GDPR Compliance

Last updated: June 2026

Our Commitment to GDPR

wild-labs is committed to ensuring the security and protection of the personal information that we process. We have implemented robust policies, procedures, and technologies to maintain the security of all personal data from the point of collection through to the point of destruction.

Data Controller

For the purposes of the General Data Protection Regulation (GDPR), wild-labs is the data controller for personal information collected through our website and in connection with our energy audit services.

wild-labs
47 Greenfield Lane
Manchester, M4 7EQ
United Kingdom
Email: [email protected]

Lawful Basis for Processing

We process personal data under the following lawful bases:

• Consent: Where you have given clear consent for us to process your personal data for a specific purpose
• Contract: Where processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract
• Legal obligation: Where processing is necessary for compliance with a legal obligation
• Legitimate interests: Where processing is necessary for our legitimate interests or those of a third party, provided your fundamental rights do not override those interests

Your Rights Under GDPR

The GDPR provides the following rights for individuals:

Right to Be Informed

You have the right to be informed about the collection and use of your personal data. This information is provided in our Privacy Policy and this GDPR statement.

Right of Access

You have the right to request access to your personal data and supplementary information about how we process it.

Right to Rectification

You have the right to have inaccurate personal data rectified and incomplete data completed.

Right to Erasure

You have the right to have your personal data erased in certain circumstances, also known as the "right to be forgotten".

Right to Restrict Processing

You have the right to request the restriction of processing of your personal data in certain circumstances.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format.

Right to Object

You have the right to object to processing based on legitimate interests, direct marketing, and processing for research purposes.

Rights Related to Automated Decision Making

You have rights related to automated decision making and profiling. We do not currently use automated decision-making processes that produce legal effects.

Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected. Retention periods vary depending on the nature of the information and the purposes for which it is processed.

International Transfers

We primarily store and process personal data within the United Kingdom. If we need to transfer data outside the UK, we ensure appropriate safeguards are in place in accordance with data protection law.

Data Security

We have implemented appropriate technical and organisational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access.

Data Breach Procedures

We have procedures in place to detect, report, and investigate personal data breaches. Where a breach is likely to result in a risk to the rights and freedoms of individuals, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach.

Exercising Your Rights

To exercise any of your rights under GDPR, please contact us at:

Email: [email protected]

We will respond to your request within one month of receipt. In some cases, we may need to verify your identity before processing your request.

Complaints

If you are not satisfied with how we handle your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

Information Commissioner's Office
Wycliffe House, Water Lane
Wilmslow, Cheshire, SK9 5AF
Website: ico.org.uk