GDPR Compliance - Trendfingers Ltd

1. Our Commitment to GDPR

Trendfingers Ltd is committed to protecting your personal data and complying with the General Data Protection Regulation (GDPR). This document outlines how we ensure compliance with GDPR requirements and protect your rights regarding your personal data.

2. Data Protection Principles

Under GDPR, we follow these key principles:

Lawfulness, fairness, and transparency
Purpose limitation
Data minimization
Accuracy
Storage limitation
Integrity and confidentiality
Accountability

3. Your Rights Under GDPR

3.1 Right to Access

You have the right to request a copy of your personal data that we hold.

3.2 Right to Rectification

You can request corrections to your personal data if it is inaccurate or incomplete.

3.3 Right to Erasure

You can request the deletion of your personal data in certain circumstances.

3.4 Right to Restrict Processing

You can request that we limit how we use your personal data.

3.5 Right to Data Portability

You can request to receive your personal data in a machine-readable format.

4. Data Security Measures

We implement appropriate technical and organizational measures to ensure data security, including:

Encryption of personal data
Regular security assessments
Access controls and authentication
Staff training on data protection
Secure data backup procedures

5. Data Processing Activities

We maintain records of our data processing activities, including the purposes of processing, categories of personal data, recipients of data, and security measures implemented.

5.1 Legal Bases for Processing

We process your personal data based on one or more of the following legal bases:

Your consent (e.g., for marketing communications)
Performance of a contract (e.g., for providing services)
Compliance with legal obligations
Our legitimate interests, provided these do not override your rights

6. International Data Transfers

When transferring personal data outside the EEA, we ensure appropriate safeguards are in place through standard contractual clauses or other approved transfer mechanisms.

7. Data Breach Procedures

We have procedures in place to detect, report, and investigate personal data breaches. We will notify relevant supervisory authorities and affected individuals as required by GDPR.

8. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes we collected it for, including to satisfy any legal, accounting, or reporting requirements. Retention periods vary depending on the type of data and purpose of processing.

9. Third-Party Processors

We may share your personal data with trusted third-party service providers who help us operate our business, such as:

Website hosting and cloud storage providers
Email delivery and marketing platforms
Analytics and performance tools

All third-party processors are subject to strict data protection obligations and data processing agreements.

10. Complaints to the Supervisory Authority

If you have concerns about how we handle your personal data, you can lodge a complaint with the UK Information Commissioner's Office (ICO) at https://ico.org.uk.

11. Contact Us

For any GDPR-related queries or to exercise your rights, please contact our Data Protection Officer at:

Trendfingers Ltd

Email: dpo@trendfingers.com

12. Submit a Data Subject Request

Use the form below to submit a request to exercise your GDPR rights:

Full Name

Email Address

Request Type

Request Details

I consent to Trendfingers Ltd processing my request and the personal data provided in this form.

We will respond to your request within 30 days as required by GDPR. For complex requests, we may extend this period by up to two additional months.