GDPR Compliance

Our commitment to protecting your data rights

General Data Protection Regulation (GDPR)

crispvolt is committed to full compliance with the General Data Protection Regulation (GDPR) and UK data protection laws. We respect your privacy rights and handle your personal data with care and transparency.

Lawful Basis for Processing

We process your personal data under the following lawful bases:

  • Consent: You have given clear consent for us to process your personal data for specific purposes
  • Contract: Processing is necessary for a contract we have with you
  • Legal obligation: Processing is necessary to comply with the law
  • Legitimate interests: Processing is necessary for our legitimate interests or the legitimate interests of a third party

Your GDPR Rights

Under GDPR, you have the following rights regarding your personal data:

Right to Access

You have the right to request copies of your personal data. We may charge a small fee for this service.

Right to Rectification

You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.

Right to Erasure

You have the right to request that we erase your personal data, under certain conditions.

Right to Restrict Processing

You have the right to request that we restrict the processing of your personal data, under certain conditions.

Right to Object to Processing

You have the right to object to our processing of your personal data, under certain conditions.

Right to Data Portability

You have the right to request that we transfer the data we have collected to another organization, or directly to you, under certain conditions.

How to Exercise Your Rights

If you wish to exercise any of these rights, please contact us:

Email: [email protected]
Address: 47 Wellington Street, Cambridge, CB1 1HX, United Kingdom

We will respond to your request within one month. If your request is particularly complex or you have made multiple requests, we may extend this period by two further months, in which case we will notify you.

Data Protection Officer

For matters specifically related to data protection and GDPR compliance, you may contact our designated Data Protection Officer at [email protected]

Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

When determining the appropriate retention period, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure, the purposes for which we process your personal data, and applicable legal requirements.

Data Security

We have implemented appropriate security measures to prevent your personal data from being accidentally lost, used, accessed, altered, or disclosed in an unauthorized way. We limit access to your personal data to those employees, agents, contractors, and other third parties who have a business need to know.

International Data Transfers

We do not transfer your personal data outside the UK or European Economic Area (EEA). Should this change in the future, we will ensure appropriate safeguards are in place to protect your data.

Automated Decision Making

We do not use automated decision-making or profiling in our processing of your personal data.

Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority, in particular in the EU member state or UK where you are habitually resident, where you work, or where an alleged infringement of data protection law occurred.

In the UK, the supervisory authority is the Information Commissioner's Office (ICO):
Website: https://ico.org.uk
Telephone: 0303 123 1113

Updates to This Statement

We may update this GDPR compliance statement from time to time. Any changes will be posted on this page with an updated revision date.