Graham Bexley - 15 Jun, 2025

UK GDPR Compliance

This page explains how Adrich Story complies with the UK General Data Protection Regulation (UK GDPR), which governs the protection of personal data in the United Kingdom. While this website does not collect personal information through registration or databases, it may process limited data through cookies and analytics tools. This page outlines your rights and our obligations under UK GDPR.

Scope and Applicability

The UK GDPR applies to any processing of personal data of individuals in the UK, regardless of where the data controller is located. Adrich Story is a UK-based informational blog, and as such, we are considered a data controller under UK GDPR for any personal data we process, including through website analytics and cookies.

Your Rights Under UK GDPR

Under UK GDPR, you have the following rights:

• Right of access – You may request confirmation of whether we process your personal data and obtain a copy of it.
• Right to rectification – You may request correction of inaccurate or incomplete personal data.
• Right to erasure – You may request deletion of your personal data in certain circumstances.
• Right to restrict processing – You may request limitation of how your data is used.
• Right to data portability – You may request your data in a structured, commonly used format.
• Right to object – You may object to processing based on legitimate interests, including profiling or analytics.
• Right to withdraw consent – Where consent is the legal basis, you may withdraw it at any time.

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK’s supervisory authority for data protection.

How We Comply

Adrich Story does not store personal data in databases, collect email addresses, or require user registration. We use only essential and analytical cookies, which are strictly limited to:

• Google Analytics (anonymised IP addresses)
• Cookie consent management

We do not sell, share, or disclose personal data to third parties for commercial purposes. All data processing is minimised and conducted lawfully under the legal basis of legitimate interest.

Data We Process

Under UK GDPR, the personal data we may process includes:

• IP addresses (anonymised via Google Analytics)
• Cookie identifiers
• Browser type, device type, and pages visited (aggregated, not individually identifiable)

No names, emails, phone numbers, or other directly identifiable information are collected.

Legal Basis for Processing

We process data based on our legitimate interest in understanding website usage to improve content and user experience. This interest is balanced against your rights and freedoms. We do not rely on consent for analytics cookies where anonymised, but we do obtain explicit consent for non-essential cookies via our cookie banner.

How to Exercise Your Rights

To exercise any of your rights under UK GDPR, please contact us at:

[email protected]

Include your name, the right you wish to exercise, and any relevant details (e.g., IP address or cookie ID if known). We will respond without undue delay and within one month.

Response Timeframes

We are required by UK GDPR to respond to your requests within one month of receipt. In complex cases, we may extend this to two months and will notify you if this is necessary.

No Discrimination Policy

You will not be denied access to content, charged fees, or treated differently in any way for exercising your rights under UK GDPR.

Updates and Changes

This page will be reviewed annually and updated if there are changes in UK GDPR law or our data practices. Any material changes will be posted here with an updated effective date.

Contact Information

For any questions, requests, or complaints regarding your data under UK GDPR, please contact:

Graham Bexley
University of Leeds, Woodhouse Lane
Leeds, LS2 9JT
United Kingdom
[email protected]

You may also contact the Information Commissioner’s Office at ico.org.uk or by phone: 0303 123 1113.