Our commitment to protecting your data under the General Data Protection Regulation
Last updated: January 2024
comet-quest is committed to compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We take our responsibilities as a data controller seriously and have implemented measures to ensure the protection of personal data we process.
For the purposes of data protection legislation, comet-quest acts as the data controller for personal information collected through this website and in connection with our services.
Contact details:
Email: [email protected]
Address: 47 Scholars Lane, Cambridge CB2 1TN, United Kingdom
We process personal data only when we have a lawful basis to do so. The lawful bases we rely upon include:
Under the UK GDPR, you have the following rights regarding your personal data:
Right of Access: You have the right to request a copy of the personal information we hold about you. We will respond to such requests within one month.
Right to Rectification: You have the right to request that we correct any inaccurate personal information we hold about you.
Right to Erasure: You have the right to request that we delete your personal data in certain circumstances, such as when the data is no longer necessary for the purposes for which it was collected.
Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data in certain circumstances.
Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.
Right to Object: You have the right to object to processing based on legitimate interests or for direct marketing purposes.
Rights Related to Automated Decision-Making: You have the right not to be subject to decisions based solely on automated processing that produce legal or similarly significant effects. We do not currently use automated decision-making processes.
To exercise any of these rights, please contact us at [email protected]. We may need to verify your identity before processing your request. We will respond to your request within one month, though this period may be extended by two further months where necessary, taking into account the complexity and number of requests.
There is no fee for exercising your rights in most circumstances. However, we may charge a reasonable fee if your request is clearly unfounded, repetitive, or excessive.
We have implemented appropriate technical and organisational measures to ensure a level of security appropriate to the risk, including:
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the Information Commissioner's Office within 72 hours of becoming aware of the breach. Where a breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly.
Where we transfer personal data outside the United Kingdom, we ensure appropriate safeguards are in place, such as standard contractual clauses approved by the relevant authorities or transfers to countries deemed to provide adequate protection.
If you are unhappy with how we have handled your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):
Website: ico.org.uk
Telephone: 0303 123 1113
We would appreciate the opportunity to address your concerns before you approach the ICO, so please contact us in the first instance.
We may update this GDPR compliance information from time to time. Any changes will be posted on this page with an updated revision date.