, and transparently.
solar-pine acts as the data controller for personal information collected through this website. Our contact details are:
Address: 47 Whitmore Street, London EC2A 4BH, United Kingdom
Email: [email protected]
We adhere to the core principles of the UK GDPR in all our data processing activities:
We only process personal data where we have a lawful basis to do so, and we are transparent about how we use your information. Our Privacy Policy provides comprehensive details about our data processing activities.
Personal data is collected for specified, explicit, and legitimate purposes. We do not process data in ways that are incompatible with those purposes without obtaining additional consent.
We only collect personal data that is necessary for the purposes for which it is processed. We regularly review our data collection practices to ensure we are not collecting excessive information.
We take reasonable steps to ensure that personal data is accurate and kept up to date. You can contact us at any time to update or correct your information.
Personal data is retained only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. We have implemented data retention schedules to ensure timely deletion of data that is no longer needed.
We implement appropriate technical and organisational measures to protect personal data against unauthorised or unlawful processing, accidental loss, destruction, or damage.
As a data subject, you have the following rights regarding your personal data:
You have the right to be informed about how we collect and use your personal data. This information is provided through our Privacy Policy and any specific notices provided at the point of data collection.
You have the right to request a copy of the personal data we hold about you. This is commonly known as a Subject Access Request (SAR). We will respond to such requests within one month.
If the personal data we hold about you is inaccurate or incomplete, you have the right to have it corrected. We will make corrections within one month of receiving your request.
In certain circumstances, you have the right to request that we delete your personal data. This right is not absolute and applies only in specific situations as defined by the UK GDPR.
You have the right to request that we restrict the processing of your personal data in certain circumstances, such as when you contest the accuracy of the data.
Where processing is based on consent or contract and carried out by automated means, you have the right to receive your personal data in a structured, commonly used, and machine-readable format.
You have the right to object to processing based on legitimate interests, direct marketing, and processing for research or statistical purposes.
You have rights relating to automated decision-making and profiling. We do not currently engage in solely automated decision-making that has legal or similarly significant effects.
To exercise any of your rights under the UK GDPR, please contact us using the details provided. We may ask you to verify your identity before processing your request. We aim to respond to all valid requests within one month, though this may be extended by two months where requests are complex or numerous.
Where required, we conduct Data Protection Impact Assessments (DPIAs) before undertaking processing that is likely to result in a high risk to individuals' rights and freedoms.
We have procedures in place to detect, report, and investigate personal data breaches. Where a breach is likely to result in a high risk to your rights and freedoms, we will notify you without undue delay.
If you are not satisfied with how we handle your personal data or respond to your requests, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):
Information Commissioner's Office
Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF
Website: ico.org.uk
We may update this GDPR compliance notice from time to time. Any changes will be posted on this page with an updated revision date.