GDPR Compliance

Last updated: 1 May 2026

Our Commitment to Data Protection

trance-byte is fully committed to complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We take the protection of your personal data seriously and have implemented comprehensive measures to ensure your information is handled lawfully, fairly, and transparently.

Data Controller Information

trance-byte acts as the Data Controller for personal information collected through our website and services.

Contact Details:
trance-byte
42 Clerkenwell Road
London EC1M 5PS
United Kingdom
Email: [email protected]

Your Rights Under GDPR

The UK GDPR provides you with the following rights regarding your personal data:

Right to Access

You have the right to request a copy of the personal data we hold about you. We will provide this information free of charge within one month of receiving your request.

Right to Rectification

If any personal data we hold about you is inaccurate or incomplete, you have the right to request correction. We will address such requests promptly.

Right to Erasure

You have the right to request deletion of your personal data in certain circumstances, including when the data is no longer necessary for the purpose it was collected, or when you withdraw consent.

Right to Restrict Processing

You may request that we limit how we use your personal data while we address a complaint or verify the accuracy of data you have challenged.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, machine-readable format and to transmit that data to another controller.

Right to Object

You have the right to object to processing of your personal data based on legitimate interests, including direct marketing.

Rights Related to Automated Decision-Making

You have the right not to be subject to a decision based solely on automated processing if it produces legal effects or significantly affects you. We do not currently use automated decision-making processes.

Lawful Basis for Processing

We process personal data under the following lawful bases:

Data Processing for Children

As our services involve children's education, we take additional care with data relating to minors. All personal data about children is collected through and with the consent of their parent or guardian. We process children's data only as necessary to deliver our educational programmes.

Data Security Measures

We have implemented appropriate technical and organisational measures to ensure a level of security appropriate to the risk, including:

International Data Transfers

We primarily store and process data within the United Kingdom. If we transfer data outside the UK, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the Information Commissioner's Office.

Data Breach Procedures

In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify the Information Commissioner's Office within 72 hours and inform affected individuals without undue delay.

Exercising Your Rights

To exercise any of your GDPR rights, please contact us at:

Email: [email protected]
Address: 42 Clerkenwell Road, London EC1M 5PS, United Kingdom

We will respond to your request within one month. If your request is complex, we may extend this period by an additional two months, but we will inform you of any extension within the first month.

Complaints

If you believe your data protection rights have been violated, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

Information Commissioner's Office
Wycliffe House, Water Lane
Wilmslow, Cheshire SK9 5AF
Website: ico.org.uk

Updates to This Information

We may update this GDPR compliance information periodically to reflect changes in our practices or legal requirements. The "Last updated" date indicates the most recent revision.