Privacy Policy
1. Introduction
At Kilmainham Gaol (accessible at kilmainham-gaol.com), we are committed to protecting the privacy, integrity, and security of all users of our website and services. This Privacy Policy outlines how we collect, use, store, and protect your personal data, and explains your rights under applicable data protection regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We treat your personal information with the highest standard of confidence and accountability.
2. Scope of Policy and Data Controller
This Privacy Policy applies to all visitors, users, and others who access or interact with kilmainham-gaol.com. Kilmainham Gaol acts as the data controller for the personal information that we process in accordance with this Privacy Policy. We determine the purposes and means of processing your data.
If you have any questions about this policy or our data practices, you may contact us at [email protected].
3. Categories of Data Processed
We collect, process, and store the following categories of personal data:
– Usage Data: Includes information about how you use our website, such as your IP address, browser type, geographic location, operating system, referral sources, session times, and other diagnostic data.
– Account Data: Collected when you register or provide information through forms. This includes your full name, email address, postal address, and telephone number.
– Profile Data: Includes preferences, purchasing behavior, feedback, and any other profile information you provide by interacting with our services.
– Communication Data: Encompasses messages, inquiries, customer service interactions, and communications sent to or received from our contact forms or email address.
– Technical Data: Includes device type, hardware model, operating system details, browser settings, and other device-level configurations.
– Transaction Data: If you make purchases on kilmainham-gaol.com, we collect financial-related information such as transaction history, delivery details, and payment confirmations. Note: We do not store full payment card details; this is handled securely via our payment processors.
– Preference Data: Marketing and communication preferences, your consent settings, and interests in products or services that you share with us.
4. Legal Bases for Processing (GDPR)
Under the GDPR, we rely on the following legal bases when processing personal information:
– Consent: When you give us explicit permission, for example by opting into marketing email subscriptions.
– Contractual Obligation: When processing is necessary to perform a contract with you, such as providing ticket bookings or completing transactions.
– Legitimate Interest: To enhance user experience, improve website functionality, and safeguard our systems, provided such interests are not overridden by your rights.
– Legal Obligation: In order to comply with statutory responsibilities or regulatory requirements.
5. Your Data Protection Rights
You have the following rights in relation to your personal data:
– Right of Access: You may request access to and a copy of your personal data that we hold.
– Right to Rectification: You may request correction of inaccurate or incomplete data.
– Right to Erasure: Under certain circumstances, you may request the deletion of your data.
– Right to Restriction: You may request that we limit the processing of your data in certain situations.
– Right to Data Portability: You may request to receive your data in a structured, commonly used format that allows for transfer to another controller, where applicable.
To exercise any of the above rights, please contact us at [email protected]. We are committed to responding to your requests lawfully and promptly.
6. Security Measures
We implement robust technical and organizational measures to ensure that your data is protected from unauthorized access, use, disclosure, alteration, or destruction. These include:
– Data encryption during transmission and storage
– Secure access controls and authentication procedures
– Routine security audits and vulnerability scans
– Regular data backups and disaster recovery protocols
– Staff training on data protection and privacy awareness
While we strive to use commercially acceptable means to protect your personal data, no method of transmission over the internet or method of storage is 100% secure.
7. International Transfers
We may transfer and store your personal information outside of your home jurisdiction, including countries outside the European Economic Area (EEA). Such transfers are made in accordance with applicable data protection laws and involve appropriate safeguards, including:
– Standard Contractual Clauses (approved by the European Commission)
– Binding Corporate Rules (where applicable)
– Adequacy decisions by data protection authorities
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which we collected it, including:
– Usage Data: Up to 12 months
– Account and Profile Data: As long as the account remains active and for up to 24 months post-deactivation
– Communication Data: Up to 2 years
– Technical Data: Typically 12–24 months, depending on usage patterns
– Transaction Data: Retained for 6 years, in accordance with financial and legal obligations
– Preference Data: For as long as consent is valid or until it is withdrawn
We may also retain data to enforce our terms, comply with legal obligations, or resolve disputes.
9. Cookie Policy
Kilmainham-gaol.com uses different types of cookies to enhance user experience and analyze website performance:
– Essential Cookies: Required for website functionality, such as navigation and access to secure areas.
– Functional Cookies: Remember your preferences and choices to provide personalized features.
– Analytics Cookies: Collect aggregated data on traffic and usage for site optimization (e.g., Google Analytics).
– Performance Cookies: Monitor performance and identify website flaws for technical enhancement.
10. Cookie Management and Compliance
You have full control over cookie preferences. On your first visit, a cookie management banner will allow you to opt-in or out of non-essential cookies. You may change these preferences at any time using ‘Cookie Settings’ available on the site footer.
Under GDPR and CCPA, you have the right to:
– Withdraw cookie consent at any time
– Access details of data collected via cookies
– Opt out of sale or sharing of personal data (as applicable under CCPA)
Please note that disabling certain cookies may impact the extent of your interaction with kilmainham-gaol.com.
11. Children’s Privacy
We do not knowingly collect personal data from children under the age of 13. If you believe that a child under this age has provided us with personal information, please contact us immediately at [email protected], and we will take appropriate measures to erase such data promptly.
12. Policy Updates and Notification
We reserve the right to amend or update this Privacy Policy at our discretion. Significant changes impacting how we collect or use your personal information will be published on kilmainham-gaol.com and, where required, notified to you directly via email or on-site notification. Continued use of the site following updates indicates your understanding and acceptance of the revised Policy.
13. Contact
If you have any questions, concerns, or requests related to this Privacy Policy or your personal data, please reach out to us at:
Email: [email protected]
We are committed to ensuring your privacy rights are respected and urge you to contact us should you have any concern regarding your data.
Kilmainham Gaol is fully committed to upholding your privacy and ensuring compliance with GDPR, CCPA, and all applicable data protection regulations. For further questions, rights requests, or clarity on any point, please reach out using the contact details above.