Last Updated: June 3, 2026
frosty-nail is committed to compliance with the General Data Protection Regulation (GDPR) and protecting the privacy rights of individuals in the European Economic Area (EEA) and the United Kingdom.
For the purposes of GDPR, frosty-nail acts as the data controller for personal information collected through our website and services.
Data Controller Contact:
frosty-nail
42 Culinary Lane
London, E1 6AN
United Kingdom
Email: [email protected]
We process personal data under the following lawful bases:
For marketing communications and non-essential cookies, we obtain your explicit consent. You may withdraw consent at any time by contacting us or using the unsubscribe link in marketing emails.
Processing necessary to deliver the culinary education services you've enrolled in, including program delivery, communications, and payment processing.
We process data for legitimate business interests including website analytics, service improvement, and fraud prevention, provided these interests do not override your rights and freedoms.
Processing required to comply with legal obligations such as tax laws, accounting requirements, and regulatory compliance.
You have the right to obtain confirmation that we process your data and request a copy of the personal data we hold about you.
You can request correction of inaccurate or incomplete personal data.
Under certain circumstances, you can request deletion of your personal data ("right to be forgotten").
You can request that we limit how we use your personal data in specific situations.
You can request to receive your personal data in a structured, commonly used, machine-readable format and have it transmitted to another controller.
You can object to processing based on legitimate interests or for direct marketing purposes.
We do not use automated decision-making or profiling that produces legal effects concerning you.
To exercise any of these rights, please contact us at [email protected] with:
We will respond to your request within one month. If your request is complex, we may extend this period by two additional months and will inform you of the extension.
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify you without undue delay. We will also notify the relevant supervisory authority within 72 hours of becoming aware of the breach, where required by law.
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected:
When we transfer personal data outside the EEA or UK, we ensure appropriate safeguards are in place, such as:
We work with third-party service providers who process data on our behalf. All processors are contractually bound to GDPR compliance through Data Processing Agreements that specify:
We do not knowingly collect or process personal data from individuals under 16 years of age without parental consent. If we become aware that we have collected such data, we will take steps to delete it promptly.
You have the right to lodge a complaint with a supervisory authority if you believe we have processed your personal data unlawfully.
UK Supervisory Authority:
Information Commissioner's Office (ICO)
Website: ico.org.uk
Helpline: 0303 123 1113
We may update this GDPR compliance statement to reflect changes in our practices or legal requirements. Material changes will be communicated through our website and, where appropriate, directly to affected individuals.
For any questions regarding GDPR compliance or data protection:
Email: [email protected]
Address: 42 Culinary Lane, London, E1 6AN, United Kingdom