Last updated: 19 June 2026
We are committed to protecting your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This page explains your rights as a data subject and how we comply with data protection law.
For the purposes of data protection legislation, the data controller is:
phantom-raptor
42 Meadowview Lane
Cheltenham, GL50 3BA
United Kingdom
Email: [email protected]
You have the right to request a copy of the personal information we hold about you. This is known as a Subject Access Request (SAR). We will respond to your request within one month.
If you believe any information we hold about you is inaccurate or incomplete, you have the right to request that we correct or complete it.
You may request that we delete your personal data in certain circumstances, such as when it is no longer necessary for the purpose for which it was collected, or if you withdraw consent.
You have the right to request that we limit the way we use your data in certain situations, such as when you contest the accuracy of the data or object to our processing.
Where processing is based on consent or contract and is carried out by automated means, you have the right to receive your personal data in a structured, commonly used, and machine-readable format.
You have the right to object to processing based on legitimate interests or for direct marketing purposes. We will stop processing your data unless we can demonstrate compelling legitimate grounds that override your interests.
We do not use automated decision-making or profiling in our service delivery.
To exercise any of your data protection rights, please contact us at [email protected]. We may need to verify your identity before responding to your request.
You will not normally be charged for exercising your rights. If your request is manifestly unfounded or excessive, we may charge a reasonable fee or refuse to comply with the request.
We only process your personal data when we have a lawful basis to do so. The lawful bases we rely on include:
We have implemented appropriate technical and organisational measures to ensure a level of security appropriate to the risk, including:
In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify you and the relevant supervisory authority without undue delay, and where feasible, within 72 hours of becoming aware of the breach.
We do not routinely transfer personal data outside the United Kingdom. If we do need to transfer data internationally, we will ensure appropriate safeguards are in place.
If you are not satisfied with how we handle your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):
Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF
Tel: 0303 123 1113
Website: www.ico.org.uk
We may update this GDPR information page from time to time to reflect changes in law or our practices. Please check this page periodically for updates.