The Website Shop Ltd, Company Registration Number 563514, is committed to protecting your personal data and complying with the General Data Protection Regulation EU 2016/679 and applicable Irish data protection law.

Data Controller
For the purposes of personal data collected through this website, The Website Shop Ltd acts as the Data Controller.

Personal Data We Collect
We may collect personal data when you contact us via our website, request a quotation, engage our services, or make a payment. This may include your name, company name, email address, phone number, billing details, and any information you choose to provide in correspondence. We may also collect limited technical data automatically, including IP address, browser type, device information, and usage data through cookies and analytics tools where applicable.

Legal Basis for Processing
We process personal data on the following lawful bases: consent where you voluntarily submit information; contractual necessity where processing is required to provide services; legitimate interest where necessary for business communication, service improvement, fraud prevention, or website security; and legal obligation where we are required to retain records for tax, accounting, or regulatory compliance.

Use of Your Data
We use personal data to respond to enquiries, provide services, process payments, maintain business records, improve our website, and comply with legal obligations. We do not sell personal data.

Payment Processing
Where payments are made through our website, payment information is processed securely by third-party payment providers such as Stripe, PayPal, or GoCardless. We do not store or have access to full card details. Payment processing is subject to the privacy policies and terms of the relevant payment provider.

Service Providers
We may use trusted third-party service providers to support our operations, including hosting providers, payment processors, email providers, and analytics services. These providers process data only as necessary to perform their services and are required to comply with applicable data protection standards.

International Data Transfers
Some service providers may process personal data outside the European Economic Area. Where this occurs, appropriate safeguards are implemented in accordance with GDPR requirements.

Data Retention
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including to meet legal, accounting, or reporting obligations.

Data Security
We implement appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure, or destruction. Our website connection is encrypted using SSL technology.

Data Breaches
In the event of a personal data breach, we will assess our legal obligations and, where required, notify the Data Protection Commission and affected individuals in accordance with applicable law.

Your Rights
Under GDPR, you have the right to request access to your personal data, request correction of inaccuracies, request erasure, request restriction of processing, request data portability, object to processing based on legitimate interest, and lodge a complaint with the Data Protection Commission. Requests will be handled within the timeframe required under applicable data protection law.

Cookies
Our website may use cookies and similar technologies to enhance user experience and analyse website traffic. Further information is available in our Cookie Policy.

Contact
If you have any questions regarding this Privacy Policy or wish to exercise your data protection rights, please contact us at [email protected]
.

This policy may be updated from time to time to reflect changes in legal requirements or business practices.

Last updated February 2026.