Identity of the Data Controller and Contact Details
We are not responsible for the content or the privacy notices for any websites to which we provide external links.
Laws that apply to us:
- General Data Protection Regulation (EU Regulation 679/2016)
- Irish Data Protection Acts 1988 to 2018
- Regulations flowing from DPA 2018
- ePrivacy Regulations 2011 implementing EU Privacy and Electronic Communications Directive 2002/58/EC on Privacy and Electronic Communications, otherwise known as ePrivacy Directive (ePD)
How do we collect information about you?
Information you provide us
When you register on our website, we will request that you provide some personal information which is necessary to process your order.
Information we collect automatically
Things like your IP address, which browser and device you’re using, or your device ID. And we can tell what webpage directed you to our website by looking at information from your browser.
How do we use your information?
Lawful basis for processing
We have to have a valid reason to use your personal information. It’s called the “lawful basis for processing”. Sometimes we might ask your permission to do things, like when you subscribe to an email. Other times, when you’d reasonably expect us to use your personal information, we don’t ask your permission, but only when:
- the law says it’s fine to use it, and
- it fits with the rights you have.
We use your information for these types of things:
We use some of your personal information to provide our services, provide recommendations on services we feel might be beneficial to you, and to personalise our offerings to you. Personal information that you voluntarily submit may be used for the purpose(s) for which it was submitted. For example, if you voluntarily submit personal data to enter a competition on the website, the information that you submit may be used as part of your entry to that competition.
Administrative Use and Communications Related to your Use of the Website
We may use collected information for internal administrative purposes including site administration, troubleshooting, processing of e-commerce transactions or administration of competition and contests. We may also use collected information to send you communications related to your use of the Website or Content you post on the Website. This includes, when applicable, communications regarding account status, order status, renewal/ expiration notices and other transactional communications. We may also send you notifications about major changes to the Website and/ or to the Privacy Statement.
We may use collected information to create aggregate statistics about the activity of visitors on the Website, including the number of return visits to the Website or our advertisers’ websites, the number of unique visitors that have viewed or “clicked” a particular ad or visited a particular web page, and how much time is spent on each page of the Website. We may also create aggregate demographic statistics.
We may use these aggregate statistics to measure interest in various areas of the Website, to better design the Website and to improve our marketing strategy and product offerings. We may share the aggregate statistical information with third parties. We may also use third parties to assist us in collecting and using these aggregate statistics.
Sponsored posts on other websites
We might show you tailored recommendations of our services on social media sites like Facebook and Instagram.
Social Media and other websites
If you mention us on other sites, for instance in an Instagram post, we’ll collect your Instagram username.
Processing your payment
After you place an order on our website you will need to make payment for the goods or services you have ordered. In order to process your payment we use Stripe, a third party payment processor.
Your payment will be processed by Stripe, who collect, use and process your information, including payment information, in accordance with their privacy policies.
We strive to provide you with choices regarding certain Personal Data uses, particularly around marketing and advertising. Where appropriate, you will be asked whether you wish to receive any marketing communications from us.
You can unsubscribe from direct marketing by using the contact details herein or by using the unsubscribe links on communications.
We might use information that we hold about you to show you relevant and targeted advertising about our services through other companies’ sites, like Facebook, Google, Snapchat or Twitter for example. If you don’t want to see our targeted advertising, you can set ad preferences in your social media companies’ settings. You can also opt-out from Facebook and other participating companies through the European Interactive Digital Advertising Alliance in Europe http://www.youronlinechoices.eu/.
When you review our business on Google we may use the information provided on our website. You can manage your privacy preferences and settings here; https://myaccount.google.com/shared-endorsements
Cookies, Tracking and Other Technical Personal Data
You can reject some or all of the cookies we use on or via our website by changing your browser settings or non-essential cookies by using a cookie control tool but doing so can impair your ability to use our website or some or all of its features. For further information about cookies, including how to change your browser settings, please visit www.allaboutcookies.org.
How long will you keep my personal information for?
We only hold your information for as long as we do the activities we told you about or have a valid reason to keep it. We think about what type of information it is, the amount collected, how sensitive it might be and any legal requirements. We design our services so that we don’t hold your information any longer than we have to.
Who do you share my personal information with?
We’ll never sell your personal information. We may however share it with trusted service providers who could be considered data processors, sub-processors or third parties. We require all third parties to have appropriate technical and operational security measures in place to protect your Personal Data, and to uphold the same standards of data protection we do.
We use the following categories of service providers including data processors in the course of our business:
- Cloud Web and App Hosting Services
- Cloud Data Sources
- One or More Contract Developers
- Professional Service Providers such as Lawyers, Solicitors and Accountants
- Financial Transaction Providers
- Telecoms Service and Carrier Providers
- Postal services and couriers
We might also share your information if we have to by law, or when we need to protect you or other people from harm.
Where does your data travel to?
Some companies that provide services to us run their services from outside the European Economic Area. We only let that happen if we are satisfied with their levels of security. Keep in mind that when you give us personal information it could be being transferred, stored or processed in a location outside the EEA.
If we transfer your Personal Data out of the EEA, we ensure an adequate degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:
- We will only transfer your Personal Data to countries that have been deemed to provide an adequate level of protection for Personal Data by the European Commission.
- Where we use certain service providers, we may use specific contracts approved by the European Commission which give Personal Data the same protection it has in Europe.
- Where we use providers based in the US, we may transfer data to them if they are part of the Privacy Shield which requires them to provide similar protection to Personal Data shared between the Europe and the US.
How do we protect your data?
We follow strict security procedures in the storage and disclosure of your Personal Data, and to protect it against accidental loss, destruction or damage. We take appropriate security measures against unlawful or unauthorised processing of Personal Data, and against the accidental loss of, or damage to, Personal Data. The data you provide to us is protected using modern encryption, intrusion prevention, and account access techniques as appropriate and required. We have put in place procedures and technologies to maintain the security of all Personal Data from the point of collection to the point of destruction. We maintain data security by protecting the confidentiality, integrity and availability of the Personal Data, defined as follows:
Confidentiality means that only people who are authorised to use the data can access it.
Integrity means that Personal Data should be accurate and suitable for the purpose for which it is processed.
Availability means that authorised users should be able to access the data if they need it for authorised purposes.
Updates and changes to this policy
We update this policy sometimes. If we make important changes, like how we use your personal information, we’ll let you know by email or on our website. If you don’t agree to the changes, then you can always stop using our services, request we delete your data and stop giving us any more personal information.
Sale of Business
Situations may arise where it is necessary to transfer information (including your Personal Data) to a third party in the event of a sale, merger, liquidation, or receivership. You will be notified in the event of any such transfer and you will be afforded an opportunity to opt-out.
What rights do you have?
Under certain circumstances, by law you have the right to:
- Request information about whether we hold personal information about you, and, if so, what that information is and why we are holding/using it.
- Request access to your personal information (commonly known as a “Data Subject access request”). This enables you to receive a copy of the personal information we hold about you and to check that we are lawfully processing it.
- Request correction of the personal information that we hold about you. This enables you to have any incomplete or inaccurate information we hold about you corrected.
- Request erasure of your personal information. This enables you to ask us to delete or remove personal information where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your personal information where you have exercised your right to object to processing (see below).
- Object to processing of your personal information where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground. You also have the right to object where we are processing your personal information for direct marketing purposes.
- Object to automated decision-making including profiling, that is not to be subject of any automated decision-making by us using your personal information or profiling of you.
- Request the restriction of processing of your personal information. This enables you to ask us to suspend the processing of personal information about you, for example if you want us to establish its accuracy or the reason for processing it.
- Request transfer of your personal information in an electronic and structured form to you or to another party (commonly known as a right to “data portability”). This enables you to take your data from us in an electronically useable format and to be able to transfer your data to another party in an electronically useable format.
How do you exercise your rights?
If you have any questions about this policy or about our data protection compliance, please contact us via email at [email protected] or write to us at Wayside House, 114 Old Cabra Road, Cabra, D07 E3C6, Republic of Ireland.
If you wish to exercise your rights please contact us and we will respond to the request within 30 days.
Your Right to Lodge a Complaint
You as the Data Subject have the right to complain at any time to a data protection supervisory authority in relation to any issues related to our processing of your Personal Data. As our organisation is located in Ireland and we conduct our data processing here, we are regulated for data protection purposes by the Irish Data Protection Commissioner.
You can contact the Data Protection Commissioner as follows:
Phone: +353 57 8684800 or +353 (0)761 104 800
Email: [email protected]
Data Protection Office – Canal House, Station Road, Portarlington, Co. Laois, R32 AP23.
21 Fitzwilliam Square Dublin 2. D02 RD28 Ireland