UK GDPR Compliance

Dandek Design is committed to respecting your data protection rights under the UK General Data Protection Regulation (UK GDPR). This page explains how we comply with the law, what rights you have, and how to exercise them.

Scope and Applicability

This UK GDPR compliance page applies to all visitors of dandekdesign.co.uk. While we do not collect personal information through user registration or databases, we may process limited personal data via website analytics, server logs, and cookies to improve user experience and site functionality.

Your Rights Under UK GDPR

Under the UK GDPR, you have the following rights:

Right of access – to request a copy of the personal data we hold about you
Right to rectification – to correct inaccurate or incomplete data
Right to erasure – to request deletion of your personal data
Right to restriction of processing – to limit how we use your data
Right to data portability – to receive your data in a structured, machine-readable format
Right to object – to object to processing based on legitimate interests
Right to withdraw consent – where processing is based on consent

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK’s supervisory authority for data protection.

How We Comply

Dandek Design ensures compliance with UK GDPR by:

Using only necessary cookies with user consent
Minimizing data collection to what is strictly required for site functionality
Securing server logs and analytics data with appropriate technical measures
Not retaining personal data longer than necessary
Providing clear pathways to exercise your rights

Data We Process

The personal data we may process includes:

IP addresses (anonymized where possible)
Browser and device information via analytics tools
Cookie identifiers for site functionality and preferences
Any personal information voluntarily submitted via our contact form (e.g., name, email)

We do not process sensitive personal data (special categories) under UK GDPR.

Legal Basis for Processing

We process personal data based on the following legal bases:

Legitimate interests – for site analytics, security, and performance optimization
Consent – for non-essential cookies and contact form submissions

We always ensure that our processing is necessary, proportionate, and respects your rights.

How to Exercise Your Rights

To exercise any of your rights under UK GDPR, please contact us directly at:

[email protected]

Include your full name, the right you wish to exercise, and any relevant details (e.g., email address used on the site). We will respond without undue delay.

Response Timeframes

We aim to respond to all requests within one month of receipt. If your request is complex or numerous, we may extend this period by up to two additional months and will inform you of the delay and reasons.

No Discrimination Policy

We will not deny you services, charge you different prices, or provide a lower quality of service because you exercised your rights under UK GDPR.

Updates and Changes

We may update this compliance page periodically to reflect changes in law or our practices. The most recent version will always be posted here with an updated effective date.