Skip to content

Privacy Policy

We are GP1X Ltd (referred to as we, us and our in this Privacy Policy), a company incorporated in England and Wales with company registration number 12108929 and whose registered office address is Kenton House, Oxford Street, Moreton-In-Marsh, Gloucestershire, England, GL56 0LA.

The information set out in this Privacy Policy is provided to individuals whose personal data we process (you or your) as data controller, in compliance with our obligations under the Data Protection Act 2018 and the UK GDPR (as defined in the as defined in the Data Protection, Privacy and Electronic Communications Privacy and Electronic Communications (Amendments etc) (EU Exit) Regulations SI 2019/419) (GDPR). ___________________________________________________________________________

This Privacy Policy includes:

  1. Data controller details
  2. How we collect your information
  3. Information we collect and purpose for processing
  4. Sharing your information
  5. Third parties
  6. International transfers
  7. Retention of personal data
  8. Your rights in respect of your personal data
  9. Automatic decision making and and your options
  10. Security
  11. Changes to this Privacy Policy


 1. Data controller details

1.1 We are the data controller in relation to the processing of the personal information that you provide to us. Our contact details are as follows:

1.1.1 Address: Kenton House, Oxford Street, Moreton-In-Marsh, Gloucestershire, England, GL56 0LA.

1.1.2 Email address: [email protected] (please include “Personal Data Request” in your subject heading to ensure it receives the correct attention).

2. How we collect your information

2.1 Generally, the information we hold about you comes from the way that you engage with us, for example by doing any of the following:

2.1.1 through engaging with us via our site;

2.1.2 providing us with information in the course of registering your interest with us about upcoming events or exhibitions; 

2.1.3 subscribing with us or in respect of any newsletters we may operate from time to time;

providing us with information in the course of purchasing a product from our site;

contacting us offline, for example by telephone, SMS, email or by post; and

interacting with us using social media. 

2.2 We may also obtain information from publicly available sources, including public databases, registers and records.

3. Information we collect and purpose for processing

3.1 We have set out below the types of information we may collect, use store and transfer about you together with the purpose and legal grounds for processing. 

Personal data We may use your information for the following purposes, based on the following legal grounds:
  • Contact information (name, address and email address)
  • If it is necessary for the performance of our contract or for the purposes of entering into a contract: for the purpose of registering your account with us or registering your interest in respect of any of our upcoming events or exhibitions; issuing newsletters or information to you if you have subscribed with us; contacting you in respect of or issuing products or services to you that you have purchased from us. 
  • If it is in our legitimate business interests to do so: for internal record keeping for administration purposes, in order to verify your account, to communicate with you regarding our services (e.g. re any changes to our site); for dealing with any complaints or issues raised by you; for insight purposes (e.g. to analyse market trends and demographics, and develop the service which we offer to you or other individuals in the future) and sending information to you about products and services which we think may be of interest to you for marketing purposes. You may at any time unsubscribe from receiving marketing communications from us. 
  • Compliance with a legal obligation: in order to prevent fraud or money laundering or to comply with any other relevant legal or regulatory requirements.
  • Payment information
  • If it is necessary for the performance of our contract: for the purpose of issuing/receiving payments for products or services you have purchased from us.
  • If it is in our legitimate business interests to do so: for internal record keeping for administration purposes and retaining evidence of payment transactions.
  • Compliance with a legal obligation: in order to prevent fraud or money laundering or to comply with any other relevant legal or regulatory requirements.
  • Technical and device information/  social networks
  • If it is in our legitimate interests to do so: we may use certain technical log data (such as your IP address) for research or statistical purposes; to analyse user traffic and for ensuring the proper administration of our site; for analytics and insight purposes e.g. to monitor market trends and demographics and to improve the user experience within our site; and to ensure that content from our site is presented in the most effective manner for you and for your computer or other device from which you access our site and/or the services we offer through the site. 
  • Cookies         (and other web-tracking technology)
  • Where consent has been obtained: We may use “cookies” and other anonymous web tracking technologies (such as “web beacon” and “pixel tags”) implemented by us or by third party service providers. A cookie is a small file of letters and numbers that is sent to your device when you visit our site, allowing our site to recognise your browser if you revisit it. Cookies may store your online preferences and other information about the interaction you make in the site. Please refer to Section 9 (Automatic Decision Making) below and to our Cookie Policy for more information about the type of cookies used and how we use cookies/tracking technologies within our site.

3.2 We do not collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data). Nor do we collect any information about criminal convictions and offences.

4. Sharing your information

4.1 Please note that personal information we are holding about you may be shared with and processed by:

4.1.1 any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 1159 of the UK Companies Act 2006; 

4.1.2 regulators, fraud prevention agencies or other third parties for the purposes of monitoring and/or enforcing our compliance with any legal and regulatory obligations, including statutory or regulatory reporting or the detection or prevention of unlawful acts;

4.1.3 any third party in the context of actual or threatened legal proceedings, provided we can do so lawfully (for example in response to a court order);

4.1.4 other parties and/or their professional advisers involved in a matter where required as part of the conduct of the services;  

4.1.5 our own professional advisers and auditors for the purpose of seeking professional advice or to meet our audit responsibilities;

4.1.6 third parties we engage with to help us provide services and host events which may include Formula One World Championship Limited and our affiliate third party ticketing providers; 

4.1.7 our service providers and agents (including their subcontractors) or third parties which process information on our behalf (e.g. internet service and data storage and security platform providers, our bank, payment processing providers and those organisations we engage to help us send communications to you) so that they may help us to provide you with the applications, products, services and information you have requested; and

4.1.8 another organisation to whom we may transfer our agreement with you or if we sell or buy (or negotiate to sell or buy) our business or any of our assets (provided that adequate protections and safeguards are in place).

4.2 Please note that we may include links within our site to third party social media providers such as Facebook and Twitter, but we will not share your information with such providers without your consent. 

5. Third parties

5.1 This Privacy Policy does not apply to information processed by our business partners or other third parties, including but not limited to any of our affiliate ticketing providers. 

5.2 Our site may contain links to third websites which we do not own or control – this Privacy Policy does not apply to these third-party websites or applications that are accessible from, or referenced on, our site. We are not responsible for the privacy policies of other websites or applications, and encourage you read all applicable terms, conditions and privacy policies when using other websites and applications. 

6. International transfers

6.1 We will not transfer personal data relating to you to a country which is outside the UK unless:

the country or recipient is covered by an adequacy decision of the Commission under GDPR Article 45;

6.2 appropriate safeguards have been put in place which meet the requirements of GDPR Article 46 (for example using the approved Standard Model Clauses for transfers of personal data outside the UK); or

6.3 one of the derogations for specific situations under GDPR Article 49 is applicable to the transfer.  These include (in summary):

6.3.1 the transfer is necessary to perform, or to form, a contract to which we are a party: with you; or with a third party where the contract is in your interests;

6.3.2 the transfer is necessary for the establishment, exercise or defence of legal claims;

6.3.3 you have provided your explicit consent to the transfer; or

6.3.4 the transfer is of a limited nature, and is necessary for the purpose of our compelling legitimate interests.

7. Retention of personal data

7.1 We have systems in place to periodically review and delete data that is no longer being used by us for the purposes set out in this Privacy Policy. Unless we are required or permitted by law to hold on to your data for a specific retention period, we will only hold your personal information within our systems for a period of 12 months since your last interaction with us.  

7.2 Where we no longer need your personal information, we will dispose of it in a secure manner.

7.3 In some circumstances you can ask us to delete your data: see your legal rights at paragraph 8 below for further information.

7.4 In some circumstances we will anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes, in which case we may use this information indefinitely without further notice to you.

8. Your rights in respect of your personal data

8.1 You have certain rights under existing data protection laws, including the right to (upon written request) access a copy of your personal data that we are processing. In accordance with the Data Protection Act 2018 and the GDPR:

8.1.1 you will have the following rights: right to access: the right to request certain information about, access to and copies of the personal information about you that we are holding (please note that you are entitled to request one copy of the personal information that we hold about you at no cost, but for any further copies, we reserve the right to charge a reasonable fee based on administration costs); and right to rectification: the right to have your personal information rectified if it is inaccurate or incomplete; and

8.1.2 in certain circumstances, you will also have the following rights: right to erasure/“right to be forgotten”: the right to withdraw your consent to our processing of the data (if the legal basis for processing is based on your consent) and the right to request that we delete or erase your personal information from our systems (however, this will not apply if we are required to hold on to the information for compliance with any legal obligation or if we require the information to establish or defend any legal claim);  right to restriction of use of your information: the right to stop us from using your personal information or limit the way in which we can use it; right to data portability: the right to request that we return any information you have provided in a structured, commonly used and machine-readable format, or that we send it directly to another company, where technically feasible; and right to object: the right to object to our use of your personal information including where we use it for our legitimate interests or for marketing purposes.

8.2 If you have subscribed to marketing communications from us, you have the right to unsubscribe from such communications at any time by following the link in the footer of the last email you received from one of our brands or by sending your request with detailed instructions to us at [email protected]

8.3 Please note that if you withdraw your consent to the use of your personal information for purposes set out in our Privacy Policy, we may not be able to provide you with access to all or certain parts of our site.

8.4 If you consider our use of your personal information to be unlawful, you have the right to lodge a complaint with the UK’s supervisory authority, the Information Commissioner’s Office. Please see further information on their website:  

9. Automatic decision making and your options

9.1 We use remarketing services (including, but not limited to Google Ad Words (now called Google Display Network), Microsoft Ads, Meta (Including Facebook and Instagram) , TikTok, Snapchat, Tamboola, Mailchimp and BurstSMS) to advertise on third party websites to previous visitors of our site. This could be in the form of an advertisement on the Google search results page, or a site in the given display networks. Third-party vendors, including Google, use cookies to serve ads based on someone’s past visits to our website and other affiliated websites. Of course, any data collected will be used in accordance with our own privacy policy and the privacy policies of the service providers. It is important to note that no personal identifying information is gathered or transmitted with this cookie. You can set preferences for how these services advertise to you using their respective Ad Preferences pages. You can opt-out of interest-based advertising entirely by cookie settings or permanently using a browser plugin.

9.2 Google Tag Manager (or GTM). We use GTM to pass back site visitors to paid marketing tools, including, for example, Google, TikTok, SnapChat and others. You can refuse to accept these tools by clicking on our Cookie Manager. Note that this may impact or limit access to certain aspects of the website.

9.3 Web Beacons. Pages of our website and our e-mails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit us, for example, to count users who have visited those pages or opened an email and to gather other related statistics (for example, recording the popularity of certain content and verifying system and server integrity).

9.4 Google Analytics. We may use a tool called “Google Analytics” to collect information about use of the site. Google Analytics collects information such as how often users visit our site, what pages they visit, when they do so, and what other sites they used prior to coming to our site. We use the information we get from Google Analytics only to improve our site. We do not combine the information collected through the use of Google Analytics with personally identifiable information. Google Analytics plants a permanent cookie on your web browser to identify you as a unique user the next time you visit our Site. Google’s ability to use and share information collected by Google Analytics about your visits to our website is restricted by the Google Analytics Terms of Use and the Google Privacy Policy. More information on Google Analytics can be found here If you would like to opt-out of having your data used by these cookies, please use the Google Analytics opt-out available here:

10. Security 

10.1 We keep your information protected by taking appropriate technical and organisational measures to guard against unauthorised or unlawful processing, accidental loss, destruction or damage. For example:

10.1.1 where appropriate, data is encrypted when transiting on our system or stored on our databases; 

10.1.2 we have implemented safeguards in relation to access and confidentiality in order to protect the information held within our systems; and 

10.1.3 we frequently carry out risk assessments and audits to monitor and review threats and vulnerabilities to our systems to prevent fraud.

10.2 However, while we will do our best to protect your personal information, we cannot guarantee the security of your information which is transmitted via an internet or similar connection. It is important that all details of any username, password and/or other identification information created to access our servers are kept confidential by you and should not be disclosed to or shared with anyone. 

11. Changes to this Privacy Policy 

We may amend this Privacy Policy from time to time, for example to keep it up to date, to implement minor technical adjustments and improvements or to comply with legal requirements. We will always update this Privacy Policy on our site, so please try to read it when you visit the site (the “last updated” reference tells you when we last updated our Privacy Policy). 



Last updated March 2024