Last updated: 14 July 2026
blossom-tale is committed to protecting personal data in accordance with the UK General Data Protection Regulation and Data Protection Act 2018.
We process personal data under the following lawful bases:
blossom-tale is the data controller responsible for personal information collected through our website and services. For data protection enquiries, contact [email protected]
You have the following rights regarding your personal data:
You can request confirmation of whether we process your personal data and obtain a copy of that data.
You can request correction of inaccurate or incomplete personal information.
You can request deletion of your personal data when it is no longer necessary for the purposes collected or when you withdraw consent.
You can request limitation of how we use your personal data in specific circumstances.
You can receive personal data you provided to us in a structured, commonly used format.
You can object to processing of your personal data based on legitimate interests or for direct marketing purposes.
We retain personal information only for as long as necessary to fulfil the purposes outlined in our privacy policy or as required by law. Client project records are typically retained for seven years for business and legal compliance purposes.
Personal data is processed and stored within the United Kingdom. We do not transfer data outside the UK unless necessary for service delivery, in which case appropriate safeguards will be implemented.
We do not use automated decision-making or profiling that produces legal or similarly significant effects.
To exercise any of your GDPR rights, contact us at [email protected] with details of your request. We will respond within one month of receiving your request.
If you believe we have not handled your personal data appropriately, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's supervisory authority for data protection.