menu-icon

UK GDPR

by Elara Winthrop on 21.11.2024

UK GDPR Compliance

Venture Retreats is committed to protecting your personal data in accordance with the UK General Data Protection Regulation (UK GDPR). This page explains how we comply with your rights under UK GDPR, even though we do not store user accounts or maintain a personal data database.

Scope and Applicability

The UK GDPR applies to the processing of personal data of individuals in the UK. While Venture Retreats does not require registration or collect personal information directly from users, we may process limited personal data through automated means such as website analytics, server logs, and cookies for functional and statistical purposes.

Your Rights Under UK GDPR

Under the UK GDPR, you have the following rights:

  • Right of access: You may request confirmation of whether we hold any personal data about you.
  • Right to rectification: You may request correction of any inaccurate personal data we hold.
  • Right to erasure: You may request deletion of your personal data, where applicable.
  • Right to restriction of processing: You may request limitation on how your data is processed.
  • Right to data portability: You may request a copy of your data in a structured, commonly used format.
  • Right to object: You may object to processing based on legitimate interests, including profiling or analytics.

How We Comply

Venture Retreats minimises data collection and does not store personal data in identifiable databases. We use third-party analytics tools (e.g., Google Analytics) that anonymise IP addresses and process data under strict contractual obligations. We do not sell, share, or disclose personal data for commercial purposes beyond necessary operational functions.

Data We Process

Any personal data we process is limited to:

  • IP addresses (anonymised)
  • Cookies for site functionality and preferences
  • Server logs containing non-identifiable usage patterns

This data is retained only for as long as necessary for analytical purposes and is automatically deleted after 12 months.

Legal Basis for Processing

Our processing of personal data is based on legitimate interest under Article 6(1)(f) UK GDPR, specifically to:

  • Improve website performance and user experience
  • Ensure site security and functionality
  • Analyse traffic patterns to enhance content relevance

We balance these interests against your rights and freedoms, and we do not process data where your interests override ours.

How to Exercise Your Rights

To exercise any of your rights under UK GDPR, please contact us via email at [email protected]. Include your full name, the right you wish to exercise, and any relevant details (e.g., email address or IP address used when visiting the site). We will respond without undue delay.

Response Timeframes

We are required to respond to your request within one month of receipt. In complex cases, we may extend this to three months and will inform you within one month if this is necessary.

No Discrimination Policy

You will not be denied access to our services, charged different prices, or receive a different level of service for exercising your rights under UK GDPR.

Updates and Changes

We may update this compliance page periodically to reflect changes in law or our practices. The most recent version will always be posted here with an updated effective date.

Contact Information

If you have questions about this compliance page or wish to exercise your rights, please contact our Data Protection Officer:

Elara Winthrop
20 Sovereign Point, Bath Riverside, Bath, BA2 3TP, United Kingdom
Email: [email protected]

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK’s supervisory authority for data protection: ico.org.uk.

Search

Categories

Archives

©2025 vrotley.co.uk. All rights reserved