GDPR Compliance

Last Updated: May 29, 2026

Our Commitment to GDPR

bison-space is committed to complying with the General Data Protection Regulation (GDPR) and protecting the privacy rights of individuals in the European Economic Area and the United Kingdom.

Legal Basis for Processing

We process personal data under the following legal bases:

• Consent: When you provide explicit consent for specific processing activities
• Contract: When processing is necessary to fulfill our service obligations
• Legitimate Interests: When we have legitimate business interests that do not override your rights
• Legal Obligation: When required by law

Your GDPR Rights

As a data subject, you have the following rights under GDPR:

Right to Access

You have the right to request access to your personal data and receive information about how we process it.

Right to Rectification

You can request correction of inaccurate or incomplete personal data.

Right to Erasure

You may request deletion of your personal data in certain circumstances, including when the data is no longer necessary for its original purpose.

Right to Restrict Processing

You can request that we limit how we use your personal data in specific situations.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used format and transmit it to another controller.

Right to Object

You may object to processing of your personal data based on legitimate interests or for direct marketing purposes.

Rights Related to Automated Decision-Making

You have the right not to be subject to decisions based solely on automated processing that produce legal or similarly significant effects.

How to Exercise Your Rights

To exercise any of your GDPR rights, please contact us at:

Email: [email protected]
Address: 45 Park Square East, Leeds LS1 2NL, United Kingdom

We will respond to your request within one month of receipt. In complex cases, we may extend this period by an additional two months and will inform you of the extension.

Data Protection Officer

For matters specifically related to data protection, you may contact our Data Protection Officer at the email address provided above.

Right to Lodge a Complaint

If you believe we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) or your local supervisory authority.

International Data Transfers

If we transfer your personal data outside the UK or EEA, we ensure appropriate safeguards are in place to protect your information in accordance with GDPR requirements.

Data Breach Notification

In the event of a data breach that poses a risk to your rights and freedoms, we will notify you and the relevant supervisory authority without undue delay and within 72 hours of becoming aware of the breach.

Updates to This Policy

We may update our GDPR compliance practices periodically. Any changes will be reflected on this page with an updated revision date.