Warehouse Bridge
Data Subject Requests
Last Updated: December 17, 2025
Your Privacy Rights
Warehouse Bridge, a trading style of Flag Eagle LLC, respects your privacy rights under applicable data protection laws, including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other privacy regulations.
This page explains your rights and how to exercise them.
Your Rights
Under GDPR (EEA Residents)
If you are located in the European Economic Area, you have the right to:
| Right | Description |
|---|---|
| Access | Request a copy of the personal data we hold about you |
| Rectification | Request correction of inaccurate or incomplete data |
| Erasure | Request deletion of your personal data ("right to be forgotten") |
| Restriction | Request that we limit how we use your data |
| Portability | Receive your data in a portable, machine-readable format |
| Object | Object to processing based on legitimate interests or direct marketing |
| Withdraw Consent | Withdraw previously given consent at any time |
| Automated Decisions | Not be subject to solely automated decision-making with legal effects |
Under CCPA/CPRA (California Residents)
If you are a California resident, you have the right to:
| Right | Description |
|---|---|
| Know | Request disclosure of personal information collected, used, and shared |
| Delete | Request deletion of your personal information |
| Correct | Request correction of inaccurate personal information |
| Opt-Out | Opt out of the sale or sharing of personal information |
| Limit Use | Limit use of sensitive personal information |
| Non-Discrimination | Not be discriminated against for exercising your rights |
Note: Warehouse Bridge does not sell personal information.
How to Submit a Request
Email Request
Send your request to:
Email: steven@dataface.uk Subject Line: Data Subject Request - [Type of Request]
Required Information
To process your request, please provide:
- Your full name (as associated with your account)
- Email address (associated with your account)
- Type of request (access, deletion, correction, etc.)
- Specific details about what data or action you're requesting
- Account identifier (if applicable)
Verification
To protect your privacy, we must verify your identity before processing your request. We will:
- Match the information you provide against our records
- Ask clarifying questions if needed
- We will NOT ask for sensitive documents like passports or government IDs unless absolutely necessary
For requests made through your registered email address, email verification is typically sufficient.
Response Timeline
| Jurisdiction | Initial Response | Maximum Extension |
|---|---|---|
| GDPR | 30 days | Up to 90 days (complex requests) |
| CCPA | 45 days | Up to 90 days (with notice) |
We will acknowledge your request within 5 business days and provide a substantive response within the applicable timeframe.
What to Expect
Access Requests
- We will provide a copy of your personal data in a commonly used electronic format (typically PDF or CSV)
- The response will include categories of data, sources, purposes, and recipients
Deletion Requests
- We will delete your personal data from our active systems
- Some data may be retained for legal compliance, fraud prevention, or to complete transactions
- We will inform you of any data we cannot delete and the reason
Correction Requests
- We will update inaccurate information in our records
- We will notify relevant third parties of corrections where feasible
Exceptions and Limitations
We may not be able to fully comply with your request if:
- Legal obligations require us to retain certain data (e.g., tax records, fraud prevention)
- Contractual obligations necessitate data retention
- The request is manifestly unfounded or excessive
- Compliance would adversely affect the rights of others
- Data is needed to establish, exercise, or defend legal claims
If we cannot fulfill your request, we will explain the reasons and your right to appeal.
Authorized Agents
You may designate an authorized agent to submit requests on your behalf. Agents must provide:
- Written authorization signed by you
- Proof of identity for both you and the agent
Appeals
If you are unsatisfied with our response, you may:
- Contact our DPO: steven@dataface.uk
- Lodge a complaint with your local data protection authority:
- UK: Information Commissioner's Office (ICO)
- EU: Your national Data Protection Authority
- California: California Attorney General
Data Protection Officer
For all privacy-related matters:
Data Protection Officer: Steven Sharp Email: steven@dataface.uk
Frequently Asked Questions
Q: Is there a fee for submitting a request? A: No. We do not charge a fee for legitimate requests. However, we may charge a reasonable fee for manifestly unfounded, excessive, or repetitive requests.
Q: How long do you keep my data? A: Please refer to our Privacy Policy for information about data retention periods.
Q: Will my request affect my service? A: Exercising your privacy rights will not affect the quality of service you receive. However, certain requests (like deletion) may limit our ability to provide services.