Privacy & Cookies Policy

Last Updated: 7 January 2026

​

1. Important Information and Who We Are

www.humanrightsportal.com is the "Data Controller" responsible for your personal data. We are committed to protecting your privacy in accordance with the UK General Data Protection Regulation (UK GDPR).

• Contact Email: info@humanrightsportal.com

​

2. The Data We Collect

We collect, use, and store "Personal Data" (information that can identify you). This is categorised as:

• Identity & Contact: Name, email, and phone number.

• Technical Data: IP address, login data, browser type, and location (used for site security).

• Usage Data: Information about how you use our website.

• Marketing Data: Your preferences in receiving communication from us.

​

3. Lawful Basis for Processing

Under the UK GDPR and the DUAA 2025, we must have a "Lawful Basis" to use your data. We rely on the following:

Purpose/ActivityType of DataLawful Basis (UK GDPR Art. 6)

To register you as a customerIdentity, ContactPerformance of a Contract

To process and deliver your orderIdentity, Contact, FinancialPerformance of a Contract

To improve our website/servicesTechnical, UsageLegitimate Interests (Business Improvement)

To send newslettersContact, MarketingConsent (You can withdraw this at any time)

To prevent fraud/security threats 

​

4. Cookies & Tracking Technologies

Our website uses cookies to distinguish you from other users. Following the 2025/2026 updates to the Privacy and Electronic Communications Regulations (PECR), our cookie usage is as follows:

​

A. Cookies that do NOT require your prior consent

Under the DUAA 2025, we may set these without a pop-up, provided we offer a clear opt-out:

• Strictly Necessary Cookies: Required for the website to function (e.g., shopping carts, security).

• First-Party Analytics: Used solely by us to see how many people visit our site (to improve performance).

• Functional Cookies: To remember your preferences (e.g., language or "dark mode" settings).

​

B. Cookies that DO require your opt-in consent

• Advertising & Marketing Cookies: Used by third parties (e.g., Meta, Google) to track your browsing across other sites to show you targeted ads. These are disabled by default until you click "Accept" on our banner.

​

​

5. Your Legal Rights (UK)

You have significant rights over your data. We will respond to all "Subject Access Requests" (SARs) within one month.

1. Right of Access: Request a copy of the data we hold about you.

2. Right to Erasure: Request we delete your data (the "Right to be Forgotten").

3. Right to Object: Object to our use of "Legitimate Interests" as a basis for processing.

4. Right to Complain: If you are unhappy with how we handle your data, you have the legal right to complain directly to us or to the Information Commissioner’s Office (ICO).

​

6. Data Security & Retention

• Security: We use SSL encryption and "Reasonable and Proportionate" security measures (as defined by the DUAA 2025) to prevent data breaches.

• Retention: We only keep your data for as long as necessary. For example, financial records are kept for 6 years to comply with UK tax law.

​

7. International Transfers

If we transfer your data outside the UK (e.g., to a US-based email provider), we ensure it is protected by the UK International Data Transfer Agreement (IDTA) or that the destination country has a "UK Adequacy Decision."

​

8. How to Complain

If you have a concern, please contact us first at [Insert Email].

If we cannot resolve it, you can contact the ICO:

• Website: https://ico.org.uk

• Helpline: 0303 123 1113