GDPR & Data Rights — The Scrolling Dead
Last updated: November 2025
We know how it feels when a website claims to “care about your privacy” and then buries you in legalese. So here’s the honest version: we handle a small amount of your data, we keep it safe, and you have full control over what happens to it. This page explains your rights under the UK GDPR and the EU General Data Protection Regulation (GDPR), along with how The Scrolling Dead manages that data in practice.
1. Who We Are
The Scrolling Dead is an independent tech publication run by a small team of writers, developers, and digital professionals. We’re based online — not in a glass office tower — and you can reach us directly at [email protected].
We are the data controller, meaning we decide how and why any personal data you share with us is processed.
2. What We Collect (and Why)
We keep data collection minimal. We only gather information needed to run the site, keep it secure, and communicate with readers.
We may collect:
- Comment data: name, email, and IP address to prevent spam and allow discussion.
- Email data: your address and message if you contact us directly.
- Newsletter info: your email address if you subscribe.
- Analytics: anonymized traffic data like browser type, location (country/city), and time spent on pages.
- Cookies: small files used for site performance, analytics, and affiliate tracking.
We don’t collect personal identifiers like addresses, payment details, or anything we don’t genuinely need.
3. Legal Basis for Processing
We process personal data on the following lawful bases:
- Consent (Article 6(1)(a)) — when you comment, subscribe, or accept cookies.
- Legitimate Interest (Article 6(1)(f)) — for analytics, spam prevention, and basic site functionality.
- Contractual Necessity (Article 6(1)(b)) — when responding to your direct inquiries.
- Legal Obligation (Article 6(1)(c)) — when required by law to retain or disclose certain data.
You can withdraw consent anytime by contacting [email protected].
4. Data Retention
We only keep data for as long as it’s needed for the purpose it was collected:
- Comments: indefinitely (so discussions stay visible), unless you request deletion.
- Analytics data: typically 26 months.
- Emails and contact requests: up to 12 months.
- Newsletter subscribers: until you unsubscribe.
After those periods, data is securely deleted or anonymized.
5. Your Rights Under GDPR
Under Articles 12–23 of the GDPR, you have several rights over your personal data:
Right of Access (Article 15)
You can request a copy of the personal data we hold about you.
Right to Rectification (Article 16)
You can ask us to correct inaccurate or incomplete data.
Right to Erasure (Article 17)
You can ask us to delete your personal data completely.
Right to Restrict Processing (Article 18)
You can request that we temporarily stop processing your data.
Right to Data Portability (Article 20)
You can ask for your data in a structured, machine-readable format.
Right to Object (Article 21)
You can object to our processing based on legitimate interests (like analytics).
Right to Withdraw Consent (Article 7)
You can withdraw any permissions you’ve given — like for newsletters or cookies — at any time.
To exercise any of these rights, email [email protected]. We’ll respond within 30 days.
If you’re unhappy with our response, you can contact the Information Commissioner’s Office (ICO) in the UK via https://ico.org.uk, or your local data authority in the EU.
6. Cookies and Tracking
We use cookies for a few reasons:
- Essential cookies — keep the site working (login sessions, preferences, security).
- Analytics cookies — help us understand which articles people actually read.
- Affiliate cookies — track purchases made through our referral links, so we can earn small commissions.
Cookies don’t store personal information like names or emails. You can block or delete them through your browser settings anytime.
We don’t use “dark patterns” or hidden tracking methods. We’re a tech site, not a data-harvesting operation.
7. International Data Transfers
Some of our third-party partners, such as Google (for Analytics and AdSense) and affiliate networks like Awin or ShareASale, may process data outside the UK or EU.
When that happens, it’s done under Standard Contractual Clauses (SCCs) or adequacy decisions approved by the European Commission, ensuring your data stays protected at the same level required by GDPR.
8. Security Measures
We use HTTPS encryption, secure hosting, regular security updates, and strict access controls. Only authorized administrators can access site data, and all access is password-protected and logged.
We don’t store data on unsecured devices, and backups are encrypted.
If a data breach ever occurs that could affect your rights or freedoms, we’ll notify both you and the relevant supervisory authority within 72 hours, as required by Articles 33–34 of the GDPR.
9. Children’s Data
Our site isn’t aimed at children. We don’t knowingly collect data from anyone under 13 years old. If we learn that we’ve stored information from a minor, we’ll delete it immediately.
10. Complaints
If you believe your data has been mishandled, please email [email protected]. We’ll address it promptly.
If you’d prefer to escalate, you can contact:
The Information Commissioner’s Office (ICO)
Website: https://ico.org.uk
Helpline: +44 303 123 1113
If you’re located in the EU, you can contact your national data protection authority.
11. Policy Updates
This page is reviewed regularly to ensure compliance with privacy regulations. The current version always appears here, with the “Last updated” date at the top.
We’ll post a notice on the site if any major changes are made.
12. Contact Us
For any questions about your data or this GDPR policy, email [email protected].
We’ll respond personally — no bots, no ticketing system, just one of us typing on a laptop, ironically surrounded by the very tech we’re trying to make sense of.
At The Scrolling Dead, we don’t collect data to exploit it. We collect it so we can run a site for people who still care about technology — but not at the cost of their privacy.