GDPR Compliance Statement

Last updated: 10 June 2026

Our commitment to data protection

We are committed to complying with the General Data Protection Regulation (GDPR) and UK data protection laws. This statement outlines how we ensure compliance and protect the rights of individuals whose personal data we process.

Data controller information

For the purposes of data protection legislation, we act as the data controller for personal information collected through our website and services.

Contact details:
Email: [email protected]
Address: 42 Berkeley Square, Mayfair, London W1J 5AJ, United Kingdom

Lawful basis for processing

We process personal data only where we have a lawful basis to do so, including:

• Consent: You have given clear consent for us to process your personal data for specific purposes
• Contract: Processing is necessary to fulfil a contract with you or to take steps at your request before entering into a contract
• Legal obligation: Processing is necessary to comply with legal obligations
• Legitimate interests: Processing is necessary for our legitimate business interests, provided this does not override your rights and freedoms

Your GDPR rights

Under the GDPR, you have the following rights regarding your personal data:

Right to be informed

You have the right to clear, transparent information about how we use your personal data. This information is provided in our Privacy Policy.

Right of access

You have the right to request a copy of the personal data we hold about you. This is commonly known as a Subject Access Request (SAR).

Right to rectification

You have the right to request correction of personal data that is inaccurate or incomplete.

Right to erasure

Also known as the right to be forgotten, you can request deletion of your personal data in certain circumstances.

Right to restrict processing

You have the right to request that we restrict processing of your personal data in certain situations.

Right to data portability

You have the right to receive your personal data in a structured, commonly used format and to transmit that data to another controller.

Right to object

You have the right to object to processing based on legitimate interests or for direct marketing purposes.

Rights related to automated decision making

You have the right not to be subject to decisions based solely on automated processing that produce legal effects or similarly significantly affect you.

How to exercise your rights

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within one month, though this may be extended by two further months for complex requests.

Please provide sufficient information to identify yourself and specify which right you wish to exercise. We may request additional information to verify your identity before processing your request.

Data security measures

We implement appropriate technical and organisational measures to protect personal data, including:

• Encryption of data in transit and at rest
• Access controls and authentication mechanisms
• Regular security assessments and updates
• Staff training on data protection principles
• Confidentiality agreements with staff and service providers

Data breach notification

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify you without undue delay. We will also notify the relevant supervisory authority as required by law.

International data transfers

We primarily store and process data within the United Kingdom and European Economic Area. If we transfer data outside these regions, we ensure appropriate safeguards are in place, such as standard contractual clauses or adequacy decisions.

Complaints

If you believe we have not handled your personal data properly, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK supervisory authority for data protection.

Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF
Telephone: 0303 123 1113
Website: www.ico.org.uk

Updates to this statement

We may update this GDPR compliance statement from time to time to reflect changes in our practices or legal requirements. Please check this page periodically for updates.