Privacy Policy

Privacy Policy under the UK General Data Protection Regulation

Due to the Data (Use and Access) Act (DUAA) coming into law on 19 June 2025 and 20 August 2025, this page is under review and subject to changes coming into force.  The DUAA amends, but does not replace, the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018 (DPA) and the Privacy and Electronic Communications Regulations (PECR). 

  1. The Legitimate basis for collecting personal data is to comply with the UK GDPR regulations.
  2. What personal data is collected.
    The IP addresses of visitors to the site is automatically collected by the site, and any personal data collected is limited to the names and email addresses where the visitor voluntarily submits this information for the purpose of receiving newsletters, updates on information posted on the website, and any/all comments left.
  3. Cookies – If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
  4. Comments – When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection. Visitor comments may be scanned for malware, viruses and trojans.
  5. Categories of individuals whose personal data is collected is restricted to visitors to the site. This is a non-commercial site, and therefore we do not collect any identifiable information about persons to facilitate payments, for marketing purposes, or customer support and management.
  6. Any information collected can be shared for legitimate purposes with government agencies such as the police in the interests of national security, the prevention of crime, fraud protection, and cyber security.
  7. Data collected is stored on servers located in the United States of America by the webhosting company Bluehost.com. If you object to this, please do not voluntarily provide any personal data such as your name and email address or leave coments.  In voluntarily providing your personal data, your consent is deemed to have been granted for your data to be stored outside of the UK by Bluehost.com in the USA.
  8. Your data will be retained for as long as the website is active so we can recognise and approve any follow-up comments. You have the right to request information on what personal data is held on you by making a subject access request (SAR), and the right to have that data permanently deleted.  This does not include any data we are legally obliged to keep for administrative or security purposes.
  9. This is a non-commercial personal blog website and any requests for information relating to personal data held under the UK GDPR can be made to the site owner, George Chin, at: [email protected]

[Ends]