Information on this site is advertising in nature.

GDPR Compliance

Understanding your rights under the General Data Protection Regulation.

Home / GDPR

Last updated: June 2026

Our Commitment to GDPR

glow-vacuum is committed to compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We take the protection of your personal data seriously and have implemented measures to ensure your information is handled lawfully, fairly, and transparently.

Data Controller

glow-vacuum acts as the data controller for the personal information we collect. This means we determine the purposes and means of processing your personal data.

Contact details:
Email: [email protected]
Address: 47 Meadow Lane, Bristol, BS1 4QR, United Kingdom

Your Rights Under GDPR

Right to Be Informed

You have the right to be informed about the collection and use of your personal data. Our Privacy Policy provides this information in a clear and accessible manner.

Right of Access

You can request a copy of the personal data we hold about you. We will respond to your request within one month and provide the information free of charge.

Right to Rectification

If you believe any personal data we hold about you is inaccurate or incomplete, you have the right to request correction. We will respond within one month.

Right to Erasure

Also known as the right to be forgotten, you can request deletion of your personal data in certain circumstances, including when the data is no longer necessary for its original purpose or you withdraw consent.

Right to Restrict Processing

You can request that we limit how we use your personal data in certain situations, such as when you contest the accuracy of the data.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, machine-readable format and to transmit this data to another controller.

Right to Object

You can object to the processing of your personal data in certain circumstances, including processing based on legitimate interests or for direct marketing purposes.

Rights Related to Automated Decision Making

You have rights related to automated decision making and profiling. We do not currently use automated decision making that produces legal effects concerning you.

Lawful Basis for Processing

We process personal data based on one or more of the following lawful bases:

  • Consent: Where you have given clear consent for us to process your personal data for a specific purpose
  • Contract: Where processing is necessary for the performance of a contract with you
  • Legal obligation: Where processing is necessary to comply with the law
  • Legitimate interests: Where processing is necessary for our legitimate business interests, provided these do not override your rights

Data Protection Principles

We adhere to the following principles when processing personal data:

  • Processing data lawfully, fairly, and transparently
  • Collecting data only for specified, explicit, and legitimate purposes
  • Ensuring data is adequate, relevant, and limited to what is necessary
  • Keeping data accurate and up to date
  • Retaining data only as long as necessary
  • Processing data securely

Data Breach Procedures

In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach. Where the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly.

Exercising Your Rights

To exercise any of your rights under GDPR, please contact us using the details provided above. We may need to verify your identity before processing your request. We will respond to all legitimate requests within one month.

Complaints

If you believe we have not handled your personal data appropriately, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues.

ICO Website: ico.org.uk