GDPR Compliance

Last updated: 10 May 2026

Our Commitment to GDPR

metallic-logic is committed to protecting and respecting your privacy in accordance with the General Data Protection Regulation (GDPR). This page outlines how we comply with GDPR requirements and your rights as a data subject.

Lawful Basis for Processing

We process your personal data based on the following lawful grounds:

• Consent: You have given clear consent for us to process your personal data for a specific purpose
• Contract: Processing is necessary for a contract we have with you
• Legal obligation: Processing is necessary to comply with the law
• Legitimate interests: Processing is necessary for our legitimate interests or those of a third party

Your Rights Under GDPR

Under GDPR, you have the following rights regarding your personal data:

1. Right to Access

You have the right to request copies of your personal data.

2. Right to Rectification

You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.

3. Right to Erasure

You have the right to request that we erase your personal data, under certain conditions.

4. Right to Restrict Processing

You have the right to request that we restrict the processing of your personal data, under certain conditions.

5. Right to Object to Processing

You have the right to object to our processing of your personal data, under certain conditions.

6. Right to Data Portability

You have the right to request that we transfer the data we have collected to another organisation, or directly to you, under certain conditions.

How to Exercise Your Rights

To exercise any of these rights, please contact us at:

Email: [email protected]

We will respond to your request within one month. If your request is complex or we have received multiple requests, it may take longer, but we will inform you within one month if this is the case.

Data Protection Officer

For any questions regarding our data protection practices or GDPR compliance, please contact our Data Protection Officer at [email protected].

Data Security

We have implemented appropriate technical and organisational measures to ensure a level of security appropriate to the risk, including:

• Encryption of personal data
• Regular security assessments
• Staff training on data protection
• Access controls and authentication

Data Breach Notification

In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify you and the relevant supervisory authority within 72 hours of becoming aware of the breach.

International Data Transfers

We do not transfer your personal data outside the European Economic Area (EEA). If we need to do so in the future, we will ensure appropriate safeguards are in place.

Contact the Supervisory Authority

You have the right to lodge a complaint with a supervisory authority if you believe we have not complied with GDPR. In the UK, this is the Information Commissioner's Office (ICO).

Changes to This Policy

We may update this GDPR compliance statement from time to time. Any changes will be posted on this page with an updated revision date.