Skip to main content
Drizelonphquidz

Transparency

Privacy Policy

This extended notice explains how Drizelonphquidz collects, uses, stores, and shares personal data when you visit https://drizelonphquidz.world, use our contact channels, or engage with optional analytics. It is designed for consistency with the UK GDPR, the EU GDPR where relevant, and widely recognised fairness principles.

Live reference date

Updates may appear after this stamp; substantive changes are summarised at the end of this page.

1. Data controller and material scope

The controller for personal data is Drizelonphquidz, with a studio at 138 Camden High St, London NW1 0NE, United Kingdom. You can reach us by telephone at +44 20 7485 3020 or by email at touch@drizelonphquidz.world.

This Policy applies to processing carried out through the public website, email correspondence initiated via published addresses, and any web forms hosted on our domain. It does not govern third-party platforms that we do not operate, although we may link to them for convenience.

If you are contacting us on behalf of an organisation, please identify your role so we can maintain accurate records and respect procurement or confidentiality expectations.

2. Categories of personal data

Depending on your interaction, we may process:

  • Identity and contact data: name, email address, telephone number if you supply it, job title or organisation name when relevant, and the text of messages you send.
  • Technical and usage data: IP address, approximate geographic area derived from IP, browser type and version, device category, operating system, referring URL, pages viewed, timestamps, and diagnostic events from content delivery or security tools.
  • Preference data: cookie consent selections stored locally in your browser, language preferences inferred from headers, and communication preferences you state explicitly.
  • Transactional records: if you purchase digital materials in the future, limited billing metadata (without storing full payment card numbers on our servers when a payment provider tokenises them).

We do not seek special category data through the website. If you voluntarily include health-related detail in a message, we will treat it with additional care and may ask you to use a more appropriate channel.

3. Sources of personal data

Most data comes directly from you when you browse, complete a form, or email us. We also receive technical data automatically from your device and from infrastructure logs. Occasionally we may receive a referral from a partner with your knowledge, for example if you clicked a tracked campaign link; in that case the partner’s privacy notice applies in parallel.

4. Purposes and lawful bases

We process personal data only where a lawful basis exists under applicable law. The table below summarises typical purposes:

Responding to enquiries
Basis: legitimate interests in operating a studio inbox, or steps prior to contract when you request paid informational services. You may object as described in the rights section.
Website security and abuse prevention
Basis: legitimate interests in protecting systems, detecting malicious traffic, and maintaining service integrity.
Analytics and audience measurement
Basis: consent obtained through the cookie banner where required. You may withdraw consent without affecting strictly necessary operations.
Legal compliance
Basis: legal obligation, for example responding to lawful requests from public authorities or retaining invoices where tax law requires.

5. Cookies and similar technologies

We distinguish between strictly necessary storage (for example to remember that you saved cookie preferences) and optional tags for analytics or marketing. Optional tags are described in the Cookie Policy and load only after an appropriate choice.

Local storage may mirror cookie values for resilience across subpaths. Clearing site data in your browser removes those entries.

6. Recipients and categories of processors

We engage service providers for hosting, email delivery, security monitoring, and—if you consent—analytics dashboards. Processors are bound by written terms that require them to protect data and process it only on documented instructions. We do not sell personal data in the conventional sense of exchanging lists for cash.

Infrastructure Email transport Security Analytics (opt-in)

7. International transfers

Our primary operations are in the United Kingdom. Some subprocessors may store or process data in the European Economic Area or other regions. Where data leaves the UK or EEA, we rely on adequacy regulations, standard contractual clauses, or equivalent mechanisms recognised at the time of transfer.

You may request further information about safeguards by contacting us using the details above.

8. Retention periods

  • General correspondence: up to twenty-four months from the last message in a thread unless a longer period is needed for disputes or regulatory defence.
  • Server and security logs: typically rotated within ninety days, subject to incident investigation holds.
  • Consent records: stored for as long as needed to demonstrate compliance, then minimised.
  • Accounting documents: retained as required by UK tax and company law, often six to seven years for relevant records.

9. Security measures

We implement organisational policies, access reviews, least-privilege credentials, encryption in transit where supported by our stack, segmentation between environments where practical, and periodic review of vendor security posture. No method of electronic storage is perfectly secure; we respond to credible incidents under internal playbooks.

10. Your rights

Subject to applicable law, you may request access, rectification, erasure, restriction of processing, objection to processing based on legitimate interests, and data portability for data you supplied processed by automated means under contract or consent. Where processing is consent-based, you may withdraw consent at any time.

You may lodge a complaint with the Information Commissioner’s Office in the UK or, if you reside elsewhere, with another competent supervisory authority. We encourage you to contact us first so we can attempt to resolve concerns quickly.

11. Automated decision-making

We do not operate solely automated decision systems on this website that produce legal or similarly significant effects for individuals.

12. Children

Our editorial content is intended for adults. We do not market to children and do not knowingly solicit personal data from minors without verifiable parental authority where such authority is required.

13. Third-party websites

Links to external resources are provided for context. Their operators process data under their own notices. Review those notices before submitting personal data.

14. Changes, questions, and version note

We may revise this Policy to reflect new features, regulatory guidance, or organisational structure. Material changes will be highlighted briefly at the top of this page for a reasonable period.

For questions about processing, contact touch@drizelonphquidz.world or use the contact form.

Footer reference:

United Kingdom — transparency for visitors and advertising platforms

Drizelonphquidz offers general informational content about everyday meals and kitchen planning. We are not a healthcare provider, medical clinic, or regulated dietetic service. We do not diagnose, treat, cure, or prevent any disease or medical condition, and we do not promise or guarantee specific results or outcomes. Paid offerings, where available, are limited to educational materials or general planning conversations—not medical nutrition therapy, personalised dietetic treatment, or prescription of therapeutic diets. For medical dietary advice in the UK, consult your GP, NHS services, or a dietitian registered with the Health and Care Professions Council (HCPC). Registered business details and policies are linked in the footer.