GDPR Compliance

Last updated: May 10, 2026

Our Commitment to GDPR

glowbound-journey is committed to complying with the General Data Protection Regulation (GDPR) and protecting the rights of individuals in the European Union and United Kingdom regarding their personal data.

Legal Basis for Processing

We process personal data under the following legal bases:

• Consent: When you provide explicit consent for us to process your personal data for specific purposes
• Contract: When processing is necessary to fulfill our contractual obligations to you
• Legal Obligation: When we must process your data to comply with legal requirements
• Legitimate Interests: When processing is necessary for our legitimate business interests, provided these do not override your rights

Your Rights Under GDPR

Under GDPR, you have the following rights:

Right to Access

You have the right to request copies of your personal data. We may charge a small fee for this service.

Right to Rectification

You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.

Right to Erasure

You have the right to request that we erase your personal data, under certain conditions.

Right to Restrict Processing

You have the right to request that we restrict the processing of your personal data, under certain conditions.

Right to Object to Processing

You have the right to object to our processing of your personal data, under certain conditions.

Right to Data Portability

You have the right to request that we transfer the data we have collected to another organization, or directly to you, under certain conditions.

How to Exercise Your Rights

To exercise any of these rights, please contact us at:

Email: [email protected]
Address: 42 Kingsland Road, Shoreditch, London, E2 8DA, United Kingdom

We will respond to your request within one month of receipt. In some cases, we may extend this period by an additional two months where necessary, taking into account the complexity and number of requests.

Data Protection Officer

For any questions regarding our GDPR compliance or data protection practices, you may contact our Data Protection Officer at [email protected].

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including any legal, accounting, or reporting requirements. When personal data is no longer needed, we securely delete or anonymize it.

International Data Transfers

We primarily process data within the United Kingdom and European Economic Area. If we transfer your personal data outside these regions, we ensure appropriate safeguards are in place to protect your data in accordance with GDPR requirements.

Data Breach Notification

In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify you and the relevant supervisory authority within 72 hours of becoming aware of the breach.

Complaints

If you believe we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) or your local supervisory authority.

ICO Contact Information:
Website: ico.org.uk
Phone: 0303 123 1113

Updates to This Policy

We may update this GDPR compliance statement from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated statement on our website.