blossom-wolf
This site contains promotional content

GDPR Compliance Statement

Last Updated: June 23, 2026

Our Commitment to Data Protection

blossom-wolf is committed to protecting your personal data in accordance with the General Data Protection Regulation (GDPR) and the UK Data Protection Act 2018.

Legal Basis for Processing

We process your personal data under the following legal bases:

Data Controller

blossom-wolf is the data controller responsible for your personal information. Our contact details are:

Email: [email protected]
Address: 47 Westbourne Grove, London W2 4UA, United Kingdom

Your Rights Under GDPR

You have the following rights regarding your personal data:

Right to Access

You can request confirmation of whether we process your personal data and obtain a copy of that data.

Right to Rectification

You can request correction of inaccurate or incomplete personal data we hold about you.

Right to Erasure

You can request deletion of your personal data under certain circumstances, including:

Right to Restriction of Processing

You can request that we restrict processing of your personal data in certain situations, such as when you contest the accuracy of the data or object to processing.

Right to Data Portability

You can request to receive your personal data in a structured, commonly used, machine-readable format and have it transmitted to another controller.

Right to Object

You can object to processing of your personal data based on legitimate interests or for direct marketing purposes.

Rights Related to Automated Decision-Making

We do not use automated decision-making or profiling that produces legal effects or similarly significant effects on individuals.

Exercising Your Rights

To exercise any of these rights, contact us at [email protected]. We will respond to your request within one month, though this may be extended by two additional months for complex requests.

Data Security Measures

We implement appropriate technical and organizational measures to ensure data security, including:

Data Breach Notification

In the event of a data breach that poses a risk to your rights and freedoms, we will notify you and the relevant supervisory authority within 72 hours of becoming aware of the breach.

International Data Transfers

Your personal data is processed and stored within the United Kingdom. We do not transfer personal data outside the UK or European Economic Area.

Third-Party Processors

Where we engage third-party service providers who process personal data on our behalf, we ensure they comply with GDPR requirements through appropriate contractual arrangements.

Data Retention Policy

We retain personal data only as long as necessary for the purposes for which it was collected. Client inquiry records are typically retained for three years, after which they are securely deleted unless legal obligations require longer retention.

Children's Data

Our services are not directed to children under 16 years of age. We do not knowingly collect or process personal data of children without parental consent.

Complaints and Supervisory Authority

If you believe we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

Website: ico.org.uk
Address: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF
Helpline: 0303 123 1113

Updates to This Statement

We may update this GDPR Compliance Statement to reflect changes in our practices or legal requirements. Updates will be posted on this page with a revised date.

Contact Us

For questions about our GDPR compliance or to exercise your data rights, contact us at [email protected].