UK GDPR Compliance

This page explains how Birmingham Security Command Center complies with the UK General Data Protection Regulation (UK GDPR), which governs the protection of personal data in the United Kingdom.

Scope and Applicability

Although Birmingham Security Command Center does not maintain a user registration system or store personal data in a structured database, we may collect limited personal data through website interactions such as contact forms, cookies, and server log files. This data is processed solely for operational and security purposes, and we are fully committed to complying with the UK GDPR in all such instances.

Your Rights Under UK GDPR

Under the UK GDPR, you have the following rights regarding your personal data:

  • Right of access – You may request confirmation of whether we hold your personal data and receive a copy of it.
  • Right to rectification – You may request correction of inaccurate or incomplete personal data.
  • Right to erasure – You may request deletion of your personal data where there is no compelling reason for its continued processing.
  • Right to restriction of processing – You may request that we limit how your data is used under certain conditions.
  • Right to data portability – You may request your data in a structured, commonly used, and machine-readable format.
  • Right to object – You may object to processing based on legitimate interests or direct marketing.
  • Right not to be subject to automated decision-making – You have the right not to be subject to decisions based solely on automated processing.

How We Comply

We do not collect personal data for profiling, automated decision-making, or commercial sale. Any personal data collected via contact forms or cookies is processed only to respond to inquiries or improve website functionality. We maintain minimal data retention practices and ensure all data is securely handled and deleted when no longer necessary.

Data We Process

The personal data we may process includes:

  • Name and contact details submitted via our contact form
  • IP address and browser information collected via cookies for security and analytics
  • Timestamps and pages visited in server logs

This data is not stored permanently and is retained only for as long as necessary to fulfill the purpose for which it was collected.

Legal Basis for Processing

We rely on the following lawful bases under UK GDPR:

  • Legitimate interest – To ensure website security, prevent fraud, and improve user experience.
  • Consent – For non-essential cookies, we obtain explicit consent before deployment.
  • Contractual necessity – To respond to inquiries submitted through our contact form.

How to Exercise Your Rights

To exercise any of your rights under UK GDPR, please contact us by email at [email protected]. Include your full name, the right you wish to exercise, and any relevant details (e.g., email address used to contact us). We will respond to your request without undue delay.

Response Timeframes

We are required to respond to your request within one month of receipt. In complex cases, we may extend this period by two additional months and will inform you of any delay and the reasons for it.

No Discrimination Policy

We will not deny you services, charge different prices, or provide a lower quality of service because you exercised your rights under UK GDPR.

Updates and Changes

We may update this compliance page from time to time to reflect changes in law or our practices. Any material changes will be posted here with an updated effective date.

Contact Information

If you have any questions about this compliance page or wish to exercise your rights under UK GDPR, please contact:

Thorne Cadwell
47 Courtenay Place, Te Aro, Wellington 6011, New Zealand
[email protected]

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK’s supervisory authority for data protection: https://ico.org.uk.