Webloids is committed to protecting the privacy and rights of individuals in accordance with the General Data Protection Regulation (GDPR) (EU) 2016/679. This page outlines our approach to GDPR compliance.
Data Protection
We implement appropriate technical and organizational measures to ensure the security of your personal data.
Transparency
We are transparent about how we collect, process, and store your data, and provide clear explanations of your rights.
Consent
We obtain clear, informed consent before processing personal data for purposes beyond what is strictly necessary.
Quick Response
We respond to all data subject requests within 30 days, as required by GDPR regulations.
1. Data Controller Information
Webloids Media Ltd. is the data controller for the personal data processed through this website. Our data protection contact details are:
- Company: Webloids Media Ltd.
- Address: 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom
- Data Protection Officer: dpo@webloids.com
- Registration Number: ICO ZA123456
2. Lawful Basis for Processing
Under GDPR, we must have a lawful basis for processing your personal data. We rely on the following legal bases depending on the processing activity:
3. Your Rights Under GDPR
As a data subject, you have the following rights under the GDPR. We are committed to facilitating the exercise of these rights:
Right of Access Art. 15
You can request a copy of the personal data we hold about you. We will provide this information free of charge within 30 days.
Right to Rectification Art. 16
You can request correction of any inaccurate or incomplete personal data we hold about you.
Right to Erasure Art. 17
You can request the deletion of your personal data in certain circumstances (also known as the "right to be forgotten").
Right to Restrict Processing Art. 18
You can request that we restrict the processing of your personal data in certain circumstances.
Right to Data Portability Art. 20
You can request to receive your personal data in a structured, commonly used, and machine-readable format.
Right to Object Art. 21
You can object to processing based on legitimate interests, including profiling and direct marketing.
Right to Withdraw Consent Art. 7(3)
Where processing is based on consent, you can withdraw that consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
4. International Data Transfers
Webloids may transfer your personal data to countries outside the European Economic Area (EEA). When we do so, we ensure that appropriate safeguards are in place, including:
- Adequacy decisions: Transfers to countries recognized by the European Commission as providing an adequate level of data protection
- Standard Contractual Clauses (SCCs): EU-approved contractual clauses that provide appropriate data protection safeguards
- Binding Corporate Rules: Internal rules adopted by multinational organizations for transfers within the corporate group
5. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy any legal, accounting, or reporting requirements. Our retention periods are:
- Newsletter subscriptions: Until you unsubscribe, plus 30 days for processing
- Contact form submissions: 2 years from the date of submission
- Comment data: For the lifetime of the article, unless deletion is requested
- Analytics data: 26 months (anonymized after this period)
- Cookie consent records: 1 year from the date consent was given
6. Data Breach Procedures
In the event of a personal data breach, Webloids will:
- Notify the relevant supervisory authority (Information Commissioner's Office — ICO) within 72 hours of becoming aware of the breach, where feasible
- Notify affected data subjects without undue delay if the breach is likely to result in a high risk to their rights and freedoms
- Document all personal data breaches, including the facts, effects, and remedial actions taken
7. Data Protection Impact Assessments
We conduct Data Protection Impact Assessments (DPIAs) when implementing new technologies or processing activities that are likely to result in a high risk to the rights and freedoms of individuals. This ensures that we identify and minimize data protection risks from the outset.
8. How to Submit a Data Request
To exercise any of your GDPR rights, please email our Data Protection Officer at dpo@webloids.com with the subject line "GDPR Data Request". Please include your full name and the email address associated with your account. We will verify your identity and respond within 30 calendar days. — Webloids Data Protection Team
9. Supervisory Authority
If you believe that our processing of your personal data violates the GDPR, you have the right to lodge a complaint with a supervisory authority. For the United Kingdom, the relevant supervisory authority is:
- Information Commissioner's Office (ICO)
- Website: ico.org.uk
- Phone: 0303 123 1113
- Address: Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF