GDPR Compliance

Last Updated: 1 January 2026

Our Commitment to GDPR

Velocity Arc Limited is fully committed to compliance with the General Data Protection Regulation (GDPR) and the UK Data Protection Act 2018. We take our data protection responsibilities seriously and have implemented comprehensive measures to ensure your personal data is processed lawfully, fairly, and transparently.

Legal Basis for Processing

We process your personal data under the following legal bases:

• Contract: Processing necessary for the performance of our aviation services
• Legal Obligation: Compliance with aviation regulations and safety requirements
• Legitimate Interest: Business operations and service improvement
• Consent: Marketing communications and optional data processing

Your Data Protection Rights

Under GDPR, you have the following rights:

Right to Access

You have the right to request copies of your personal data. We may charge a reasonable fee for multiple copies or manifestly unfounded requests.

Right to Rectification

You have the right to request correction of inaccurate or incomplete personal data we hold about you.

Right to Erasure

You have the right to request deletion of your personal data in certain circumstances, subject to legal retention requirements.

Right to Restrict Processing

You have the right to request that we restrict processing of your personal data in specific situations.

Right to Object

You have the right to object to processing of your personal data where we rely on legitimate interests as the legal basis.

Right to Data Portability

You have the right to request transfer of your personal data to another organization or directly to you in a structured, commonly used format.

Right to Withdraw Consent

Where processing is based on consent, you have the right to withdraw that consent at any time.

Data Protection Officer

For questions about data protection or to exercise your rights, contact our Data Protection Officer:

Email: [email protected]
Address: Data Protection Officer, Velocity Arc Limited, 45 Berkeley Square, Mayfair, London W1J 5AT, United Kingdom

Supervisory Authority

You have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) if you believe your data protection rights have been violated:

Information Commissioner's Office
Wycliffe House, Water Lane
Wilmslow, Cheshire SK9 5AF
Telephone: 0303 123 1113
Website: www.ico.org.uk

Data Security Measures

We implement industry-standard security measures including:

• Encryption of data in transit and at rest
• Regular security assessments and audits
• Access controls and authentication mechanisms
• Staff training on data protection practices
• Incident response procedures

Data Breach Notification

In the event of a data breach that poses a risk to your rights and freedoms, we will notify you and the relevant supervisory authority within 72 hours of becoming aware of the breach.

Automated Decision-Making

We do not use automated decision-making or profiling that produces legal effects or similarly significant effects on individuals.

International Transfers

When we transfer your data outside the UK or European Economic Area, we ensure appropriate safeguards are in place through:

• Adequacy decisions
• Standard contractual clauses
• Binding corporate rules
• Other approved transfer mechanisms

Children's Privacy

Our services are not directed to individuals under 16 years of age. We do not knowingly collect personal data from children without parental consent.

Updates to This Notice

We may update this GDPR notice to reflect changes in our practices or legal requirements. Significant changes will be communicated to you directly.