Your data protection rights under UK GDPR.
Last updated: January 2024
Lambda Reed is committed to complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This page outlines how we ensure your data protection rights are respected.
Lambda Reed is the data controller for personal information collected through our website and services. This means we determine why and how your personal data is processed.
Contact Details:
Lambda Reed
47 Briggate, Leeds, LS1 6HD
Email: [email protected]
We process your personal data based on the following lawful grounds:
You have the right to request a copy of the personal information we hold about you. This is known as a Subject Access Request (SAR). We will respond within one month of receiving your request.
If you believe the information we hold about you is inaccurate or incomplete, you have the right to request correction. We will make corrections within one month or explain why we cannot.
You have the right to request deletion of your personal data where:
Note: We may need to retain certain information for legal or accounting purposes.
You can request that we limit how we use your data while concerns are being investigated.
You have the right to receive your personal data in a structured, commonly used, machine-readable format and to transfer it to another organisation.
You have the right to object to processing based on legitimate interests or for direct marketing purposes. If you object to marketing, we will stop immediately.
You have the right not to be subject to decisions based solely on automated processing that significantly affect you. We do not currently use automated decision-making processes.
To exercise any of your rights, please contact us:
We may need to verify your identity before processing your request. Requests are handled free of charge, although we reserve the right to charge a reasonable fee for excessive or repetitive requests.
Where our processing is likely to result in a high risk to your rights and freedoms, we conduct Data Protection Impact Assessments (DPIAs) to identify and minimise risks.
When you book travel to destinations outside the UK, we may need to transfer your personal data to travel suppliers in those countries. We ensure appropriate safeguards are in place, including:
We have procedures in place to detect, report, and investigate personal data breaches. Where a breach is likely to result in a high risk to your rights and freedoms, we will notify you without undue delay.
All our staff receive regular training on data protection principles and their responsibilities under UK GDPR. Access to personal data is restricted to those who need it to perform their duties.
We maintain records of our processing activities as required by Article 30 of UK GDPR. These records document the types of data we process, purposes, retention periods, and security measures.
If you are unhappy with how we have handled your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):
Information Commissioner's Office
Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF
Website: ico.org.uk
Helpline: 0303 123 1113
We would appreciate the opportunity to address your concerns before you approach the ICO. Please contact us first at [email protected].
We review our GDPR compliance procedures regularly and may update this page. Significant changes will be communicated via email where appropriate.