Astovela Review is an independent editorial publication focused on everyday wellness practices. The publication is not affiliated with any commercial, governmental, or institutional body. This Privacy Policy explains how Astovela Review collects, uses, stores, and protects information about visitors to the website at astovela.info.
This policy is governed by the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. By using this website, you acknowledge the practices described in this document.
1. Data Controller
The data controller for the purposes of UK GDPR is Astovela Review, operating from 47 Clerkenwell Road, EC1R 5BL, London, United Kingdom.
For data-related enquiries, contact us at [email protected] or by post to the address above.
2. Information We Collect
We collect information in the following ways:
- a. Contact form submissions. When you use the contact form, we collect your name, email address, and message content. We also collect a subject category if provided. This information is used solely to respond to your enquiry.
- b. Usage data. We collect standard server log data including IP address, browser type, operating system, referring URLs, and pages visited. This data is used for site performance monitoring and is not linked to individual identities.
- c. Cookies. We use functional, analytical, and optional third-party cookies. Details are set out in our Cookie Policy.
3. Legal Basis for Processing
We process personal data on the following legal bases under UK GDPR:
- a. Consent — for analytical cookies and any optional data collection where we have asked for your agreement.
- b. Legitimate interests — for server log data used to maintain site security and performance.
- c. Contract performance — where you have submitted a contact form and we are responding to your request.
4. How We Use Your Information
Information collected through this website is used for the following purposes only:
- Responding to enquiries submitted via the contact form.
- Monitoring website performance and diagnosing technical issues.
- Understanding aggregate visitor behaviour to improve editorial content.
- Maintaining site security and preventing abusive traffic.
We do not use personal data for marketing, profiling, or automated decision-making. We do not sell or rent personal data to third parties.
5. Data Retention
Contact form data is retained for no longer than 12 months from the date of the original submission, unless an ongoing correspondence requires retention for longer. Server log data is retained for up to 90 days. Cookie-based analytical data is retained for the duration specified in the Cookie Policy.
We review stored data at least annually and delete records that are no longer required.
6. Third Parties and Data Sharing
We do not share personal data with third parties for their own purposes. Data may be shared with service providers who assist in operating this website (such as hosting providers and analytics platforms) under appropriate data processing agreements. Such providers are required to handle data in accordance with UK GDPR.
We may disclose data if required to do so by law, court order, or lawful request from a regulatory authority.
7. Your Rights
Under UK GDPR, you have the following rights in relation to your personal data:
- The right to access personal data we hold about you.
- The right to request correction of inaccurate data.
- The right to request erasure of data we hold about you, where no legal obligation to retain it exists.
- The right to object to processing based on legitimate interests.
- The right to data portability for data provided by you under consent.
- The right to withdraw consent at any time, without affecting processing carried out before withdrawal.
To exercise any of these rights, contact us at [email protected]. We will respond within one calendar month. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.
8. Security
This website operates exclusively over HTTPS. Access to personal data is restricted to authorised members of the editorial team. We maintain reasonable technical and organisational measures to protect personal data against unauthorised access, loss, or disclosure. No transmission of data over the internet can be committed to providing as completely secure, and we cannot warrant the absolute security of data transmitted to the site.
9. Children's Privacy
This website is not directed at children under the age of 13. We do not knowingly collect personal data from children. If you believe a child has submitted personal data through this site, please contact us at [email protected] and we will take steps to remove the data promptly.
10. Changes to This Policy
This Privacy Policy may be updated from time to time. The date at the top of the page reflects the most recent revision. Continued use of the website following a policy update constitutes acceptance of the revised terms. We encourage you to review this page periodically.
Contact Regarding This Policy
For any questions, requests, or complaints regarding this Privacy Policy or the way we handle personal data, please contact: