Privacy & Cookie Policy

The controller of personal data collected via roslaya.com (the “Site”) is Maria Roslaya (the “Controller”). Contact for data protection matters: maria@roslaya.com. Processing is carried out in accordance with the UK GDPR and the Data Protection Act 2018.

• ✓Consultation request form: name, email address, message text. Purpose — to contact you about your request.
• ✓Book notification form: email address. Purpose — to notify you once when the book is released.
• ✓Technical data (cookies, anonymised visit statistics) — subject to your consent, to analyse how the Site performs.

The lawful basis for processing is your consent, given by ticking the box before submitting a form (Article 6(1)(a) UK GDPR). Forms cannot be submitted without consent. The Controller does not collect special category data or data of minors.

The Site uses cookies and the Yandex.Metrica analytics service to collect anonymised statistics: pages visited, referral source, on-site behaviour. Analytics cookies are set only after you give consent via the cookie banner. You may refuse analytics by clicking “Decline” in the banner or by deleting cookies in your browser settings — the Site remains fully functional.

Strictly necessary cookies (for example, your language preference and your cookie decision) are set without consent, as the Site cannot function correctly without them.

Personal data is not sold or shared with third parties for their own purposes. Data may be processed by the Controller's technical providers solely to operate the Site: the hosting provider (storage of the requests database) and the analytics service (anonymised data). Data may be disclosed where required by law or a lawful request of a competent authority.

Form data is kept no longer than necessary: consultation requests — until the communication is complete, and no longer than 3 years; book notification emails — until the notification is sent or consent is withdrawn. After that, data is deleted or anonymised.

• ✓to access the personal data we hold about you;
• ✓to rectification, erasure or restriction of processing;
• ✓to withdraw consent at any time and to object to processing;
• ✓to data portability, and to lodge a complaint with the Information Commissioner's Office (ico.org.uk).

To exercise your rights, email maria@roslaya.com with the subject “Personal data”. We will respond within the time limits set by the UK GDPR (normally one month).

The Controller applies appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure or destruction: the Site is served over HTTPS and access to request data is restricted and authenticated.

The Controller may update this Policy. The current version is always available on this page with its publication date. Material changes to processing will not be applied to previously collected data without renewed consent where the law so requires.