Skip to main content

Data Protection

The protection of your data is very important to us. Therefore we follow the legal regulations for data protection (GDPR) and do everything possible to protect your data. The person responsible within the meaning of the Basic Data Protection Regulation and other national data protection laws of the member states of the European Union (EU) and other data protection regulations is the:
In the following, we inform you about the processing of your personal data in the context of the use of our online offer.

Data Protection Officer

Leeson Enterprise Centre,
Altamont St, Killaghoor,
Westport,
Co. Mayo,
F28 ET85

Mail: info@wordpressupdates.ie

1. Storage duration

In general, we delete your personal data when they are no longer necessary for the purposes for which they were collected or otherwise processed.

If we have asked for your consent and you have given it, we will delete your personal data if you withdraw your consent and there is no other legal basis for the processing.

We will erase your personal data if you object to the processing and there are no overriding legitimate grounds for the processing or if you object to the processing for the purposes of direct marketing or related profiling.

If deletion is not possible because processing is still necessary to comply with a legal obligation (statutory retention periods, etc.) to which we are subject or to assert, exercise or defend legal claims, we will restrict the processing of your personal data.

You can also find more information about the storage period in the following passages.

2. Your Rights

You have the following rights with regard to your personal data:

– Right to information

– Right to rectification

– Right to erasure

– Right to restriction of processing

– Right to object to the processing

– Right to data portability

You have the right to object, on grounds relating to your particular situation, at any time to processing of your personal data which is based on point (e) or (f) of Article 6(1) GDPR, including profiling based on those provisions. We will then no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the establishment, exercise or defense of legal claims.

If we process your personal data for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such marketing, which includes profiling to the extent that it is related to such direct marketing. We will then no longer process your personal data for these purposes.

You have the right to revoke consent to the processing of your personal data at any time, if you have given us such consent. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

You have the right to complain to a supervisory authority about our processing of your personal data.

3. Provision of your personal data

The provision of your personal data is generally not required by law or contract and is not necessary for the conclusion of a contract. You are generally not obliged to provide your personal data. If this should nevertheless be the case, we will point this out to you separately when collecting your personal data (for example by marking the mandatory fields in input forms).

Failure to provide your personal data regularly results in us not processing your personal data for one of the purposes described below and you not being able to take advantage of an offer related to the respective processing (i.e. without providing your email address, you will not receive our newsletter).

4. Web Hosting
We use external services for web hosting. These services may have access to personal data that is processed in the context of the use of our online offer. For more information about the services used, the scope of data processing and the technologies and processes involved in the use of the respective services, please refer to further information about the services we use at the end of this passage and the links provided there.

Hetzner Web Services

Provider: Hetzner Online GmbH

Website: https://www.hetzner.com

Further information & data protection: https://www.hetzner.com/legal/privacy-policy/

We save and use your personal data only to process your orders and to get in touch with you. If you subscribe to our customer newsletter, we also use your email address to send the newsletter to you. We will automatically send you status messages from hetzner-status.de if you have previously changed your settings on our customer administration interface in which you request these messages. We also save and process data that job applicants provide us as part of the job application process.

Amazon Web Services

Provider: Amazon Web Services EMEA SARL, Luxembourg.

Website: https://aws.amazon.com

Further information & data protection: https://aws.amazon.com/de/legal/

Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.
The provider has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

Protocol Internet Technology Ltd t/a Hosting Ireland (“Hosting Ireland”)

Provider: The General Data Protection Regulation ((EU) 2016/679).

Website: https://www.hostingireland.ie

Further information & data protection: https://www.hostingireland.ie/dataprocessingagreement.php

The General Data Protection Regulation ((EU) 2016/679) and any national implementing laws, regulations and secondary legislation, as amended or updated from time to time, in Ireland and then (iii) any successor legislation to the GDPR or the Data Protection Acts 1988 & 2003

5. Web server log files

We process your personal data in order to be able to display our online offer and to guarantee the stability and security of our online offer. Information (for example, requested element, accessed URL, operating system, date and time of request, browser type and version used, IP address, protocol used, amount of data transferred, user agent, referrer URL, time zone difference to Greenwich Mean Time (GMT) and/or HTTP status code) is stored in so-called log files (access log, error log, etc.).

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the proper display of our online offering and ensuring the stability and security of our online offering.

6. Security

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest here is your clear identification in order to prevent unauthorized access. If the processing is necessary to fulfill a contract with you or to carry out pre-contractual measures based on your request, the legal basis for the processing is also Art. 6 para. 1 lit. b GDPR.

We use external services for two-factor authentication. For more information about the services used, the scope of the data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place when using the respective services, and, if applicable, information about the logic involved and the scope and intended effects of such processing for you, please refer to the further information about the services we use at the end of this passage and the links provided there.

Authy

Provider: Twilio Ireland Limited, Ireland.

Website: https://www.twilio.com/de/authy-static

Further information & data protection: https://www.twilio.com/legal/tos and https://www.twilio.com/legal/privacy

Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.
The provider has signed up to the EU-US Data Privacy Framework(https://www.dataprivacyframework.gov ), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

7. Contact

If you contact us, we will process your personal data to respond to your contact.

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the processing of your contact. If the processing is necessary to fulfill a contract with you or to carry out pre-contractual measures based on your request, the legal basis for the processing is also Art. 6 para. 1 lit. b GDPR.

We use external services to provide and maintain our channels for contact and communication. These services may have access to personal data that is processed in the context of contacting us. For more information about the services used, the scope of data processing and the technologies and processes involved in the use of the respective services, please refer to the further information about the services we use and the links provided there:

Gmail

Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.

Website: https://www.google.com/intl/de/gmail/about/

Further information & data protection: https://policies.google.com/?hl=en

The transfer of personal data to third countries depends on the respective Google service and is subject to the various EU standard contractual clauses, insofar as these are offered by Google. Further information on this and Google’s responsibility can be found at the following link: https://business.safety.google/gdpr/. You can view a copy of the EU standard contractual clauses there.
Google has signed up to the EU-US Data Privacy Framework(https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

To support the processing of your contact, we use support systems (appointment booking systems, live chats, ticket systems or help desks, etc.) and employ external services for this purpose. These services may have access to personal data that is processed when you contact us via a support system. Further information on the services used, the scope of data processing and the technologies and processes involved in the use of the respective services can be found below in the further information on the services used by us and under the links provided there:

Hetzner Web Services

Provider: Hetzner Online GmbH

Website: https://www.hetzner.com

Further information & data protection: https://www.hetzner.com/legal/privacy-policy/

We save and use your personal data only to process your orders and to get in touch with you. If you subscribe to our customer newsletter, we also use your email address to send the newsletter to you. We will automatically send you status messages from hetzner-status.de if you have previously changed your settings on our customer administration interface in which you request these messages. We also save and process data that job applicants provide us as part of the job application process.

8. Cookies & similar technologies

Cookies are used. Cookies are text information stored on your terminal device. A distinction is made between session cookies, which are deleted immediately after you close your browser, and persistent cookies, which are only deleted after a certain time.

In addition to cookies, similar technologies (tracking pixels, web beacons, etc.) may also be used. The following statements on cookies also apply to similar technologies. Likewise, these statements apply to further processing in connection with cookies and similar technologies (analysis & marketing, etc.). This also applies in particular to any consent you may have given for the use of cookies. This also extends to other technologies and to further processing in connection with cookies and similar technologies.

Cookies can be used to enable the use of certain functions. Cookies can also be used to measure the reach of our online offer, to design it according to needs and interests and thus to optimize our online offer and our marketing. Cookies can be used by us and by external services.

We use a consent tool to manage the cookies used and the related consents. Details about the cookies used (purpose, storage period, external service, etc.) and the consent tool can be found in the following passages and the consent tool we use.

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the management of the cookies used and the related consents. Depending on the purpose of the processing, our legitimate interests can be found in the following passages.

9. Registration and ordering

If you register for a service or place an order, we process your personal data in order to process and handle your order and to fulfill the associated rights and obligations. As part of the registration or order process, it is necessary for you to create a customer account so that you can use our services. We provide you with our contract texts digitally and enable you to countersign them by electronic signature. 

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the processing and handling of your registration or your order. If the processing is necessary to fulfill a contract with you or to carry out pre-contractual measures based on your request, the legal basis for the processing is also Art. 6 para. 1 lit. b GDPR.

Recipients of your personal data may be third parties (shipping service providers, banks, tax advisors, lawyers, authorities, etc.), insofar as this is necessary for the processing and handling of your registration or your order and the associated rights and obligations.

We use external services for the digital provision of our contract texts and the possibility of countersigning them with an electronic signature. We transmit your personal data to these services insofar as this is necessary for the electronic signature. For more information about the services used, the scope of data processing, and the technologies and processes involved in the use of the respective services, please refer to the additional information about the services we use at the end of this passage and the links provided there.

We use external services to process payments. We transmit your personal data to these services insofar as this is necessary for the processing of payments. For more information about the services used, the scope of data processing and the technologies and processes involved in the use of the respective services, please refer to the additional information about the services we use at the end of this passage and the links provided there.

Stripe

Provider: Stripe Payments Europe, Limited (“SPEL”); Stripe Technology Europe, Limited (“Stripe PSP”)

Website: https://stripe.com/ie/legal/ssa

Further information & data protection: hhttps://stripe.com/ie/legal/data-privacy-framework

Only businesses (including sole proprietors) and non-profit organisations located in Ireland are eligible to apply for a Stripe Account and use the Services. Stripe Group may provide Services to you or your Affiliates in other countries or regions under separate agreements. You and your Representative must not attempt to create a Stripe Account on behalf of or for the benefit of a user whose use of the Stripe services was suspended or terminated by Stripe, unless Stripe approves otherwise.

10. Email box
We use external services for the provision and maintenance of the email boxes that can be booked for a fee. These services may have access to personal data that is processed when contacting us. Further information on the services used, the scope of data processing and the technologies and processes involved in the use of the respective services can be found below in the further information on the services used by us and under the links provided there:

Hetzner Web Services

Provider: Hetzner Online GmbH

Website: https://www.hetzner.com

Further information about emails: https://docs.hetzner.com/konsoleh/account-management/

With a little help from this function on konsoleH, you can manage your email accounts. You can create, change, and delete new accounts and aliases (redirects).

11. Care Reports

If we have asked for your consent and you have given it, we will process your email address in order to carry out care Reports and, if necessary, other personal data in order to address you personally.

We us MainWP to centralised WordPress management for all clients and on a monthly bases email a Care Report that outlines your website performance and maintenance of website themes, plugins and core framework.   

MainWP software

Provider: Sick Marketing, LLC d/b/a MainWP, a(n) Limited Liability Company

Website: https://mainwp.com

Further information & data protection: https://mainwp.com/privacy-policy/

We save and use your personal data only to process your orders and to get in touch with you. If you subscribe to our customer newsletter, we also use your email address to send the newsletter to you. We will automatically send you status messages from hetzner-status.de if you have previously changed your settings on our customer administration interface in which you request these messages. We also save and process data that job applicants provide us as part of the job application process.

12. Analysis & marketing

We process your personal data in order to measure the reach of our online offer, to design it according to needs and interests and thus to optimize our online offer and our marketing.

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the optimization of our online offer and our marketing.

We use external services for analysis and marketing. This may also involve profiling (for purposes of advertising, personalized information, etc.). Profiling may also take place across services and devices. For more information about the services used, the scope of data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place when using the respective services, and, if applicable, information about the logic involved and the scope and intended effects of such processing for you, please refer to the further information about the services we use at the end of this passage and the links provided there.

Facebook pixel with custom audiences

Provider: Meta Platforms Ireland Limited, Ireland. Meta Platforms Ireland Limited is a subsidiary of Meta Platforms, Inc, United States of America.

Website: https://www.facebook.com/business/

Further information & data protection: https://developers.facebook.com/docs/meta-pixel/implementation/gdpr/

The General Data Protection Regulation (GDPR) creates consistent data protection rules across Europe. It applies to companies (regardless of where they are based) who process personal data about individuals in the EU.

While many of the principles build on current EU data protection rules, the GDPR has a wider scope, more prescriptive standards and substantial fines. For example, it requires a higher standard of consent for using some types of data and broadens individuals’ rights with respect to accessing and porting their data.

Businesses who advertise with the Facebook companies can continue to use Facebook platforms and solutions in the same way they do today. Each company is responsible for ensuring their own compliance with the GDPR, just as they are responsible for compliance with the laws that apply to them today.

Google Ads conversion tracking

Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.

Website: https://support.google.com/google-ads/answer/1722022

Further information & data protection: https://policies.google.com

Google Ads conversion tracking

Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.

Website: https://adsense.google.com/start/

Further information & data protection: https://policies.google.com

The transfer of personal data to third countries depends on the respective Google service and is subject to the various EU standard contractual clauses, insofar as these are offered by Google. Further information on this and Google’s responsibility can be found at the following link: https://business.safety.google/gdpr/. 

Google has signed up to the EU-US Data Privacy Framework(https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

Google Analytics

Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.

Website: https://marketingplatform.google.com/about/analytics/

Further information & data protection: https://support.google.com/analytics/answer/6004245?hl=en

The transfer of personal data to third countries depends on the respective Google service and is subject to the various EU standard contractual clauses, insofar as these are offered by Google. Further information on this and Google’s responsibility can be found at the following link: https://business.safety.google/gdpr/. You can request a copy of the EU standard contractual clauses from us.

Google has signed up to the EU-US Data Privacy Framework(https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

Google Remarketing

Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.

Website: https://support.google.com/google-ads/answer/2453998

Further information & data protection: https://policies.google.com

The transfer of personal data to third countries depends on the respective Google service and is subject to the various EU standard contractual clauses, insofar as these are offered by Google. Further information on this and Google’s responsibility can be found at the following link: https://business.safety.google/gdpr/. You can request a copy of the EU standard contractual clauses from us.

Google has signed up to the EU-US Data Privacy Framework(https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

Google Tag Manager

Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.

Website: https://support.google.com/tagmanager/answer/6102821

Further information & data protection: https://policies.google.com

The transfer of personal data to third countries depends on the respective Google service and is subject to the various EU standard contractual clauses, insofar as these are offered by Google. Further information on this and Google’s responsibility can be found at the following link: https://business.safety.google/gdpr/. You can request a copy of the EU standard contractual clauses from us.

Google has signed up to the EU-US Data Privacy Framework(https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

Optinmonster

Provider: Retyp, LLC, United States of America.

Website: https://optinmonster.com/

Further information & data protection: https://optinmonster.com/privacy/ and https://optinmonster.com/gdpr/

Facebook

Provider: Meta Platforms Ireland Limited, Ireland. Meta Platforms Ireland Limited is a subsidiary of Meta Platforms, Inc, United States of America.

Website: https://www.facebook.com/

Further information & data protection: https://developers.facebook.com/docs/plugins/, https://www.facebook.com/legal/terms/information_about_page_insights_data

The provider has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission

Instagram

Provider: Meta Platforms Ireland Limited, Ireland. Meta Platforms Ireland Limited is a subsidiary of Meta Platforms, Inc, United States of America.

Website: https://www.instagram.com

Further information & data protection: https://help.instagram.com/581066165581870 and https://help.instagram.com/519522125107875

The provider has signed up to the EU-US Data Privacy Framework(https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission

LinkedIn

Provider: If you are located in the EU, the European Economic Area (EEA) or Switzerland, this service is provided by LinkedIn Ireland Unlimited Company, Ireland. If you are located outside the EU, the European Economic Area (EEA) or Switzerland, this service is provided by LinkedIn Corporation, United States of America.

Website: https://www.linkedin.com

Further information & data protection: https://privacy.linkedin.com/gdpr 

X Corp (previously: Twitter)

Provider: If you live within the European Union, EFTA States or the United Kingdom, the controller is Twitter International Company, Ireland. If you live in the United States of America or any other country outside the European Union, EFTA States or the United Kingdom, the controller is Twitter, Inc, United States of America.

Website: https://x.com

Further information & data protection: https://x.com/en/privacy 

13. Further tools/plug-ins

We use tools to integrate the web applications we use and to automate workflows in order to optimize our online offering. 

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the optimization of our online offer.

Further information about the services we use can be found at the end of this passage under the links provided there.

YOOtheme

Provider: YOOtheme GmbH
WordPress Template builder for website. 

Website: https://yootheme.com

Further information & data protection: https://yootheme.com/privacy

WPForms™

Provider: WPForm
WPForms is a drag and drop WordPress form builder that’s both easy and powerful. WPForms allow you to create beautiful contact forms, subscription forms, payment forms, and other type of forms for your site in minutes
WPForms LLC (“WPForms”) operates several websites including WPForms.com. It is WPForms’s policy to respect your privacy regarding any information we may collect while operating our websites.

Website: https://wpforms.com

Further information & data protection: https://wpforms.com/privacy-policy/

Akeeba Ltd

Provider: Akeeba Admin
Perform maintenance tasks. Protection against hackers. Optimise your site. All in one
Provider: Akeeba Backup
Security backups. Taking a snapshot of your site should your server fail, or a hacker exploit some security hole to deface or compromise your site

Website: https://www.akeeba.com/

Further information & data protection: https://www.akeeba.com/privacy.html