Privacy Policy
Updated: 20 January 2026
1. Introduction
Divnotestech Studio ("we," "our," or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, and safeguard your information when you visit our website (divnotestech.com), interact with us, or participate in our workshops.
We comply with the General Data Protection Regulation (GDPR), the Data Protection Act 2018, and all applicable Irish data protection laws. This policy outlines your rights regarding your personal data and our obligations to you.
2. Data Controller Information
Divnotestech Studio is the data controller responsible for your personal data.
Contact Details:
Divnotestech StudioMerchants Road, Victoria Pl,
Eyre Square, Galway, H91 FPK5
Ireland
Phone: +353 91 395 405
Email: privacy@divnotestech.com
3. Personal Data We Collect
We may collect the following types of personal data:
3.1 Information You Provide to Us
- Identity Data: Full name, title, date of birth (if required for age verification)
- Contact Data: Email address, telephone number, postal address
- Booking Data: Workshop preferences, dates, special requests, dietary restrictions or allergies
- Payment Data: Payment card details (we do not store complete payment card information)
- Health Data: Information about allergies or medical conditions relevant to workshop participation (with your explicit consent)
- Communications: Content of emails, messages, or phone calls between us
- Feedback: Reviews, survey responses, testimonials
3.2 Information We Collect Automatically
- Technical Data: IP address, browser type and version, operating system, device information
- Usage Data: Information about how you use our website, including page views, time spent on pages, navigation paths
- Cookie Data: Information collected through cookies and similar technologies (see our Cookie Policy)
4. How We Collect Your Personal Data
We collect personal data through:
- Direct interactions (when you book a workshop, contact us, or provide feedback)
- Automated technologies or interactions (when you visit our website)
- Third parties (payment processors, booking platforms)
5. How We Use Your Personal Data
We use your personal data for the following purposes:
| Purpose | Types of Data | Legal Basis |
|---|---|---|
| To register you as a workshop participant | Identity, Contact, Booking | Performance of a contract with you |
| To process payments | Identity, Contact, Payment | Performance of a contract with you |
| To manage our relationship with you | Identity, Contact, Communications | Performance of a contract with you; Legitimate interests |
| To ensure your safety during workshops | Identity, Health | Explicit consent; Vital interests |
| To send you information about our workshops | Identity, Contact | Consent; Legitimate interests |
| To improve our website and services | Technical, Usage | Legitimate interests |
| To comply with legal obligations | Identity, Contact, Booking, Payment | Legal obligation |
6. Legal Bases for Processing
We rely on the following legal bases for processing your personal data:
6.1 Consent
Where you have given clear consent for us to process your personal data for a specific purpose. You can withdraw your consent at any time.
6.2 Performance of a Contract
Where processing is necessary for the performance of a contract with you (such as providing the workshop you have booked) or to take steps at your request before entering into a contract.
6.3 Legal Obligation
Where processing is necessary for compliance with a legal obligation to which we are subject.
6.4 Vital Interests
Where processing is necessary to protect your vital interests or those of another person (such as health and safety during workshops).
6.5 Legitimate Interests
Where processing is necessary for our legitimate interests or those of a third party, provided your interests and fundamental rights do not override those interests. Our legitimate interests include:
- Providing, improving, and promoting our services
- Managing our relationship with you
- Understanding how our website is used
- Preventing fraud and ensuring the security of our business
7. Data Sharing and Transfers
7.1 Third-Party Service Providers
We may share your personal data with the following categories of third parties:
- Payment processors to handle workshop payments
- Email service providers for communications
- Booking and scheduling platforms
- Website hosting and maintenance providers
- Analytics providers to help us improve our website
All third-party service providers are required to respect the security of your personal data and to treat it in accordance with the law.
7.2 International Transfers
Some of our third-party service providers may be based outside the European Economic Area (EEA), which means their processing of your personal data may involve a transfer outside the EEA.
Whenever we transfer your personal data outside the EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:
- Transferring to countries that have been deemed to provide an adequate level of protection by the European Commission
- Using specific contracts approved by the European Commission (Standard Contractual Clauses)
- Transferring to providers based in the US that are part of approved certification mechanisms
8. Data Security
We have implemented appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorized way, altered, or disclosed. These measures include:
- Encryption of sensitive data
- Secure access controls
- Regular security assessments
- Staff training on data protection
We have procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
9. Data Retention
We will only retain your personal data for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for personal data, we consider:
- The amount, nature, and sensitivity of the personal data
- The potential risk of harm from unauthorized use or disclosure
- The purposes for which we process your personal data
- Whether we can achieve those purposes through other means
- Legal requirements
Typical retention periods:
- Workshop booking data: 3 years after the workshop date
- Payment information: 7 years for tax purposes
- Marketing preferences: Until you opt out or withdraw consent
- Website usage data: 26 months
10. Your Legal Rights
Under data protection laws, you have the following rights:
10.1 Right of Access
You can request copies of your personal data.
10.2 Right to Rectification
You can request that we correct inaccurate or incomplete personal data.
10.3 Right to Erasure
You can request that we delete your personal data in certain circumstances.
10.4 Right to Restrict Processing
You can request that we temporarily or permanently stop processing your personal data.
10.5 Right to Data Portability
You can request a copy of your personal data in a structured, machine-readable format and/or request that we transmit this data to another controller.
10.6 Right to Object
You can object to our processing of your personal data based on legitimate interests or for direct marketing.
10.7 Rights Related to Automated Decision Making
You have rights related to automated decision making and profiling.
To exercise any of these rights, please contact us using the details in Section 2. We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data. We will respond to all legitimate requests within one month.
11. Cookies
Our website uses cookies and similar technologies to distinguish you from other users. This helps us provide you with a good experience when you browse our website and allows us to improve our site.
For detailed information on the cookies we use, the purposes for which we use them, and how you can exercise your choices regarding cookies, please see our Cookie Policy.
12. Third-Party Links
Our website may include links to third-party websites, plug-ins, and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. We encourage you to read the privacy policy of every website you visit.
13. Children's Privacy
Our website and services are not intended for children under 18 years of age. We do not knowingly collect personal data from children under 18. If you are a parent or guardian and believe we may have collected information about your child, please contact us immediately.
14. Changes to This Privacy Policy
We may update this privacy policy from time to time. We will notify you of significant changes by posting the new privacy policy on our website and, where appropriate, sending you a notification. The date the privacy policy was last revised is identified at the top of the page.
15. Complaints
If you have any complaints about our handling of your personal data, please contact us first so that we can try to resolve the issue. You also have the right to lodge a complaint with the Irish Data Protection Commission:
Data Protection Commission21 Fitzwilliam Square South
Dublin 2
D02 RD28
Ireland
16. Contact Us
If you have any questions about this privacy policy or our privacy practices, please contact us:
Divnotestech StudioMerchants Road, Victoria Pl,
Eyre Square, Galway, H91 FPK5
Ireland
Phone: +353 91 395 405
Email: privacy@divnotestech.com