mentora-horizon
GDPR compliance statement
mentora-horizon is committed to protecting personal data in line with the General Data Protection Regulation (GDPR).
Lawful bases for processing
We process personal data only when there is a lawful basis to do so.
- Performance of a contract for client engagements
- Legitimate interest in responding to enquiries
- Consent for optional analytics and communications
Categories of data
- Contact and identity details
- Engagement notes and project documentation
- Website usage data where consent is given
Data retention and security
We retain information only as long as required to fulfil our services and legal obligations. Records are stored securely with controlled access.
International transfers
When data is processed outside the UK or EEA, we use safeguards such as standard contractual clauses and vetted service providers.
Your GDPR rights
Right of access
You may request access to the personal data we hold about you.
Right to erasure
You may request deletion where there is no lawful reason to retain the data.
Right to object
You can object to processing based on legitimate interests.
How to exercise your rights
Send a written request to [email protected]. We respond within one month and may verify your identity before processing requests.
Supervisory authority
If you believe your data rights have been violated, you may contact the UK Information Commissioner’s Office (ICO).