GDPR Compliance Information

Our Commitment to Data Protection

The General Data Protection Regulation, retained in UK law following Brexit, establishes important protections for how organisations handle personal information. At Futuric Pulse, we've structured our practices around these principles from the beginning.

This page explains your rights under data protection law and how we fulfil our obligations. For broader information about our data practices, see our Privacy Policy.

Legal Basis for Processing

We process personal data only when we have a valid legal basis:

Contractual Necessity

When you purchase books, subscribe to our services, or register for events, we need certain information to deliver what you've requested. Processing this data is essential to fulfilling our agreement with you.

Legitimate Interests

We have legitimate business reasons for some data processing activities, provided these don't override your rights. This includes maintaining customer records to support ongoing relationships, preventing fraud, and understanding how our services are used to make improvements.

Consent

For marketing communications and certain cookies, we rely on your explicit consent. You can withdraw this consent at any time without affecting other services.

Legal Obligations

Some processing is required by law, such as maintaining financial records for tax purposes.

Your Data Protection Rights Explained

Right to Be Informed

You're entitled to clear information about how we collect and use your data. This website, our privacy policy, and our direct communications aim to provide that transparency. If anything is unclear, ask us.

Right of Access

You can request a copy of all personal information we hold about you. This is often called a Subject Access Request. We'll provide this information within one month, free of charge in most circumstances. The copy will be in a readable format that explains what each piece of data represents and why we hold it.

Right to Rectification

If information we hold is wrong or incomplete, you can ask us to correct it. We'll update our records promptly and inform any third parties we've shared the information with, where appropriate.

Right to Erasure

Sometimes called the "right to be forgotten," this allows you to request deletion of your personal data. We'll comply unless we have legitimate grounds to retain information—for instance, financial records we're legally required to keep for seven years.

When we delete your data, we also instruct relevant service providers to do the same. However, we cannot control information you've shared publicly or that others have copied before deletion.

Right to Restrict Processing

You can ask us to limit how we use your information while we resolve a concern you've raised. For example, if you contest data accuracy, we'll restrict processing until we verify the details. During restriction, we store the data but don't actively use it except in specific circumstances.

Right to Data Portability

For information you've provided to us directly—such as reading preferences or subscription details—you can request a copy in a structured, commonly used format. This allows you to transfer your data to another service provider if you choose.

Right to Object

You can object to processing based on legitimate interests or for marketing purposes. When you object to marketing, we'll stop immediately. For other objections, we'll cease processing unless we can demonstrate compelling legitimate grounds that override your interests.

Rights Related to Automated Decision-Making

You have protections against decisions made solely by automated systems that significantly affect you. We don't use automated decision-making or profiling in ways that produce legal or similarly significant effects. Our book recommendations always involve human judgment, not just algorithmic processing.

How to Exercise Your Rights

To make a request or raise concerns about data protection:

• Email [email protected] with "Data Protection Request" in the subject line
• Write to us at Futuric Pulse, 42 Chamberlayne Road, Kensal Rise, London NW10 3JH
• Visit our shop and speak with any team member who can direct your request appropriately

We may need to verify your identity before responding to requests, particularly for access requests. This protects your information from disclosure to unauthorised individuals.

Most requests will be completed within one month. Complex requests might take up to three months, but we'll inform you within the first month if additional time is needed and explain why.

Data Protection Principles

UK GDPR establishes principles that govern how we handle personal information:

Lawfulness, Fairness, and Transparency

We process data legally, fairly, and in ways that you'd reasonably expect. We're transparent about what we do with your information.

Purpose Limitation

We collect data for specific, explicit purposes and don't use it for unrelated activities without informing you.

Data Minimisation

We collect only what's necessary. For example, book recommendations require knowing your reading preferences, but we don't need to know unrelated personal details.

Accuracy

We take reasonable steps to ensure information is accurate and up to date. If you notice errors, let us know so we can correct them.

Storage Limitation

We keep data only as long as needed for the purposes we collected it, or as required by law. Our retention schedules balance service quality with data minimisation.

Integrity and Confidentiality

We protect your data with appropriate security measures against unauthorised access, accidental loss, or damage.

Accountability

We're responsible for demonstrating compliance with these principles. We maintain documentation of our processing activities and conduct regular reviews of our practices.

Special Category Data

GDPR provides enhanced protection for sensitive information such as health data, religious beliefs, or political opinions. We generally don't collect this type of data.

If reading recommendations touch on sensitive topics—for instance, if you mention an interest in books about particular health conditions—we treat this information with additional care and process it only with your explicit consent or because you've clearly made it public.

Data Transfers Outside the UK

We primarily operate within the United Kingdom. When we use service providers that process data internationally, we ensure appropriate safeguards through:

• Adequacy decisions recognising that the destination provides sufficient data protection
• Standard contractual clauses approved by UK authorities
• Other approved transfer mechanisms that ensure your rights remain protected

You can request more information about safeguards for specific transfers.

Data Breach Procedures

Despite our security measures, breaches can occur. If we experience a breach likely to result in risk to your rights and freedoms, we'll notify you within 72 hours of becoming aware of it.

We'll explain what happened, what data was affected, what we're doing to address it, and what steps you might take to protect yourself. For breaches meeting regulatory thresholds, we also notify the Information Commissioner's Office.

Children's Data

We offer services for young readers but handle their data through parents or guardians. We don't knowingly collect information directly from children under thirteen without parental involvement.

Parents can request access to, correction of, or deletion of data related to their children by contacting us with appropriate verification of their parental relationship.

Third-Party Links

Our website may link to other sites—for example, publisher websites for additional information about books. We're not responsible for the privacy practices of external sites. When you leave our website, we encourage you to review the privacy policy of any site you visit.

Updates to Our Practices

As our business evolves or regulations change, we may update our data protection practices. Significant changes will be communicated clearly through our website and directly to registered customers.

Continued use of our services after changes indicates acceptance of revised practices, but for processing requiring consent, we'll seek fresh consent when necessary.

Supervisory Authority

The Information Commissioner's Office supervises data protection in the UK. If you're unsatisfied with how we've responded to a data protection concern, you can lodge a complaint with the ICO:

Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF

Website: ico.org.uk
Helpline: 0303 123 1113

However, we'd appreciate the opportunity to address your concerns directly first. Most issues can be resolved through conversation.

Questions About GDPR Compliance

Data protection law can be complex. If you have questions about your rights, our obligations, or how GDPR applies to your specific situation, contact us at [email protected].

We're committed to not just legal compliance but to the spirit of data protection—treating your personal information with the respect and care it deserves.