Book Here

Privacy Policy (UK GDPR)

This Privacy Policy explains how Nailed It • Tredegar (“I”, “me”, “my”) collects, uses, and protects your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

 

Who We Are

My website address is: https://nailedittredegar.com

I am the data controller responsible for your personal data.

 

What Personal Data We Collect:

Comments

When visitors leave comments on the site, I collect:

  • The data shown in the comments form

  • The visitor’s IP address

  • Browser user agent string

This information is collected to help with spam detection and site security.

An anonymised string (hash) created from your email address may be shared with the Gravatar service to check if you use it. Their privacy policy is available at:
https://automattic.com/privacy/

Once your comment is approved, your profile picture may be publicly visible alongside your comment.

Media

If you upload images to the website, please avoid uploading images that contain embedded location data (EXIF GPS). Visitors to the website may be able to download and extract location data from images.

Cookies

Cookies are small text files stored on your device.

If you leave a comment, you may choose to save your name, email address, and website in cookies for your convenience. These cookies last one year.

If you visit the login page, a temporary cookie is set to check whether your browser accepts cookies. This cookie contains no personal data and is deleted when you close your browser.

When you log in, cookies are used to save your login details and screen preferences:

  • Login cookies last two days

  • Screen preference cookies last one year

  • Selecting “Remember Me” keeps you logged in for two weeks

Logging out removes login cookies.

If you edit or publish content, an additional cookie is saved that contains no personal data and expires after one day.

 

Embedded Content from Other Websites

Articles on this site may include embedded content (such as videos or images). Embedded content behaves in the same way as if you visited the other website directly.

These third-party websites may collect data about you, use cookies, and monitor your interaction with the embedded content, particularly if you are logged in to their services.

 

Lawful Basis for Processing Data

Under UK GDPR, personal data is processed on the following lawful bases:

  • Consent (for comments and saved cookies)

  • Legitimate interests (site security, spam prevention, and website functionality)

  • Legal obligations, where applicable

 

Who We Share Your Data With

I do not sell or share your personal data for marketing purposes.

If you request a password reset, your IP address will be included in the reset email as part of standard security procedures.

 

How Long We Retain Your Data

  • Comments and their metadata are retained indefinitely to allow automatic approval of follow-up comments.

  • Registered user data (if applicable) is stored in user profiles and can be edited or deleted by the user at any time (except usernames).

 

Your Rights Under UK GDPR

You have the right to:

  • Request access to the personal data I hold about you

  • Request correction of inaccurate data

  • Request deletion of your personal data

  • Request restriction of processing

  • Request a copy (data portability)

  • Withdraw consent at any time

These rights do not apply to data I am legally required to retain for administrative, legal, or security reasons.

To exercise any of these rights, please contact me directly.

 

Where Your Data Is Sent

Visitor comments may be checked using an automated spam detection service.

 

Contact

If you have any questions about this Privacy Policy or how your data is handled, please contact me via the website.