Privacy Policy
Privacy Policy for Processing Personal Data
This Privacy Policy sets out the rules for collecting, processing, and using personal data obtained from you by the website https://sollux-lamps.co.uk/, operated by SOLLUX LIGHTING LTD, 85 Great Portland Street, First Floor, W1W 7LT, London, VAT: GB371138117 (hereinafter referred to as the "Administrator" or "ADO"). Our activities are subject to legal regulations in the field of data protection. Our Privacy Policy complies with UK law, specifically The Data Protection Privacy and Electronic Communications (Amendments etc) (EU Exit) Regulations 2019 (“UK GDPR”).
More information about the processing of personal data can be found at: ICO Guide to GDPR .
Information about the Data Controller and Joint Controllers
SOLLUX LIGHTING LTD, 85 Great Portland Street, First Floor, W1W 7LT, London, VAT: GB371138117, is the Data Controller of your personal data under UK GDPR. The Administrator operates the website https://sollux-lamps.co.uk/ (the “Service”).
For all matters related to the principles of personal data processing by the website https://sollux-lamps.co.uk/, you can contact us at: rodo@sollux-lighting.co.uk or send correspondence to SOLLUX LIGHTING LTD, 85 Great Portland Street, First Floor, W1W 7LT, London, VAT: GB371138117.
Personal Data
According to this policy, personal data includes any information about a natural person that can be identified by one or more specific factors, including the IP address of the device, location data, internet identifiers, and information collected through cookies or similar technology. ADO also collects certain technical information and usage data, including the type of device, browser, operating system, device identifier, IP address, and interactions with the content provided by ADO.
Processing Purposes
| Purpose of Processing | Legal Basis for Processing | Recipients | Retention Period |
|---|---|---|---|
| Establishing business relationships and conducting offers | Processing is necessary to acquire new customers and markets for services and goods offered by the Administrator | Marketing and PR service providers, advertising agencies, email service providers, IT hosting, administrative, legal, or advisory services | Until consent is withdrawn or an objection is raised |
| Verification of potential customers | Processing is necessary for the legitimate interests pursued by the Administrator | Accounting offices, advisory service providers (including law firms), customer verification service providers, email hosting, IT hosting, administrative or advisory services | 1 year from obtaining data or until a valid objection/request for deletion |
| Execution of contracts | Processing is necessary for the execution of contracts or actions taken before entering into contracts | Service providers engaged to perform services on behalf of the Administrator – couriers, transport and shipping companies, payment service providers, invoice issuance services, accounting offices, IT hosting, administrative services | Until the contract is terminated or performed |
Compliance with legal obligations:
|
Processing is necessary for compliance with legal obligations | Accounting offices, advisory service providers (including law firms), auditors, IT hosting, administrative services | 5 years from the beginning of the financial year following the year of operation for a), b), c), and d) until the obligations are fulfilled |
| Establishing, pursuing, or defending claims related to the business activities of the Administrator | Processing is necessary for the legitimate interests pursued by the Administrator | Accounting offices, advisory service providers (including law firms), auditors, IT hosting, administrative services, transport service providers | For the period required by law, i.e., until the expiration of claims |
Rights of Data Subjects
In connection with the processing of personal data by ADO, you have several rights. The Administrator ensures the respect of all the rights of the Customer resulting from the GDPR and other legal regulations:
- Right of access to personal data – You can request information about what personal data is being processed by the Administrator, including receiving a copy of your personal data.
- Right to rectify personal data – You can request to correct data that is incorrect or supplement data that is incomplete.
- Right to erasure (the "right to be forgotten") – You can request the deletion of all your data in certain cases, e.g., if you withdraw your consent for processing (if consent was the sole basis for processing) or if the data was processed unlawfully. Important! You will not be able to use this right if the processing results from legal obligations or is necessary for the establishment, exercise, or defense of claims.
- Right to object – You can request to stop processing your data for reasons related to your particular situation if your data is processed for legitimate interests. In such cases, the Administrator will stop processing your personal data unless there are legally compelling reasons that override your interests, rights, and freedoms, or the data is necessary for the establishment, exercise, or defense of claims.
- Right to restrict data processing – You can request to "block" data (i.e., restrict all processing operations to storage) in certain situations, e.g., while the data is being corrected or if it is no longer needed but must be retained for the protection of rights.
- Right to data portability – You can request to receive data that you provided in a structured, commonly used, machine-readable format. You can request to receive the data or have it transferred directly to another controller, provided this is technically possible. This does not apply to cases where the basis for processing is the legitimate interests of the Administrator.
Security of Data
ADO exercises due diligence in selecting and applying appropriate technical and organizational measures to ensure the protection of processed personal data. Full access to databases is granted only to duly authorized persons with appropriate knowledge of data protection.
ADO takes all possible steps to secure the data and protect it from third-party activities. All necessary security measures for servers, connections, and the website are used to protect the data. All connections related to the performance of electronic payments will be made via secure, encrypted connections.
However, the actions taken may not be sufficient if the Customer does not follow security principles. In particular, we suggest keeping the login and password to the Service confidential and not sharing them with third parties. Remember that the Service will not request them unless during login. To prevent unauthorized persons from using your account, we recommend logging out after using the Service.
ADO may also share and commission the processing of Customer's personal data to third parties located in countries other than the Customer's country. ADO is not responsible for and does not control third parties that the Customer has authorized to access personal data.
Changes to the Privacy Policy
The rights granted under this Privacy Policy will not be limited without your explicit consent. ADO will always indicate the date of publication of the latest changes and provide access to archived versions of the Privacy Policy in the Service.
Contact Regarding Data Protection
To exercise your rights or if you have any questions regarding the processing of personal data by SOLLUX LIGHTING LTD, 85 Great Portland Street, First Floor, W1W 7LT, London, VAT: GB371138117, please contact us via email: rodo@sollux-lighting.co.uk or write to the Administrator at the address above.