Advertising Content

GDPR Compliance

Your rights under data protection regulation

Last Updated: June 17, 2026

Overview

The General Data Protection Regulation is a comprehensive data protection law that applies throughout the European Union and the United Kingdom. This page explains how solar-breeze.site complies with GDPR requirements and outlines your rights as a data subject.

Data Controller Information

For the purposes of GDPR, the data controller is:

solar-breeze.site
42 Westfield Avenue
Bristol, BS6 7NP
United Kingdom
Email: [email protected]

Lawful Basis for Processing

We process personal data only when we have a lawful basis under Article 6 of GDPR. The specific lawful bases we rely on include:

Consent

When you submit forms on our website or accept cookies, you provide explicit consent for us to process your personal data for specified purposes. You have the right to withdraw this consent at any time.

Contract Performance

Processing your personal information is necessary to provide the installation services you request and to fulfill our contractual obligations.

Legitimate Interests

We may process data based on legitimate business interests, such as improving our services, preventing fraud, and maintaining website security. We conduct balancing tests to ensure our interests do not override your rights and freedoms.

Legal Obligations

Certain processing activities are necessary to comply with legal requirements, including tax regulations, business record retention, and health and safety standards.

Your Rights Under GDPR

Right to Access

You have the right to request confirmation of whether we process your personal data and to receive a copy of that data. We will provide this information in a commonly used electronic format within one month of your request.

Right to Rectification

If your personal information is inaccurate or incomplete, you have the right to request corrections. We will update our records within one month and notify any third parties who received the inaccurate data.

Right to Erasure

Under certain circumstances, you have the right to request deletion of your personal data, including when:

This right is not absolute and may be limited by legal retention requirements.

Right to Restriction of Processing

You may request that we limit how we use your personal data when:

Right to Data Portability

You have the right to receive personal data you provided to us in a structured, commonly used, machine-readable format. You may transmit this data to another controller without hindrance when processing is based on consent or contract and is carried out by automated means.

Right to Object

You may object to processing based on legitimate interests or for direct marketing purposes. We will cease processing unless we demonstrate compelling legitimate grounds that override your interests, rights, and freedoms.

Rights Related to Automated Decision Making

We do not use automated decision-making or profiling that produces legal effects or similarly significantly affects individuals. If this changes, you will be informed and provided appropriate safeguards.

Exercising Your Rights

To exercise any of your GDPR rights, send a written request to [email protected] including:

We will respond to valid requests within one month. In complex cases, we may extend this period by two months and will inform you of the extension.

Data Protection Principles

We adhere to GDPR's core data protection principles:

Lawfulness, Fairness, and Transparency

We process data lawfully, fairly, and transparently. This page and our Privacy Policy provide clear information about our data practices.

Purpose Limitation

We collect data for specified, explicit, and legitimate purposes and do not process it in ways incompatible with those purposes.

Data Minimization

We collect only data that is adequate, relevant, and limited to what is necessary for stated purposes.

Accuracy

We take reasonable steps to ensure personal data is accurate and kept up to date. Inaccurate data is erased or rectified without delay.

Storage Limitation

We retain personal data only as long as necessary for the purposes it was collected or as required by law.

Integrity and Confidentiality

We implement appropriate security measures to protect personal data against unauthorized or unlawful processing, accidental loss, destruction, or damage.

Accountability

We maintain documentation demonstrating compliance with GDPR principles and make this available to supervisory authorities upon request.

International Data Transfers

Your personal data is processed and stored within the United Kingdom and European Economic Area. If we transfer data outside these regions, we ensure appropriate safeguards are in place, such as standard contractual clauses approved by regulatory authorities.

Data Breach Notification

In the event of a data breach that poses risk to your rights and freedoms, we will notify you without undue delay and within 72 hours of becoming aware of the breach. The notification will describe the nature of the breach, likely consequences, and measures taken to address it.

Complaints

If you believe we have not complied with GDPR requirements, you have the right to lodge a complaint with a supervisory authority. In the United Kingdom, the relevant authority is:

Information Commissioner's Office (ICO)
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF
Website: ico.org.uk

Contact Us

For questions about GDPR compliance or to exercise your rights, contact us at [email protected] or write to our postal address listed above.