GDPR Compliance Statement

Last updated: June 18, 2026

Our Commitment to Data Protection

We are committed to protecting your personal data in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection legislation. This statement outlines how we comply with GDPR requirements and your rights as a data subject.

Data Controller Information

For the purposes of GDPR, the data controller is:

void-connector.com
47 Queensway Boulevard
Hammersmith
London W2 4QP
United Kingdom
Email: [email protected]

Lawful Basis for Processing

We process your personal data under the following lawful bases:

Contract Performance (Article 6(1)(b))

Processing is necessary to perform our contract with you when you request curtain cleaning or ironing services. This includes:

  • Processing service requests
  • Scheduling appointments
  • Delivering contracted services
  • Handling service-related communications

Legitimate Interests (Article 6(1)(f))

We process data based on our legitimate interests in:

  • Operating and improving our business
  • Analyzing website usage patterns
  • Preventing fraud and ensuring security
  • Internal record keeping

Consent (Article 6(1)(a))

Where required, we obtain your explicit consent for specific processing activities such as:

  • Marketing communications
  • Non-essential cookies

Legal Obligation (Article 6(1)(c))

We process data when required to comply with legal obligations, including tax and financial record-keeping requirements.

Your Rights Under GDPR

Right to Access (Article 15)

You have the right to obtain confirmation of whether we process your personal data and to request a copy of that data.

Right to Rectification (Article 16)

You can request correction of inaccurate personal data and completion of incomplete data.

Right to Erasure (Article 17)

Under certain circumstances, you can request deletion of your personal data, including when:

  • Data is no longer necessary for the purposes collected
  • You withdraw consent and no other legal basis exists
  • You object to processing and no overriding legitimate grounds exist
  • Data has been unlawfully processed

Right to Restriction of Processing (Article 18)

You can request restriction of processing when:

  • You contest the accuracy of personal data
  • Processing is unlawful but you oppose erasure
  • We no longer need the data but you need it for legal claims
  • You have objected to processing pending verification

Right to Data Portability (Article 20)

You have the right to receive your personal data in a structured, commonly used, machine-readable format and transmit it to another controller.

Right to Object (Article 21)

You can object to processing based on legitimate interests or for direct marketing purposes.

Rights Related to Automated Decision-Making (Article 22)

We do not engage in automated decision-making or profiling that produces legal or similarly significant effects.

Right to Withdraw Consent

Where processing is based on consent, you can withdraw that consent at any time without affecting the lawfulness of processing before withdrawal.

Exercising Your Rights

To exercise any of your rights under GDPR, contact us at [email protected] with your request. We will respond within one month of receiving your request, though this period may be extended by two months for complex requests.

You will not be charged a fee for exercising your rights unless your request is manifestly unfounded or excessive.

Data Protection Measures

We implement appropriate technical and organizational measures to ensure data security, including:

  • Encryption of data in transit and at rest
  • Access controls and authentication
  • Regular security assessments
  • Staff training on data protection
  • Data minimization principles
  • Regular review of data retention policies

Data Breach Notification

In the event of a data breach that poses a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach. If the breach poses a high risk, we will also notify affected individuals without undue delay.

International Data Transfers

If we transfer your personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as:

  • Standard contractual clauses approved by the European Commission
  • Adequacy decisions
  • Binding corporate rules

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including:

  • Service request data: 3 years after last service
  • Financial records: 7 years (tax compliance)
  • Marketing consent records: Until consent is withdrawn
  • Website analytics: 26 months

Third-Party Processing

When we engage third-party processors, we ensure they:

  • Process data only on our documented instructions
  • Maintain appropriate security measures
  • Comply with GDPR requirements
  • Are bound by data processing agreements

Children's Data

We do not knowingly process personal data of children under 16 years of age without parental consent.

Supervisory Authority

You have the right to lodge a complaint with a supervisory authority, particularly in the EU member state of your residence, workplace, or where an alleged infringement occurred.

For the United Kingdom, the supervisory authority is:
Information Commissioner's Office (ICO)
Website: www.ico.org.uk

Updates to This Statement

We may update this GDPR compliance statement to reflect changes in our practices or legal requirements. Updates will be posted on this page with a revised date.

Contact for Data Protection Queries

For questions about our GDPR compliance or data protection practices, contact us at:

Email: [email protected]
Address: 47 Queensway Boulevard, Hammersmith, London W2 4QP, United Kingdom