UK Privacy Policy

Data Protection Compliance Statement

Aprillhamilton.com ("we", "us", "our") is committed to protecting your personal data in accordance with UK data protection laws, including the Data Protection Act 2018 and the UK General Data Protection Regulation (UK GDPR).

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform. By accessing or using our services, you consent to the data practices described in this policy.

1. Data Controller Information

Under UK GDPR, we are the data controller for the personal data we process. Our registered office is in the United Kingdom. We have appointed a Data Protection Officer (DPO) who can be contacted for any data protection enquiries.

2. Legal Basis for Processing (UK GDPR Article 6)

We process your personal data on the following legal bases:

• Consent: Where you have given clear consent
• Contract: Necessary to perform our agreement with you
• Legal Obligation: Necessary to comply with UK law
• Legitimate Interests: For our legitimate business interests

3. Types of Personal Data We Collect

We may collect and process the following categories of personal data:

• Identity Data: Age verification information (as required by Digital Economy Act 2017)
• Contact Data: Email address and contact information
• Technical Data: IP address, browser type, device information
• Usage Data: How you use our website and services
• Marketing Data: Your preferences for receiving marketing
• Financial Data: Limited payment information for premium services

4. How We Use Your Personal Data

We use your information for the following purposes:

• To verify your age in compliance with UK age verification regulations
• To provide and maintain our services
• To communicate with you about your account
• To improve our website and user experience
• To prevent fraud and ensure security
• To comply with legal obligations under UK law
• For legitimate business interests

5. Data Sharing and Transfers

We may share your personal data with:

• Service Providers: Trusted third parties who assist our operations
• Age Verification Partners: BBFC-approved age verification services
• Legal Authorities: When required by UK law or to protect rights
• Business Transfers: In connection with mergers or acquisitions

International Transfers: Where we transfer data outside the UK, we ensure adequate safeguards are in place as required by UK GDPR Chapter V.

6. Data Security Measures

We implement appropriate technical and organisational measures to protect your personal data, including:

• Encryption of sensitive data
• Regular security assessments
• Access controls and authentication
• Staff data protection training
• Incident response procedures

7. Your Data Protection Rights (UK GDPR)

Under UK data protection law, you have the following rights:

• Right of Access: To request copies of your personal data
• Right to Rectification: To request correction of inaccurate data
• Right to Erasure: To request deletion of your data ("right to be forgotten")
• Right to Restrict Processing: To request limitation of processing
• Right to Data Portability: To receive your data in a structured format
• Right to Object: To object to certain types of processing
• Rights Related to Automated Decision-Making: Including profiling

To exercise your rights, please contact our Data Protection Officer. We will respond within one calendar month as required by UK law.

8. Cookies and Similar Technologies

We use cookies in accordance with the Privacy and Electronic Communications Regulations (PECR). You can manage your cookie preferences through your browser settings.

9. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements under UK law.

10. Children's Privacy

Our services are not directed to individuals under 18. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately.

11. Changes to This Privacy Policy

We may update this policy periodically. The updated version will be indicated by an updated "Last Updated" date. We encourage you to review this policy regularly.

12. Contact Information

For data protection enquiries or to exercise your rights, contact our Data Protection Officer:

• By Post: [UK Registered Office Address]
• By Email: [DPO email address]

You also have the right to lodge a complaint with the UK supervisory authority, the Information Commissioner's Office (ICO), if you believe we have not complied with data protection laws.

Last Updated: 7th September 2025