Privacy Statement (EU)

Last Updated: December 2025

Privacy Statement (EU)

1. Introduction

This Privacy Statement applies specifically to visitors and clients located in the European Economic Area (EEA).

Inkbot Design respects your privacy. This document explains how we handle your personal data in compliance with the General Data Protection Regulation (EU) 2016/679 (“EU GDPR”).

In Plain English: If you are visiting us from the EU, strict laws protect your data. Even though we are not located in the EU, we follow these rules to ensure your information is safe with us.

2. Who is Responsible? (Controller)

Inkbot Design is the “Data Controller” for your personal information.

Our Contact Info:

• Email: he***@**********gn.com
• Address: 2 Lord Warden's Ct, Bangor BT19 1GJ, United Kingdom

3. Do We Need an “EU Representative”?

As we do not have a physical establishment in the EEA, we have not appointed a representative to act as our point of contact for EU data protection authorities and data subjects:

• EU Representative Name: “Not Applicable – Occasional Processing Exemption”

4. Our Lawful Basis for Processing

Under the EU GDPR, we only process your data if we have a valid legal reason:

1. Contractual Necessity: We require your data to fulfil the design services you have hired us for.
2. Legitimate Interest: We analyse website traffic to improve our content and security. We have balanced this against your individual rights.
3. Legal Obligation: We must keep invoice records for tax authorities (even outside the EU).
4. Consent: For specific actions (like our newsletter or non-essential cookies), we ask for your explicit “Yes.”

5. International Transfers (The “EU-US Data Privacy Framework”)

Your data may be processed outside the European Economic Area (EEA), specifically in the United Kingdom or the United States. We ensure your data remains protected through valid transfer mechanisms:

• To the UK: The EU Commission has recognised the UK as having “Adequacy,” meaning data can flow freely.
• To the USA: We utilise service providers (such as Google) that participate in the EU-US Data Privacy Framework (DPF) or employ Standard Contractual Clauses (SCCs) approved by the European Commission.

In Plain English: Your data might travel to the UK or the US. We only use big, trusted tools (like Google Analytics) that have signed the strict legal paperwork required by the EU to keep that data safe.

6. Your Rights (EU Citizens)

You have extensive rights under the GDPR. You can ask us to:

• Access: We will send you a copy of all the data we hold on you.
• Rectify: Fix any mistakes in your data.
• Erase: Delete your data (“Right to be Forgotten”), unless we are required to retain it for tax purposes.
• Restrict: Pause the processing of your data.
• Portability: Provide you with your data in a simple file, allowing you to move it elsewhere.

To exercise these rights, email us at he***@**********gn.com. We will respond within one month.

7. Complaints

If you believe we are mishandling your data, you have the right to lodge a complaint with the Data Protection Authority (DPA) in your specific country (e.g., the CNIL in France or the DPC in Ireland).

We would, however, appreciate the opportunity to resolve your issue first.