GDPR Compliance Statement

Our Commitment to GDPR

liquidchips complies with the General Data Protection Regulation (GDPR) and is committed to protecting the privacy and security of personal data we process. This statement outlines how we fulfill our obligations under GDPR.

Lawful Basis for Processing

We process personal data under the following lawful bases:

• Consent: When you provide explicit consent for us to process your data for specific purposes
• Contract: When processing is necessary to fulfill a contract or take steps before entering into a contract
• Legal obligation: When we must process data to comply with legal requirements
• Legitimate interests: When processing is necessary for our legitimate business interests, balanced against your rights

Data Controller Information

liquidchips acts as the data controller for personal information collected through our website and services.

Contact details:
Email: [email protected]
Address: 42 Riverside Quarter, Manchester M3 5EN, United Kingdom

Your GDPR Rights

Under GDPR, you have the following rights regarding your personal data:

• Right to access: Request copies of your personal data
• Right to rectification: Request correction of inaccurate or incomplete data
• Right to erasure: Request deletion of your personal data under certain conditions
• Right to restrict processing: Request limitation of how we use your data
• Right to data portability: Request transfer of your data to another organization
• Right to object: Object to processing based on legitimate interests or direct marketing
• Rights related to automated decision-making: Not be subject to decisions based solely on automated processing

Exercising Your Rights

To exercise any of your GDPR rights, contact us at [email protected]. We will respond to your request within one month, though this may be extended in complex cases.

You will not be charged a fee unless your request is clearly unfounded, repetitive, or excessive. We may request proof of identity before processing requests.

Data Protection Measures

We implement appropriate technical and organizational measures to ensure data security, including:

• Encryption of data in transit and at rest
• Regular security assessments and updates
• Access controls limiting data access to authorized personnel
• Staff training on data protection principles
• Incident response procedures for data breaches

Data Retention

We retain personal data only as long as necessary for the purposes for which it was collected, or to comply with legal obligations. When data is no longer required, it is securely deleted or anonymized.

International Data Transfers

Your data is primarily processed and stored within the United Kingdom and European Economic Area. If data is transferred outside these regions, we ensure appropriate safeguards are in place as required by GDPR.

Data Breach Notification

In the event of a data breach that poses a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and inform affected individuals without undue delay.

Children's Data

While our services are designed for children and teenagers, we collect personal data from parents or guardians acting on their behalf. We do not knowingly collect data directly from children under 16 without parental consent.

Supervisory Authority

You have the right to lodge a complaint with a supervisory authority if you believe we have not complied with GDPR. In the UK, the relevant authority is the Information Commissioner's Office (ICO).

ICO Contact Information:
Website: ico.org.uk
Telephone: 0303 123 1113

Updates to This Statement

We may update this GDPR compliance statement to reflect changes in our practices or legal requirements. Updates will be posted on this page with a revised date.