Last updated: April 22, 2026
Contract Door Packs is committed to protecting your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This page outlines how we comply with these regulations and what rights you have regarding your personal data.
Contract Door Packs is the data controller responsible for your personal data. Our contact details are:
Email: [email protected]
Address: Unit 14 Parkway Business Centre, Deeside Industrial Estate, Chester, CH5 2NS, United Kingdom
We process your personal data under the following lawful bases:
You have the following rights regarding your personal data:
You have the right to request a copy of the personal data we hold about you. This is commonly known as a "subject access request."
You have the right to request that we correct any inaccurate or incomplete personal data we hold about you.
Also known as the "right to be forgotten," you can request that we delete your personal data in certain circumstances.
You have the right to request that we restrict the processing of your personal data in certain circumstances.
You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.
You have the right to object to our processing of your personal data based on legitimate interests or for direct marketing purposes.
We do not use automated decision-making or profiling that produces legal effects concerning you.
To exercise any of your rights, please contact us at [email protected]. We will respond to your request within one month, though this may be extended by two months for complex requests.
We may need to verify your identity before processing your request. There is no fee for exercising your rights unless your request is clearly unfounded or excessive.
We implement appropriate technical and organizational measures to protect your personal data against unauthorized or unlawful processing and against accidental loss, destruction, or damage. These measures include:
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including any legal, accounting, or reporting requirements. Retention periods vary depending on the type of data and the purpose for which it was collected.
We do not routinely transfer personal data outside the United Kingdom. If we do need to transfer data internationally, we will ensure appropriate safeguards are in place to protect your data in accordance with UK GDPR requirements.
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify you without undue delay. We will also notify the Information Commissioner's Office (ICO) within 72 hours of becoming aware of the breach, where required.
We may use third-party service providers to process your personal data on our behalf. When we do, we ensure that:
Our services are not directed at children under the age of 16. We do not knowingly collect personal data from children. If we become aware that we have collected personal data from a child without parental consent, we will take steps to delete that information.
If you believe we have not handled your personal data in accordance with UK GDPR, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):
Information Commissioner's Office
Wycliffe House, Water Lane
Wilmslow, Cheshire, SK9 5AF
Telephone: 0303 123 1113
Website: www.ico.org.uk
We may update this GDPR compliance statement from time to time to reflect changes in our practices or legal requirements. We will notify you of any significant changes by posting the updated statement on our website.
If you have any questions about our GDPR compliance or wish to exercise your rights, please contact us at [email protected].