Shindigplanner processes personal data and non-personal data as a data controller as defined in GDPR.
Information we collect
There are two types of information we collect
- Personal Data
- Non-Personal Data
- Phone Number
- Email Address
- Billing and Payment Information
Statistical and analytical information that cannot be used to identify a person such as:
- IP Address
- Browser Type
- Device Type
- Time/ Date Patterns
How we collect Information
We collect personal data when a website user:
Enters their contact details into one of the enquiry forms on our website
Calls us by phone to enquire about our products and services
Emails us to enquire about our products and services
After initial contact with the above means, we collect further personal data when a customer engages with us via email or phone and/or when they book an event with us.
Why we collect information
We collect personal data for the purpose of performing a service under the lawful processing condition of performing a contract with you or with a view to performing a contract with you.
The personal data we collect is necessary:
- To provide you with the information you have requested on our services & products
- To respond to correspondence you send us
- To book/supply the service/product you wish to purchase
- To send you further information in order to fulfil our services to you
- To communicate with you and to provide you with support while providing our services to you
- To allow you make a payment when you purchase a product/service
We collect non-personal data from visitors to our website in order to get a better understanding of our customers and to improve our website, services and marketing. We collect non-personal data under the lawful processing condition of legitimate interests to ensure our services and products are of the highest quality.
Sharing the information we collect
Shindigplanner will only pass your information to a third party when it is required to fulfil the service or product you have purchased with us. We will not pass your information to anyone else for any other reason. Examples of third parties who we may share your information with include hotels, bed and breakfasts, self-catering accommodations, coach hire companies, bars, restaurants and nightclubs, and activities providers that we contract on your behalf. Any third party will be bound by the same data protection laws in the event of us passing your information to them as part of our service to you.
How we protect your information
Shindigplanner takes the security of all personal and non-personal data very seriously. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the data we collect.
Any communication you make with us between your browser and our website is encrypted. Your data is sent from your browser to our website through Hyper Text Transfer Protocol Secure (HTTPS).
To verify this on each page of our website you will see in the address bar that each page begins with https://. . . To the left of this in the address bar, you will also see the visual indicator of a padlock to indicate that it is a secure https connection. This connection ensures all information is encrypted.
Notwithstanding the secure protocol referenced above, the nature of the internet is such that we cannot guarantee 100% security of data transmission over the internet. However, we will take all reasonable steps to protect and secure your data.
How long we keep your information
We will keep your personal data for as long as is necessary to fulfil our obligations to you. After we have fulfilled our obligations to you, under Irish Law we are obliged to keep your data for a further six years. Any personal data held by us for marketing purposes will be kept until such time as you notify us that you no longer wish it to be retained or until we deem it to have run its course and is no longer necessary to be retained.
The Right to Access: you have the right to request access to the personal data we hold for you. Any access requests will need to be requested in writing or via email. Evidence of identification will be required to ensure personal data is not disclosed to the wrong person.
The Right to Accuracy: you have the right to have personal data rectified if it is inaccurate.
The Right to be Forgotten: you have the right to have your personal data erased from our records provided it doesn’t affect our legal obligations or the data is required for any legal claims.
Updated May 2018