RMDK Consultancy Privacy Policy
Overview
What you need to know in brief.
www.rmdkconsultancy.ie is the website of RMDK Consultancy. This means that RMDK Consultancy are the “Data controllers” of this website. We operate this website for two key purposes, for Communication and for eCommerce. We use the lawful bases of consent and legitimate interests for processing personal data. We use a limited amount of third parties that process personal data either directly on our website or indirectly through external links to the service providers own webpage. We will never knowingly engage in any practices that will bring harm to you through your interaction with this website. We ask you to read this Privacy Notice and Cookie Notice in full prior to your engagement and if you have any questions and concerns to contact us at accounts@rmdkconsultancy.ie This Notice may be updated from time to time. Last updated: January 2021
Full Notice
www.rmdkconsultancy.ie is the website of RMDK Consultancy. This means that RMDK Consultancy are the “Data controllers” of this website. Our registered office address is 82 Grahams Court, Wicklow Town, Co. Wicklow A67 NT20
We have two main purposes for operating this website: Community and Communication.
Communication
We use this website to communicate information about the services and resources available in our business. It is also used to communicate information though Blog Posts and News. In addition, we have a presence on social networking platforms such as LinkedIn and Twitter.
eCommerce
We use this website to enable customers to make consultation bookings through the website. We also provide Resources for sale through an online shop.
- We operate to the highest standards of practice
- We keep the privacy of the users to the forefront of design and operation
- We only collect minimal personal data
- We only use third party services that we trust
- We review and reflect to ensure security is appropriate and adequate
- We will never knowingly cause harm by misusing personal data
We collect a minimal amount of personal data through our website.
The table below shows the personal data we collect, why we collect it, our lawful basis under GDPR and additional information that may be of use. Personal data may be retained for compliance with a legal obligation. We obtain this information from you directly if you fill out the contact form or use the eCommerce tools. We also collect some information automatically when you open the webpage, see our Cookie Policy for more information.
If you are a client with RMDK Consultancy, further personal information may be collected which will be outlined in contracts prior to work commencing. A copy of the Organisational Data Protection Policy is available upon request.
| Type of Personal Data | Lawful Basis | Why collected | Additional Information |
|---|---|---|---|
| Contact information such as name and email | Consent | Calendar Booking | This service is operated through WooCommerce Bookings |
| Personal information and payment information | Consent | To process payments | This service is operated through WooCommerce and Stripe |
| IP address from which you accessed the website, the pages you visit, information about your device type, operating system type and browser type | Legitimate interest but you must consent first through our cookie banner | To help us understand how users interact with our website, to develop and improve our services and to enhance our data security | This information is anonymous. This information is gathered through Google Analytics. See our cookie notice |
We use a small number of third-party service providers on our website.
We have chosen these service providers for a number of reasons including their strong approach to privacy. We review these services, including their privacy policies and cookie policies on a regular basis. We recommend that you read the Privacy Policies and Cookie Policies of the services. Where appropriate, we have Data Processing Agreements with, or clauses included in the terms of services of our chosen providers.
Some of these third-party services are international organisations. As such, they may transfer personal data outside the EU/EEA. In the case of transferring personal data to the US, these companies are all Privacy Shield Compliant. The European Court of Justice ruling on 16th July 2020 invalidated the Privacy Shield. We are considering the impacts of this ruling on our relationships with these services. For more information on how these services manage international data transfers, please review their privacy policies.
The table below provides information about the service, why we are using it, additional information and links to their Privacy and Cookie notices. Please be aware that when you click these links, you are leaving our website and we have no control over these third-party websites use of personal data or cookies.
| Name of Service | Reason we use it | If I do not want this service, what can I do | Additional Information | Link to Service Privacy and Cookie Policy |
|---|---|---|---|---|
| WordPress | This is the software used for the website | This is not applicable | See Security | WordPress.org for more information about the core software security | WordPress Privacy Policy WordPress Cookie Policy |
| Contact Form 7 | This is used for the contact form | You can contact us directly by email. | The information is used to contact you at your request. Your email will only be used for the purpose for which you have provided it and it will not be added to a mailing list.
As part of the mail server system, each sender and receiver are captured on the server as is standard practice for all mail servers. The content of the submission form is sent directly to the recipient email address that is specified. By default, the website platform does not store contact form submissions. |
Contact Form 7 |
| WooCommerce | This service enables you to buy items from our online store | You can contact us directly by email. | If you turn off functional cookies, you will not be able to view some of the content on the website.
Turning off functional cookies may affect other aspects of the website. |
About WooCommerce WooCommerce Cookie Policy |
| Stripe | This service is used as a Payment Service Provider | You can contact us directly by email. | Stripe is a certified PCI Service Provider Level 1. Security protocols include encryption at rest with AES-256, communications encryption and HTTPS for secure connections.
Learn more about Security at Stripe |
Stripe Privacy Policy |
| Microsoft 365 | For email provision | You can contact us by telephone | Microsoft Privacy Statement | |
| Blackstairs Web Design Ltd | This Company is used to host the website | This is not applicable | This is a contracted service provided to host the website. A DPA is in place with this service provider. | Blackstairs Web Design Ltd Privacy Statement |
| Amazon Web Service | This service is used as the infrastructure service of the website. | This is not applicable | The primary storage location is Cork, Ireland. No data is transferred outside the EEA. | AWS Privacy Policy |
We have a presence on social networking platforms such as LinkedIn and Twitter. These accounts are used to post information such as notices about our events and information related to our work. These accounts are not monitored. Please be aware that any responses to our content on these social media platforms is done so through your own choice, at your own risk and without expectation of privacy.
We say this because we are not able to control how other users on these platforms may act. We are also not able to control how these platforms may use your personal data nor do we endorse how these services use personal data.
The table below lists our social media account platforms with links to their privacy and cookie notices. We advise you to read these policies in advance of using their services. Please be aware that when you click these links, you are leaving our website and we have no control over these third-party websites use of personal data or cookies.
| Social Media platform | Links to Policies |
|---|---|
| LinkedIn Privacy Policy | |
| Twitter Privacy Policy |
Our website processes a small amount of personal data. However, we take our duty to protect this data very seriously and have in place technical and organisational safeguards to do this.
Examples of technical safeguards include regular security testing; weekly website backups; disaster recovery systems.
Examples of organisational safeguards include organisational policies, procedures, and handbooks and ongoing training.
To the best of our ability, we will keep any personal data safe. However, no system or transmission over the Internet is 100% secure. This means that we are unable to absolutely guarantee the security of personal data.
If you become aware of something that gives your concern about the security of your personal data, please contact accounts@rmdkconsultancy.ie
RMDK Consultancy is an organisation committed to ensuring that the rights and freedoms of our website users are respected and that you as a data subjects are enabled to exercise your rights.
Under data protection law, you have rights including:
- Your right of access – You have the right to ask us for copies of your personal information.
- Your right to rectification – You have the right to ask us to rectify information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete.
- Your right to erasure – You have the right to ask us to erase your personal information in certain circumstances.
- Your right to restriction of processing – You have the right to ask us to restrict the processing of your information in certain circumstances.
- Your right to object to processing – You have the the right to object to the processing of your personal data in certain circumstances.
- Your right to data portability – You have the right to ask that we transfer the information you gave us to another organisation, or to you, in certain circumstances.
- You are not required to pay any charge for exercising your rights. If you make a request, we have one month to respond to you. These rights are not absolute and there may be times when we are not able to fulfil your request but we will always explain that to you.
Please contact us at accounts@rmdkconsultancy.ie if you wish to make a request or receive a copy of our Organisational Data Protection Policy.
We hope that you have no need to complain, but if you do, please contact us first at accounts@rmdkconsultancy.ie and we hope that we will be able to resolve it in a fair and amicable manner.
You have the right to complain to our Supervisory Authority
Data Protection Commission
21 Fitzwilliam Square South
Dublin 2
D02RD28
Ireland
Ph: +353 (0)761 104 800
Ph: +353 (0)57 868 4800
You also have the right to a judicial review. Please see www.dataprotection.ie for more information.