GDPR Compliance
Our commitment to protecting your personal data under the General Data Protection Regulation (GDPR)
Last updated: January 2025Your Rights Under GDPR
Right of Access
You have the right to request copies of your personal data and information about how we process it.
Request Your DataRight to Rectification
You can request that we correct any personal data you think is inaccurate or incomplete.
Correct My DataRight to Erasure
You can request that we delete your personal data in certain circumstances.
Delete My DataRight to Portability
You can request that we transfer your data to another organization or provide it in a machine-readable format.
Export My DataWhat Data We Collect
| Data Type | Purpose | Lawful Basis | Retention Period |
|---|---|---|---|
| Personal Identifiers Name, email, phone number |
Account creation, communication, service delivery | Contract, Legitimate Interest | Duration of relationship + 2 years |
| Business Information Company details, addresses, services |
Business directory listings, search functionality | Contract, Legitimate Interest | Active listing period + 1 year |
| Usage Data IP address, browser info, page views |
Website analytics, security, performance | Legitimate Interest | 12 months |
| Marketing Preferences Communication preferences, interests |
Targeted communications, relevant offers | Consent | Until consent withdrawn |
| Financial Data Payment information, billing details |
Payment processing, invoicing | Contract | 7 years (legal requirement) |
How We Protect Your Data
Encryption
All data transmission uses SSL/TLS encryption
Access Controls
Strict authentication and role-based access
Secure Storage
Data stored in encrypted UK-based servers
Third Party Data Sharing
Limited Data Sharing
We only share your personal data with third parties in the following circumstances:
- Service Providers: Payment processors (Stripe), email services (SendGrid), hosting providers
- Legal Requirements: When required by law or to protect our legal rights
- Business Transfers: In the event of a merger or acquisition (with your consent)
- With Your Consent: When you explicitly agree to data sharing
All third-party processors are required to meet GDPR compliance standards and are bound by data processing agreements.
Contact Our Data Protection Officer
For any data protection questions or to exercise your rights under GDPR, please contact our Data Protection Officer:
Data Protection Officer
Email: dpo@beelocal.uk
Phone: 0330 123 4567
Post: Data Protection Officer, Bee Local Ltd, Alloa Business Centre, Whins Road, Alloa, Clackmannanshire, Scotland, FK10 3SA
Response time: We aim to respond to all data protection requests within 30 days as required by GDPR.
Quick Actions
Making a Complaint
Information Commissioner's Office (ICO)
If you're not satisfied with our response to your data protection concerns, you have the right to lodge a complaint with the ICO:
- Website: ico.org.uk
- Phone: 0303 123 1113
- Post: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
The ICO is the UK's independent authority set up to uphold information rights in the public interest.
Policy Updates
Version 2.0 - January 2025
Updated data retention periods and third-party processor information.
Previous version available upon requestStay Informed
We'll notify registered users of any material changes to this GDPR compliance statement via email or platform notification.
Questions About Data Protection?
Our Data Protection Officer is here to help with any GDPR-related questions or requests.
Contact Our DPO