GDPR.
GDPR
Last updated: 30 September 2024
At 8percent Growth, we are committed to protecting your personal data and ensuring that your privacy is respected. This page outlines how we comply with the UK GDPR (General Data Protection Regulation) and the Data Protection Act 2018. It explains your rights as a data subject and how you can exercise them.
What Is GDPR?
The General Data Protection Regulation (GDPR) is a regulation in UK and EU law designed to give individuals greater control over their personal data. It imposes obligations on organizations that collect, process, and store personal information and gives individuals rights regarding how their data is handled.
As a company based in the UK, 8percent Growth complies with the UK GDPR, which follows similar principles to the EU GDPR but has been adapted for UK law following Brexit.
What Personal Data We Collect
We may collect the following types of personal data when you interact with us:
Contact Information: Name, email address, phone number, company details.
Usage Data: Information about how you use our website, including IP address, browser type, pages visited, and time spent on our site.
Marketing Preferences: Information regarding your marketing and communication preferences.
For more detailed information on the types of data we collect, please see our Privacy Policy.
Legal Basis for Processing Your Data
Under the UK GDPR, we must have a valid legal basis for processing your personal data. The legal bases we rely on are:
Consent: When you have provided clear consent for us to process your personal data for specific purposes (e.g., receiving marketing emails).
Contractual Necessity: When the processing is necessary to fulfil a contract (e.g., providing you with services).
Legitimate Interests: When processing is necessary for our legitimate business interests, such as improving our services or marketing, provided that these interests do not override your rights.
Legal Obligation: When we need to process your personal data to comply with legal obligations.
Your Rights Under GDPR
As a data subject under the UK GDPR, you have the following rights regarding your personal data:
Right of Access: You have the right to request a copy of the personal data we hold about you and how we process it.
Right to Rectification: You can ask us to correct any inaccurate or incomplete data about you.
Right to Erasure: Also known as the "right to be forgotten," you can request that we delete your personal data, subject to certain conditions (e.g., if the data is no longer necessary for the purpose it was collected).
Right to Restrict Processing: You can ask us to restrict the processing of your data in certain circumstances (e.g., if you contest the accuracy of the data).
Right to Data Portability: You can request that we transfer your data to another organization or directly to you, in a structured, commonly used, and machine-readable format.
Right to Object: You have the right to object to the processing of your data in certain situations, including when we process your data for direct marketing or legitimate interests.
Right to Withdraw Consent: If we rely on your consent to process your personal data, you have the right to withdraw that consent at any time.
To exercise any of these rights, please contact us at gdpr (at) 8percentgrowth (dot) com. We will respond to your request within one month.
Data Retention
We will retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, or to comply with legal obligations. The length of time we keep your data will vary depending on the type of data and the purpose of its collection.
For example:
We may retain contact details for marketing purposes until you unsubscribe from our communications.
We may retain data related to contractual transactions for longer periods to meet legal obligations (e.g., tax and accounting requirements).
Data Security
We take data security seriously and implement appropriate technical and organizational measures to safeguard your personal data from unauthorized access, loss, or alteration. However, no method of transmission over the internet or method of electronic storage is completely secure. We cannot guarantee absolute security, but we are committed to ensuring a high standard of protection.
Data Transfers Outside the UK
As a UK-based company, we store and process personal data within the UK. However, if we transfer your data outside of the UK or the European Economic Area (EEA), we will ensure that appropriate safeguards are in place to protect your data, in line with UK GDPR requirements.
Third-Party Data Sharing
We may share your personal data with third-party service providers who help us operate the Site and deliver our services (e.g., hosting providers, marketing platforms). These providers are carefully selected and bound by contractual obligations to protect your data.
We do not sell or rent your personal data to third parties for their marketing purposes.
Supervisory Authority and Complaints
If you believe that your rights under the UK GDPR have been violated, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK’s data protection authority.
You can contact the ICO at:
Website: https://ico.org.uk/
Telephone: 0303 123 1113
Address: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
However, we encourage you to contact us first so we can address your concerns directly.
Changes to This Policy
We may update this GDPR Compliance page from time to time to reflect any changes in our data practices or legal requirements. Any updates will be posted on this page, and we encourage you to review this page periodically.
Contact Us
If you have any questions or concerns about this GDPR Compliance page or how we handle your personal data, please contact us at:
Email: gdpr (at) 8percentgrowth (dot) com
Postal Address:
8percent Growth Ltd
63-66 Hatton Gardens
Fifth Floor, Suite 23
London EC1N 8LE
United Kingdom