Privacy Policy

Last Updated: 16 June 2025

1. Introduction

Welcome to Northern Reaches (“we”, “us”, “our”). Your privacy is paramount, and we are committed to handling your personal data in a lawful, fair and transparent manner. This Privacy Policy explains how we collect, use, disclose and protect your information when you visit https://northernreaches.co.uk (the “Site”) or otherwise engage with us online.

We process personal data in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018 and the Privacy and Electronic Communications (EC Directive) Regulations 2003 (SI 2003/2426), as amended by SI 2011/1208 and SI 2019/419 (collectively “PECR”). A consolidated, up-to-date text of PECR is available on legislation.gov.uk. Where PECR applies to electronic communications – such as cookies or direct marketing – we comply fully with its requirements.

By using our Site, you agree to the practices described in this Policy. Please read it carefully and contact us if you have any questions or wish to exercise your rights under UK data-protection law.

2. Data Controller

The data controller for personal information collected via this Site is:

Mark Tonks (aka SharePointMark)

Email: hello@northernreaches.co.uk

 3. Personal Data We Collect
  • Comments: If you leave a comment, we collect your name, email address, website (if provided), IP address and browser user-agent string to help detect spam. We also generate an anonymised hash (via Gravatar) of your email to display your avatar; Gravatar’s Privacy Policy is at https://automattic.com/privacy/.

  • Media: Any images you upload should not contain embedded location (EXIF GPS) data. Visitors may extract such data if present.

  • Cookies & Similar Technologies:

    • Comment-form cookies (name, email, website) – stored for 1 year to save you re-entering details.

    • Post-edit cookie (post ID only) – stored for 1 day to confirm recent edits.

    • Standard analytics or essential cookies may also be used; see “Cookies” below.

  • Embedded Content: Articles may include embedded videos, images or other media from third-party sites (e.g. YouTube). Interacting with such content may allow those third parties to collect data on your browsing behaviour.

4. How We Use Your Data & Lawful Bases
PurposeData UsedLawful Basis
Managing and moderating commentsComment data, IP, user agentLegitimate interests (spam prevention)
Displaying your avatar via GravatarAnonymised email hashLegitimate interests
Saving your name/email for convenienceCookiesConsent
Publishing and editing your contributionsComment content, profile dataPerformance of a contract / legitimate interests
Site analytics and performance monitoringCookies, usage dataLegitimate interests
Compliance with legal obligationsAll relevant personal dataLegal obligation
5. Cookies and Tracking

We use cookies and similar technologies in accordance with the PECR. You can manage cookie preferences via your browser settings. Essential cookies (site functionality) are always active; non-essential cookies (analytics, marketing) require your consent.

6. Sharing Your Data

We may share your personal data with:

  • Service Providers (hosting, spam-filtering, analytics) under data-processing agreements.

  • Gravatar to display avatars (see Gravatar Privacy Policy).

  • Law Enforcement or Regulators where required by law or to protect our legal rights.

We do not sell or rent your personal data to third parties.

7. Data Retention
  • Comments & Metadata: Retained indefinitely to recognise and approve follow-up comments.

  • User Profiles (if you register): Retained until you delete your account or as required by law.

  • Cookies: As detailed in Section 3.

8. Your Rights

Under UK GDPR, you have the right to:

  • Access your personal data.

  • Rectify inaccurate or incomplete data.

  • Erase data where there is no lawful reason to retain it.

  • Restrict processing in certain circumstances.

  • Object to processing based on our legitimate interests.

  • Port your data to another controller.

To exercise these rights, contact us at info@northernreaches.co.uk. We will respond within 1 month.

9. Data Security

We implement appropriate technical and organisational measures (e.g. secure hosting, encryption, access controls) to safeguard your data against unauthorised access, alteration or destruction.

10. International Transfers

If any data is transferred outside the UK or European Economic Area, we ensure adequate safeguards are in place (e.g. Standard Contractual Clauses) in line with UK GDPR requirements.

11. Changes to This Policy

We may update this Policy periodically. The “Last updated” date at the top will reflect any changes. Continued use of the Site after updates constitutes acceptance of the revised Policy.

12. Contact Us

If you have questions or concerns about this Policy or our data practices, please contact:

Mark Tonks
Email: hello@northernreaches.co.uk
Website: https://northernreaches.co.uk/contact-us


By using https://northernreaches.co.uk, you acknowledge that you have read and understood this Privacy Policy.