GDPR Compliance Statement

Last Updated: May 1, 2025

1. Introduction

At Irish Journeys, we are committed to protecting and respecting your privacy and complying with the General Data Protection Regulation (GDPR). This statement outlines our approach to GDPR compliance.

2. Data Controller

Irish Journeys is the data controller for personal information collected through our website and services. We are responsible for determining the purposes and means of processing your personal data.

3. Legal Basis for Processing

We process your personal data on the following legal bases:

• Contractual Necessity: Processing necessary for the performance of a contract with you (e.g., booking a tour).
• Legitimate Interests: Processing necessary for our legitimate interests, provided these interests do not override your fundamental rights and freedoms.
• Legal Obligation: Processing necessary for compliance with a legal obligation.
• Consent: Processing based on your specific, informed, and unambiguous consent.

4. Your Rights Under GDPR

Under the GDPR, you have the following rights:

• Right to Access: You can request a copy of the personal data we hold about you.
• Right to Rectification: You can request that we correct inaccurate or incomplete personal data.
• Right to Erasure: You can request that we delete your personal data in certain circumstances.
• Right to Restrict Processing: You can request that we restrict the processing of your personal data in certain circumstances.
• Right to Data Portability: You can request to receive your personal data in a structured, commonly used, and machine-readable format.
• Right to Object: You can object to our processing of your personal data in certain circumstances.
• Rights Related to Automated Decision-Making: You have rights related to automated decision-making and profiling.

5. How to Exercise Your Rights

To exercise any of these rights, please contact us using the information provided in the "Contact Us" section. We will respond to your request within one month.

6. Data Security

We have implemented appropriate technical and organizational measures to protect your personal data against unauthorized or unlawful processing, accidental loss, destruction, or damage.

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

8. International Transfers

If we transfer your personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place to protect your data.

9. Data Protection Officer

While we are not required to appoint a Data Protection Officer under the GDPR, we have designated a privacy team responsible for overseeing our data protection practices.

10. Complaints

If you have concerns about our processing of your personal data, please contact us first. You also have the right to lodge a complaint with the Irish Data Protection Commission or another EU supervisory authority.

11. Contact Us

If you have any questions about this GDPR Compliance Statement or our data practices, please contact us at:

Irish Journeys
7 Oaklawn, Knockmay, Portlaoise, Co. Laois, R32 A6YK, Ireland
Phone: +353 83 859 2284
Email: privacy@irishjourneys.com