GDPR Policy

GDPR Compliant Privacy Policy (For Residents of the European Economic Area)

James Longstaff is dedicated to safeguarding your personal data. We acknowledge your interest in how we gather and utilize your information through our website, www.JamesLongstaff.com. This Privacy Policy is established to provide clarity and transparency in our data practices and the circumstances under which we might disclose or share your personal information. This policy also details your rights as granted by the General Data Protection Regulation (GDPR) and is an integral part of the Terms of Use displayed at the bottom of each page on our website.

Highlights of Our Privacy Policy:

  1. Data Collection and Retention: We may occasionally request personal information like your name, address, date of birth, email address, or browsing data. We are committed to not collecting sensitive data that may reveal your political, religious, or philosophical beliefs, health status, racial or ethnic origin, trade union membership, or criminal background.

  2. Methods of Data Collection: We gather personal data through direct interactions (such as forms on our website) and automated technologies like cookies. For more details, please refer to our Cookie Policy.

  3. Use and Sharing of Information: Your personal data are primarily used for ensuring our website's functionality and for business-related purposes such as auditing and marketing. We only share your data under specific conditions like legal requirements or with your explicit consent.

  4. Legal Basis for Processing: We process your data based on several legal grounds, including your consent, necessity for contract fulfillment, legal obligations, payment processing, and our legitimate business interests.

  5. Your Rights Over Your Data: As per GDPR, you have various rights regarding your personal data, including access, correction, erasure, data portability, and the right to object or withdraw consent.

  6. Data Security: We are dedicated to protecting your data, stored both electronically and in hard-copy form, from misuse or unauthorized access.

  7. International Data Transfer: Your personal data may be processed outside your home country; however, we ensure all data transfers comply with GDPR and offer adequate data protection.

  8. Underage Privacy: We do not intentionally collect data from individuals under 16 years of age. Individuals under this age should have parental or guardian consent to provide us with personal information.

  9. Contact and Complaints: Should you have any queries or complaints about our privacy practices, please reach out to our Privacy Officer.

  10. Policy Amendments: We regularly review and may amend this Privacy Policy. Significant changes will be announced on our website 14 days before implementation.