GDPR Compliance

Last updated: 14 November 2024

1. GDPR Overview

PrintPigeon complies with the General Data Protection Regulation (GDPR) regarding the collection, use, and retention of personal data from European Union member countries and the UK.

2. Your Data Rights

Under GDPR, you have the following rights:

  • Right to access your personal data
  • Right to rectification of inaccurate data
  • Right to erasure
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Rights related to automated decision making

3. Data Processing Basis

We process personal data under the following legal bases:

  • Contract fulfillment (processing orders)
  • Legal obligations (tax records)
  • Legitimate interests (service improvement)
  • Consent (marketing communications)
  • Vital interests (emergency situations)

4. Data Protection Measures

  • Encryption of data in transit and at rest
  • Regular security assessments
  • Employee data protection training
  • Access control and authentication
  • Data minimization practices
  • Regular backups and disaster recovery

5. International Data Transfers

When transferring data outside the EEA, we ensure:

  • Adequate level of data protection
  • Standard contractual clauses
  • Appropriate safeguards
  • Data processing agreements

6. Data Retention

We retain personal data for:

  • Order data: 7 years (legal requirement)
  • Account information: Duration of account activity
  • Marketing preferences: Until consent withdrawal
  • Website analytics: 26 months

7. Data Breach Procedures

In case of a data breach, we will:

  • Notify supervisory authorities within 72 hours
  • Inform affected individuals without undue delay
  • Document all breaches and remedial actions
  • Implement measures to prevent future breaches

8. Data Protection Officer

Our Data Protection Officer can be contacted at:
Email: dpo@printpigeon.co.uk
Phone: [DPO Phone Number]
Address: [DPO Office Address]

9. Exercising Your Rights

To exercise your GDPR rights:

  1. Email dpo@printpigeon.co.uk
  2. Use our online rights request form
  3. Write to our Data Protection Officer
  4. Response provided within 30 days

10. Supervisory Authority

You have the right to lodge a complaint with a supervisory authority. In the UK, this is:
Information Commissioners Office (ICO)
Website: https://ico.org.uk

11. Updates to This Policy

We regularly review and update our GDPR compliance policies. Changes will be posted on this page with a revised date.

← Back to Homepage