GDPR Compliance

Our Commitment to Data Protection

glare automaton is committed to ensuring compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We take the privacy and security of your personal data seriously.

Data Controller

glare automaton acts as the data controller for personal data collected through our website and services. Our contact details are:

glare automaton
47 Thinking Lane
London, EC2A 4NE
United Kingdom
Email: [email protected]

Your Rights Under UK GDPR

Under the UK GDPR, you have the following rights regarding your personal data:

Right to Be Informed

You have the right to be informed about how we collect and use your personal data. We provide this information through our Privacy Policy and this GDPR notice.

Right of Access

You have the right to request a copy of the personal data we hold about you. This is commonly known as a Subject Access Request (SAR). We will respond to your request within one month.

Right to Rectification

You have the right to request that we correct any inaccurate personal data or complete any incomplete data we hold about you.

Right to Erasure

You have the right to request the deletion of your personal data in certain circumstances, including when the data is no longer necessary for the purposes for which it was collected.

Right to Restrict Processing

You have the right to request that we restrict the processing of your personal data in certain circumstances, such as when you contest the accuracy of the data.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller.

Right to Object

You have the right to object to the processing of your personal data in certain circumstances, including processing for direct marketing purposes.

Rights Related to Automated Decision-Making

You have rights related to automated decision-making, including profiling. We do not currently use automated decision-making that produces legal or similarly significant effects.

Lawful Basis for Processing

We process your personal data based on the following lawful bases:

• Consent: Where you have given clear consent for us to process your personal data for a specific purpose
• Contract: Where processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract
• Legal Obligation: Where processing is necessary for compliance with a legal obligation
• Legitimate Interests: Where processing is necessary for our legitimate interests or those of a third party, unless overridden by your rights

Data Protection Principles

We adhere to the following data protection principles:

• Lawfulness, Fairness, and Transparency: We process data lawfully, fairly, and transparently
• Purpose Limitation: We collect data for specified, explicit, and legitimate purposes
• Data Minimisation: We collect only data that is adequate, relevant, and limited to what is necessary
• Accuracy: We keep personal data accurate and up to date
• Storage Limitation: We keep data only for as long as necessary
• Integrity and Confidentiality: We process data securely
• Accountability: We are responsible for demonstrating compliance

International Data Transfers

When we transfer personal data outside the UK, we ensure appropriate safeguards are in place, including:

• Adequacy decisions
• Standard contractual clauses
• Binding corporate rules

Data Breach Notification

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the Information Commissioner's Office (ICO) within 72 hours. If the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly.

How to Exercise Your Rights

To exercise any of your rights under the UK GDPR, please contact us at:

Email: [email protected]

We will respond to your request within one month. In certain circumstances, we may extend this period by up to two months, in which case we will inform you of the extension and the reasons for it.

Right to Lodge a Complaint

If you are not satisfied with how we handle your personal data or respond to your requests, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

Information Commissioner's Office
Wycliffe House, Water Lane
Wilmslow, Cheshire SK9 5AF
Website: www.ico.org.uk

Updates to This Notice

We may update this GDPR compliance notice from time to time. Any changes will be posted on this page with an updated revision date.

Last updated: 25 May 2026