Privacy Policy

This policy explains how British Aviation Chronicles collects, uses, and protects your personal information. It’s written in plain English—because legal documents shouldn’t require a pilot’s licence to understand. Last updated: 15 March 2025.

Abstract blue technology background representing data security

1. Who We Are

British Aviation Chronicles is the data controller for the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. Our registered office is:

The Hangar, Fowlmere Airfield,
Royston, Herts, England, SG8 7SH
Company Registration: 10507142
Founded: 2015

You can contact our Data Protection Officer by email at hello@BritishAviationChronicles.com or by telephone on +44 113 415 02 07.

2. The Information We Collect

We collect different types of information, depending on how you interact with our site. We never collect more than we need.

Information You Provide

  • Contact details: Name, email address, phone number when you use our contact form or sign up for updates.
  • Account information: Username, password (hashed), and profile preferences if you create a research account.
  • Correspondence: The content of emails, messages, or forum posts you send to us.
  • Research submissions: Historical documents, photographs, or stories you choose to share with our archive.

Information Collected Automatically

  • Technical data: IP address, browser type, device type, operating system, and approximate location (city/country level).
  • Usage data: Pages visited, time spent, links clicked, and the referring website (e.g., a search engine).
  • Cookie data: See our separate Cookie Policy for detailed information.
Close-up of a vintage aircraft instrument panel with dials and gauges

3. How We Use Your Information

We use your personal data only for specific, legitimate purposes. The table below outlines these purposes and our legal basis under UK GDPR.

Purpose Data Used Legal Basis
To respond to your enquiries and provide support Name, email, message content Legitimate interest
To manage your research account and archive submissions Account credentials, submitted content Contractual necessity
To send you requested updates or newsletters (with consent) Email address, name Consent
To analyse and improve our website’s performance Usage data, technical data (anonymised where possible) Legitimate interest
To comply with legal or regulatory obligations As required by law (e.g., financial records) Legal obligation

We do not use automated decision-making or profiling that produces legal effects concerning you.

4. Data Sharing & Third Parties

We treat your data with the confidentiality of a classified flight plan. We do not sell, rent, or trade your personal information.

We may share your data with trusted third-party service providers only when strictly necessary and under contract. These include:

Hosting & Infrastructure

Our website hosting provider, which stores data securely within the UK/EEA.

Email Services

A secure email service provider to manage communications with you.

Analytics Providers

Services like Google Analytics (with IP anonymisation enabled) to understand site usage.

We may also disclose information if required by law—to regulatory authorities, law enforcement, or in connection with legal proceedings.

Aerial view of a control tower and runway at dusk

5. Data Security & Retention

We implement appropriate technical and organisational measures—think of it as the digital equivalent of a secure hangar. Measures include encryption, access controls, and regular security assessments.

We retain your personal data only for as long as necessary to fulfil the purposes we collected it for, including for satisfying any legal, accounting, or reporting requirements. Our typical retention periods are:

  • Contact form submissions: 24 months after last contact.
  • Research account data: For the lifetime of your account, or 36 months after inactivity.
  • Newsletter subscriptions: Until you withdraw consent (you can unsubscribe at any time).
  • Financial transaction records: 7 years as required by UK tax law.

6. Your Data Protection Rights

Under UK data protection law, you have rights regarding your personal data. We will respond to any request within one calendar month.

Right to Access
You can request a copy of the personal data we hold about you.
Right to Rectification
You can ask us to correct inaccurate or incomplete data.
Right to Erasure
You can ask us to delete your data in certain circumstances.
Right to Restrict Processing
You can ask us to temporarily halt using your data.

To exercise any of these rights, please contact us using the details in Section 1. You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK supervisory authority.

7. International Transfers

We primarily store and process data within the United Kingdom. If any data is transferred outside the UK, we ensure it is protected by appropriate safeguards, such as the UK’s International Data Transfer Agreement or an adequacy decision.

A globe on a desk with a pair of aviation headphones

8. Changes to This Policy

We may update this privacy policy from time to time. The ‘Last updated’ date at the top of this page will change. We encourage you to review this page periodically. Significant changes will be communicated to you where appropriate.

Questions About Your Data?

If you have any questions about this privacy policy or how we handle your information, please get in touch.

Contact Our Data Team