Your data protection rights under the General Data Protection Regulation
Quiet Credence is committed to protecting your personal data in accordance with the General Data Protection Regulation (GDPR) and the UK Data Protection Act 2018. This page outlines how we comply with these regulations and your rights as a data subject.
Quiet Credence is the data controller responsible for your personal data. Our contact details are:
Email: [email protected]
Address: Unit 7, Greenfield Estate, Meadow Lane, Wiltshire, SN14 8PQ, United Kingdom
We process your personal data under the following lawful bases:
You have the right to request a copy of the personal data we hold about you. We will provide this information free of charge within one month of your request.
You have the right to request correction of inaccurate or incomplete personal data we hold about you.
You have the right to request deletion of your personal data under certain circumstances, such as when the data is no longer necessary for the purposes it was collected.
You have the right to request that we restrict processing of your personal data in certain situations, such as while we verify the accuracy of disputed data.
You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.
You have the right to object to processing of your personal data where we are relying on legitimate interests as the legal basis for processing.
You have the right not to be subject to decisions based solely on automated processing, including profiling, which produce legal effects or similarly significantly affect you. We do not engage in automated decision-making.
Where we process your data based on consent, you have the right to withdraw that consent at any time. This will not affect the lawfulness of processing based on consent before its withdrawal.
To exercise any of your data protection rights, please contact us at:
Email: [email protected]
We will respond to your request within one month. In complex cases, we may extend this period by two additional months and will inform you if this is necessary.
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:
In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify you and the relevant supervisory authority within 72 hours of becoming aware of the breach.
We primarily process data within the United Kingdom and European Economic Area. If we transfer data outside these regions, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions.
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including:
Our services are not directed at children under 18. We do not knowingly collect or process data from children. If we become aware that we have collected data from a child, we will delete it promptly.
If you believe we have not complied with GDPR or UK data protection law, you have the right to lodge a complaint with the supervisory authority:
Information Commissioner's Office (ICO)
Wycliffe House, Water Lane
Wilmslow, Cheshire, SK9 5AF
United Kingdom
Tel: 0303 123 1113
Website: www.ico.org.uk
We may update this GDPR compliance information from time to time to reflect changes in our practices or legal requirements. Please check this page periodically for updates.
If you have questions about our GDPR compliance or wish to exercise your rights, please contact us at [email protected].