Your data protection rights explained
brisk-geyser is committed to protecting your personal data and respecting your privacy in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This page outlines how we comply with these regulations and explains your rights as a data subject.
brisk-geyser is the data controller for personal information collected through this website and our travel services. This means we determine the purposes and means of processing your personal data.
Contact Details:
brisk-geyser
42 Pier Head
Liverpool L3 1BY
United Kingdom
Email: [email protected]
We process personal data under the following lawful bases:
Under data protection law, you have the following rights:
You have the right to request a copy of the personal data we hold about you. This is known as a Subject Access Request (SAR). We will respond to your request within one month.
You have the right to request that we correct any inaccurate personal data or complete any incomplete data we hold about you.
You have the right to request that we delete your personal data in certain circumstances, such as when the data is no longer necessary for the purpose it was collected, or you withdraw consent on which the processing was based.
You have the right to request that we restrict the processing of your personal data in certain circumstances, such as when you contest the accuracy of the data or object to our processing.
You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller where technically feasible.
You have the right to object to processing based on legitimate interests or for direct marketing purposes. We will stop processing unless we can demonstrate compelling legitimate grounds that override your interests.
You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects or significantly affects you. We do not currently use automated decision-making in our services.
To exercise any of these rights, please contact us at [email protected]. We may need to verify your identity before processing your request. We will respond to your request within one month, although this may be extended by two further months for complex requests.
You will not have to pay a fee to exercise your rights. However, we may charge a reasonable fee if your request is clearly unfounded, repetitive, or excessive.
We have implemented appropriate technical and organisational measures to ensure a level of security appropriate to the risk, including:
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the Information Commissioner's Office (ICO) within 72 hours where feasible. If the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly.
We primarily store and process data within the United Kingdom. If we transfer personal data outside the UK, we will ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the ICO or transfers to countries with adequate data protection laws.
If you have any concerns about our use of your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):
Information Commissioner's Office
Wycliffe House, Water Lane
Wilmslow, Cheshire SK9 5AF
Website: ico.org.uk
Helpline: 0303 123 1113
We would appreciate the opportunity to address your concerns before you approach the ICO, so please contact us first at [email protected].
We may update this GDPR compliance information from time to time. Any changes will be posted on this page. We encourage you to review this page periodically to stay informed about how we are protecting your data.