GDPR Compliance

angliakron7finance is committed to compliance with the General Data Protection Regulation (GDPR) and the UK Data Protection Act 2018. This page explains how we fulfil our obligations and how you can exercise your rights.

Data Controller

angliakron7finance acts as the data controller for personal information collected through this website. This means we determine how and why your personal data is processed.

Contact details:

angliakron7finance
47 Brunswick Street
Manchester, M13 9PL
United Kingdom

Email: [email protected]

Lawful Bases for Processing

We process personal data only when we have a valid legal basis. The lawful bases we rely on include:

• Consent: You have given clear consent for us to process your personal data for a specific purpose, such as receiving marketing communications or submitting an enquiry.
• Contract: Processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract.
• Legitimate Interests: Processing is necessary for our legitimate interests or the legitimate interests of a third party, unless there is a good reason to protect your personal data which overrides those interests.
• Legal Obligation: Processing is necessary for compliance with a legal obligation to which we are subject.

Your Rights Under GDPR

The GDPR provides you with specific rights concerning your personal data:

Right to Be Informed

You have the right to be informed about the collection and use of your personal data. This GDPR page and our Privacy Policy fulfil this requirement.

Right of Access

You have the right to request access to your personal data and supplementary information. This is commonly known as a subject access request. We will respond within one month of receiving your request.

Right to Rectification

You have the right to have inaccurate personal data corrected or completed if it is incomplete. We will respond to your request within one month.

Right to Erasure

You have the right to request the deletion or removal of personal data where there is no compelling reason for its continued processing. This right is not absolute and applies only in certain circumstances.

Right to Restrict Processing

You have the right to request the restriction or suppression of your personal data. When processing is restricted, we are permitted to store the data but not process it further.

Right to Data Portability

You have the right to obtain and reuse your personal data for your own purposes across different services. This applies to data you have provided to us where processing is based on consent or contract performance.

Right to Object

You have the right to object to processing based on legitimate interests, direct marketing, and processing for research or statistical purposes.

Rights Related to Automated Decision-Making

You have rights in relation to automated decision-making and profiling. We do not currently engage in automated decision-making that produces legal effects or similarly significantly affects you.

How to Exercise Your Rights

To exercise any of your rights, please contact us using the details provided above. We may need to verify your identity before processing your request. We will respond to your request within one month, although this period may be extended by two further months for complex requests.

Data Protection Principles

We adhere to the data protection principles set out in the GDPR:

• Personal data is processed lawfully, fairly, and transparently
• Data is collected for specified, explicit, and legitimate purposes
• Data collected is adequate, relevant, and limited to what is necessary
• Personal data is accurate and kept up to date
• Data is kept in identifiable form no longer than necessary
• Data is processed in a manner ensuring appropriate security

International Data Transfers

When we transfer personal data outside the UK, we ensure appropriate safeguards are in place. These may include adequacy decisions, standard contractual clauses, or other approved mechanisms.

Data Breach Notification

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the Information Commissioner's Office within 72 hours of becoming aware of the breach. Where the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly.

Complaints

If you believe we have not handled your personal data in accordance with applicable law, you have the right to lodge a complaint with the Information Commissioner's Office:

Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF

Updates to This Page

We may update this GDPR compliance page from time to time. Any changes will be posted on this page with an updated revision date.