Your data protection rights under UK GDPR
endodaddim is committed to complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We take the security and privacy of your personal data seriously and have implemented measures to ensure compliance with applicable data protection laws.
endodaddim acts as the data controller for personal information collected through our website and services. This means we determine the purposes and means of processing your personal data.
Contact details:
Email: [email protected]
Address: Unit 14, Hackney Studios, 42 Mare Street, London E8 4RP, United Kingdom
As a data subject, you have the following rights:
You have the right to request a copy of the personal information we hold about you. We will provide this information within one month of receiving your request.
If you believe any information we hold about you is inaccurate or incomplete, you have the right to request correction. We will respond to such requests within one month.
You have the right to request deletion of your personal data in certain circumstances, including when the data is no longer necessary for the purposes for which it was collected, or when you withdraw consent.
You have the right to request that we limit the processing of your personal data in certain situations, such as when you contest the accuracy of the data or object to processing.
Where processing is based on consent or contract and carried out by automated means, you have the right to receive your personal data in a structured, commonly used, and machine-readable format.
You have the right to object to processing of your personal data based on legitimate interests. We will stop processing unless we can demonstrate compelling legitimate grounds that override your interests.
You have the right not to be subject to decisions based solely on automated processing, including profiling, that produce legal or similarly significant effects. We do not currently engage in such automated decision-making.
To exercise any of these rights, please contact us at [email protected]. We will respond to your request within one month. In complex cases, this period may be extended by two additional months, and we will inform you of any extension within the first month.
We may request proof of identity before processing your request to ensure we are communicating with the correct person.
We process personal data under the following lawful bases:
We conduct Data Protection Impact Assessments (DPIAs) when introducing new processing activities that are likely to result in high risk to individuals' rights and freedoms.
In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify the Information Commissioner's Office (ICO) within 72 hours of becoming aware of the breach. If the breach is likely to result in high risk to you, we will also notify you directly.
When we engage third-party processors to handle personal data on our behalf, we ensure they provide sufficient guarantees regarding their data protection practices. All processors are bound by written contracts that require them to implement appropriate security measures.
If we transfer personal data outside the UK, we ensure adequate safeguards are in place. This may include transfers to countries with adequacy decisions, or implementation of Standard Contractual Clauses approved by the ICO.
If you are not satisfied with how we handle your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):
Website: ico.org.uk
Telephone: 0303 123 1113
We review our GDPR compliance regularly and may update this page to reflect changes in our practices or applicable laws. The date of the last update is shown at the top of this page.