1. Data Collection Principles
We collect minimal personal data necessary to provide our services to Irish users, including name, email, and age verification. All data collection follows the Data Protection Act 2018 and GDPR guidelines as implemented in Ireland. We never request sensitive personal data unless absolutely necessary for legal compliance. Our systems are designed with privacy-by-default principles, ensuring Irish users only share what's essential. Data is collected through secure forms with explicit consent mechanisms tailored for Irish legal requirements.
2. Information Security Measures
We implement robust security protocols including encryption, access controls, and regular audits to protect Irish users' data. Our servers are located in EU-based data centers with stringent physical security. All staff handling Irish user data undergo mandatory GDPR training. We conduct quarterly penetration testing and maintain an incident response plan approved by Irish data protection specialists. In case of any breach affecting Irish users, we commit to notify the Data Protection Commission within 72 hours as required by law.
3. Third-Party Data Sharing
We may share limited data with trusted partners in Ireland and EU who assist in delivering our services, all bound by strict confidentiality agreements. These include payment processors, analytics providers, and customer support platforms. We never sell Irish users' personal data to third parties. Any international transfers outside EU follow adequacy decisions or standard contractual clauses approved by Irish authorities. A complete list of subprocessors is available to Irish users upon request via our Dublin office.
4. Cookies & Tracking Technologies
Our website uses cookies in compliance with Irish ePrivacy Regulations. Essential cookies enable core functionality for Irish users, while optional cookies enhance experience. We provide granular consent options through our cookie banner, allowing Irish users to select specific cookie categories. Detailed information about each cookie's purpose and duration is available in our Cookie Policy. Irish users can manage preferences at any time through our preference center or browser settings.
5. Your Rights Under Irish Law
As an Irish resident, you have rights including access, rectification, erasure, and data portability under GDPR. Requests can be submitted via email to our Data Protection Officer at dpo@reviewzoneirl.com. We respond to all verified requests within 30 days as required by Irish law. You may also lodge complaints with the Irish Data Protection Commission. We provide free access to your data without undue delay, in line with guidance from the DPC's office in Dublin.
6. Data Retention Policy
We retain Irish users' personal data only as long as necessary for the purposes collected, in accordance with Irish legal requirements. Typical retention periods range from 6 months for browsing data to 7 years for financial records as mandated by Irish revenue. Anonymized data may be kept indefinitely for statistical analysis. Irish users can request early deletion unless we have legal obligations to retain information. Our retention schedule is reviewed annually by our Dublin-based compliance team.
7. International Data Transfers
While we primarily process data within the EU, some services may require transfers outside Europe. All such transfers comply with Irish Data Protection Commission guidelines, using EU-approved mechanisms. We conduct transfer impact assessments for each non-EEA provider. Irish users will be notified of any changes to transfer mechanisms that affect their data. Our contracts with overseas providers include strict data protection clauses vetted by Irish legal experts.