This content is advertising in nature

GDPR Compliance

Last updated: June 2026

Our Commitment to Data Protection

luminous-cognition is committed to ensuring compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We take our responsibilities regarding the protection of personal data seriously and have implemented appropriate measures to safeguard the personal information of our website visitors and clients.

Data Controller

For the purposes of data protection legislation, luminous-cognition is the data controller. This means we determine the purposes and means of processing personal data collected through our website and services.

Contact details:

luminous-cognition
47 Greenfield Lane
Bristol, BS1 4QR
United Kingdom

Email: [email protected]

Your Rights Under GDPR

The GDPR provides you with specific rights regarding your personal data. We are committed to upholding these rights:

Right to Be Informed

You have the right to know how your personal data is being collected and used. Our Privacy Policy provides detailed information about our data processing activities.

Right of Access

You have the right to request a copy of the personal data we hold about you. We will respond to your request within one month of receipt.

Right to Rectification

If the personal data we hold about you is inaccurate or incomplete, you have the right to have it corrected. We will make necessary updates within one month of your request.

Right to Erasure

In certain circumstances, you have the right to request that we delete your personal data. This right is not absolute and applies only in specific situations, such as when the data is no longer necessary for its original purpose.

Right to Restrict Processing

You have the right to request that we limit the processing of your personal data in certain circumstances, such as while we verify the accuracy of your data following a dispute.

Right to Data Portability

Where we process your data based on consent or contract and processing is automated, you have the right to receive your personal data in a structured, commonly used, machine-readable format.

Right to Object

You have the right to object to the processing of your personal data for direct marketing purposes. You may also object to processing based on legitimate interests, and we will cease processing unless we can demonstrate compelling legitimate grounds.

Rights Related to Automated Decision Making

You have the right not to be subject to decisions based solely on automated processing that produce legal effects or significantly affect you. We do not currently engage in automated decision-making.

How to Exercise Your Rights

To exercise any of your rights under GDPR, please contact us using the details provided above. We may need to verify your identity before processing your request. We will respond to all legitimate requests within one month. In some cases, where requests are complex or numerous, we may extend this period by up to two months, in which case we will inform you.

Data Processing Activities

We process personal data for the following purposes:

  • Responding to enquiries submitted through our website
  • Providing garden care services to our clients
  • Managing client relationships and communications
  • Improving our website and services
  • Complying with legal and regulatory obligations

Legal Basis for Processing

We rely on the following legal bases for processing personal data:

  • Consent: Where you have given explicit consent
  • Contract: Where processing is necessary for the performance of a contract
  • Legitimate Interests: Where we have a legitimate business interest that does not override your rights
  • Legal Obligation: Where processing is necessary to comply with law

Data Security

We have implemented appropriate technical and organisational measures to ensure a level of security appropriate to the risk, including:

  • Encryption of data where appropriate
  • Regular assessment and evaluation of security measures
  • Staff training on data protection
  • Access controls to limit who can access personal data

Data Breach Procedures

In the event of a personal data breach, we have procedures in place to detect, report, and investigate breaches. Where required, we will notify the Information Commissioner's Office within 72 hours of becoming aware of a breach and will inform affected individuals without undue delay where the breach is likely to result in a high risk to their rights and freedoms.

Complaints

If you are not satisfied with how we handle your personal data or your data protection rights, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues.

Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF

Website: ico.org.uk