GDPR Information

Data Controller

ravine-cipher acts as the data controller for personal information collected through this website. As data controller, we determine the purposes and means of processing personal data and are responsible for compliance with data protection legislation.

Our GDPR Commitments

We are committed to processing personal data in accordance with the UK GDPR principles:

• Lawfulness, fairness, and transparency: We process data lawfully with clear communication about our practices
• Purpose limitation: We collect data only for specified, explicit, and legitimate purposes
• Data minimisation: We collect only data that is adequate, relevant, and limited to what is necessary
• Accuracy: We take reasonable steps to ensure personal data is accurate and kept up to date
• Storage limitation: We retain personal data only for as long as necessary
• Integrity and confidentiality: We process data securely with appropriate technical and organisational measures
• Accountability: We maintain records and can demonstrate compliance with these principles

Your Data Protection Rights

Under the UK GDPR, you have the following rights:

Right to be Informed

You have the right to be informed about how we collect and use your personal data. This information is provided in our Privacy Policy.

Right of Access

You have the right to request a copy of the personal data we hold about you. This is commonly known as a Subject Access Request (SAR). We will respond to valid requests within one month.

Right to Rectification

You have the right to request correction of inaccurate personal data or completion of incomplete data. We will respond within one month of your request.

Right to Erasure

In certain circumstances, you have the right to request deletion of your personal data. This right is not absolute and applies only where specific conditions are met.

Right to Restrict Processing

You have the right to request restriction of processing in certain circumstances, such as when you contest accuracy or object to processing.

Right to Data Portability

Where we process data based on consent or contract, you have the right to receive your data in a structured, commonly used, machine-readable format.

Right to Object

You have the right to object to processing based on legitimate interests or for direct marketing purposes. We will stop processing unless we can demonstrate compelling legitimate grounds.

Rights Related to Automated Decision Making

We do not currently use automated decision-making or profiling that produces legal or similarly significant effects.

Exercising Your Rights

To exercise any of these rights, please contact us at [email protected]. We may need to verify your identity before processing your request. There is no charge for most requests, though we may charge a reasonable fee for manifestly unfounded or excessive requests.

Complaints

If you are dissatisfied with how we handle your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK supervisory authority for data protection.

ICO website: ico.org.uk

International Transfers

We primarily process and store data within the United Kingdom. Where data transfers outside the UK are necessary, we ensure appropriate safeguards are in place in accordance with UK GDPR requirements.

Updates

We review our data protection practices regularly and may update this information accordingly. Significant changes will be communicated through our website.

Last updated: June 2026