GDPR Compliance

How we comply with UK GDPR requirements

Our Commitment to GDPR

blazinggizmo is committed to full compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This page outlines how we meet our obligations under these regulations.

Data Controller

blazinggizmo acts as the data controller for personal information collected through our website and services. We determine how and why your personal data is processed.

Lawful Basis for Processing

We process personal data only when we have a lawful basis:

Consent: When you explicitly agree to our processing activities by submitting forms or enrolling in programs
Contract: When processing is necessary to fulfill our service obligations to you
Legal Obligation: When required to comply with UK legal requirements
Legitimate Interests: When necessary for our business operations, provided your rights are not overridden

Your GDPR Rights

You have the following rights under UK GDPR:

Right to Access

You can request a copy of all personal data we hold about you. We will provide this within one month of your request.

Right to Rectification

You can request correction of inaccurate or incomplete personal data.

Right to Erasure

You can request deletion of your personal data in certain circumstances, such as when it's no longer necessary for the purpose collected.

Right to Restrict Processing

You can request that we limit how we use your personal data in specific situations.

Right to Data Portability

You can request your personal data in a structured, commonly used, machine-readable format.

Right to Object

You can object to processing based on legitimate interests or for direct marketing purposes.

Rights Related to Automated Decision-Making

We do not use automated decision-making or profiling in our services.

Data Protection Principles

We adhere to GDPR's core principles by ensuring data is:

Processed lawfully, fairly, and transparently
Collected for specified, explicit, and legitimate purposes
Adequate, relevant, and limited to what's necessary
Accurate and kept up to date
Retained only as long as necessary
Processed securely with appropriate safeguards

Data Breach Notification

In the event of a data breach that poses a risk to your rights and freedoms, we will notify the Information Commissioner's Office (ICO) within 72 hours and inform affected individuals without undue delay.

International Transfers

Your personal data is processed and stored within the United Kingdom. If we transfer data outside the UK, we ensure appropriate safeguards are in place.

Children's Data

We take extra care when processing children's personal data. We obtain parental consent for children under 13 and ensure processing is in the child's best interests.

Data Protection Officer

For any questions about our GDPR compliance or to exercise your rights, contact us at:

Email: [email protected]
Address: 47 Maple Grove Terrace, Bristol BS8 2LR, United Kingdom

Supervisory Authority

You have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) if you believe we have not handled your data appropriately:

Information Commissioner's Office
Wycliffe House, Water Lane
Wilmslow, Cheshire SK9 5AF
Tel: 0303 123 1113
Website: ico.org.uk

How to Exercise Your Rights

To exercise any of your GDPR rights, send a written request to [email protected] with:

Your full name and contact information
A description of the right you wish to exercise
Any relevant details to help us locate your data

We will respond to verified requests within one month.