GDPR Compliance

Our GDPR Commitment

Freezer Organization & Use is committed to complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We take your privacy seriously and implement appropriate measures to protect your personal data.

Data Controller

Your Rights Under UK GDPR

You have the following rights regarding your personal data:

1. Right of Access
You can request a copy of the personal data we hold about you.

2. Right to Rectification
You can request correction of inaccurate or incomplete personal data.

3. Right to Erasure ("Right to be Forgotten")
You can request deletion of your personal data in certain circumstances.

4. Right to Restrict Processing
You can request that we limit how we use your personal data.

5. Right to Data Portability
You can request your data in a structured, commonly used format.

6. Right to Object
You can object to certain types of processing, including direct marketing.

7. Rights Related to Automated Decision-Making
We do not use automated decision-making or profiling.

How to Exercise Your Rights

To exercise any of these rights, contact us at:

• Email: contact@muscleliftweight.com
• Post: 5 Market Hill, Woodbridge, IP12 4LU, United Kingdom

We will respond to your request within one month. If your request is complex, we may extend this period by two additional months, and we will inform you of any extension.

Lawful Basis for Processing

We process personal data based on:

• Consent: When you explicitly agree to data processing
• Legitimate Interests: For website improvement and analytics
• Legal Obligation: To comply with applicable laws

Data Protection Principles

We adhere to UK GDPR principles ensuring data is:

• Processed lawfully, fairly, and transparently
• Collected for specified, explicit purposes
• Adequate, relevant, and limited to what's necessary
• Accurate and kept up to date
• Kept only as long as necessary
• Processed securely

Data Security

We implement appropriate technical and organizational measures to protect personal data against:

• Unauthorized access or disclosure
• Accidental loss or destruction
• Unlawful processing

Data Breach Notification

In the event of a data breach affecting your personal data, we will:

• Notify the ICO within 72 hours (where required)
• Inform you if there's a high risk to your rights and freedoms
• Take immediate steps to mitigate the breach

International Data Transfers

Your data is primarily processed within the United Kingdom. Any transfers outside the UK are protected by appropriate safeguards.

Complaints

If you're not satisfied with how we handle your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

Updates to This Statement

We may update this GDPR compliance statement to reflect changes in law or our practices. Please check this page periodically for updates.

Last updated: January 16, 2026