Our commitment to protecting your data under the General Data Protection Regulation
Last updated: June 2026
fern-walker is committed to ensuring the security and protection of the personal information that we process and to providing a compliant and consistent approach to data protection. We have always maintained a robust and effective data protection programme which complies with existing law and abides by the data protection principles.
fern-walker acts as the Data Controller for personal information collected through this website and in the course of providing our services. As Data Controller, we determine the purposes and means of processing personal data.
We process personal data under the following lawful bases:
Under the General Data Protection Regulation, you have the following rights:
You have the right to request a copy of the personal data we hold about you and to check that we are lawfully processing it.
You have the right to request that we correct any incomplete or inaccurate personal data we hold about you.
You have the right to request that we delete or remove personal data where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your personal data where you have exercised your right to object to processing.
You have the right to request that we suspend the processing of your personal data in certain circumstances.
You have the right to request the transfer of your personal data to another party in a structured, commonly used, machine-readable format.
You have the right to object to processing of your personal data where we are relying on a legitimate interest and there is something about your particular situation which makes you want to object to processing on this ground.
You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.
To exercise any of these rights, please contact us using the details below. We will respond to your request within one month. In certain circumstances, we may extend this period by a further two months where requests are complex or numerous.
We will not charge a fee for exercising your rights unless your request is clearly unfounded, repetitive, or excessive. In such cases, we may charge a reasonable fee or refuse to comply with your request.
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way, altered, or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors, and other third parties who have a business need to know.
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the Information Commissioner's Office within 72 hours of becoming aware of the breach. Where a breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly.
We do not routinely transfer personal data outside the United Kingdom or European Economic Area. Should any transfer be necessary, we will ensure appropriate safeguards are in place to protect your data.
If you are unhappy with how we have handled your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):
Information Commissioner's Office
Wycliffe House, Water Lane
Wilmslow, Cheshire, SK9 5AF
Website: ico.org.uk
For any questions about GDPR or to exercise your rights, please contact:
fern-walker
47 Riverside Business Centre
Leeds, LS12 4TQ
United Kingdom
[email protected]