GDPR Compliance

General Data Protection Regulation Compliance Statement

Fully Compliant

100% GDPR compliant operations and data handling

Data Security

Enterprise-grade security and encryption

Your Rights

Full respect for all data subject rights

Our GDPR Commitment

ShamrockAI.ie is fully committed to compliance with the General Data Protection Regulation (GDPR). We have implemented comprehensive policies, procedures, and technical measures to ensure the protection of personal data and respect for individual privacy rights.

Data Protection Principles

We adhere to all six GDPR data protection principles:

1. Lawfulness, Fairness & Transparency

We process data lawfully, fairly, and transparently with clear communication about our practices.

2. Purpose Limitation

Data is collected for specific, explicit, and legitimate purposes only.

3. Data Minimisation

We collect only the minimum data necessary for our stated purposes.

4. Accuracy

We maintain accurate and up-to-date personal data with correction mechanisms.

5. Storage Limitation

Data is retained only as long as necessary for the stated purposes.

6. Integrity & Confidentiality

Appropriate security measures protect against unauthorised access and processing.

Your Data Rights Under GDPR

As a data subject, you have the following rights:

Right of Access (Article 15)

Request a copy of your personal data and information about how it's processed.

Right to Rectification (Article 16)

Correct inaccurate or incomplete personal data.

Right to Erasure (Article 17)

Request deletion of your personal data under certain circumstances.

Right to Restrict Processing (Article 18)

Limit how we process your personal data in specific situations.

Right to Data Portability (Article 20)

Receive your personal data in a structured, machine-readable format.

Right to Object (Article 21)

Object to processing based on legitimate interests or for direct marketing.

Right to Withdraw Consent (Article 7)

Withdraw consent for processing at any time where consent is the legal basis.

How to Exercise Your Rights

To exercise any of your GDPR rights, please contact us using the information below. We will respond to your request within one month (or two months for complex requests).

Data Subject Request Form

Use our secure form to submit data subject requests and ensure proper verification.

Technical and Organisational Measures

We implement comprehensive security measures including:

  • End-to-end encryption for data in transit and at rest
  • Multi-factor authentication and access controls
  • Regular security audits and penetration testing
  • Staff training on data protection and security
  • Incident response and breach notification procedures
  • Data Protection Impact Assessments (DPIAs) for high-risk processing

Data Processing Records

We maintain detailed records of all processing activities as required by Article 30 of GDPR. These records include the purposes of processing, categories of data subjects and personal data, recipients, retention periods, and security measures.

International Data Transfers

When we transfer personal data outside the EEA, we ensure appropriate safeguards are in place, including adequacy decisions, Standard Contractual Clauses (SCCs), or other approved transfer mechanisms.

Data Breach Procedures

We have established procedures to detect, report, and investigate personal data breaches. We will notify the Irish Data Protection Commission within 72 hours of becoming aware of a breach and inform affected individuals when required.

Report a Data Concern

If you believe there has been a data breach or have concerns about our data handling, please contact us immediately.

Contact Our Data Protection Officer

For all data protection matters, you can contact our Data Protection Officer:

team@shamrockai.ie
085 784 9459
Data Protection Officer, ShamrockAI.ie, Dublin, Ireland

Supervisory Authority

If you are not satisfied with our response to your data protection concerns, you have the right to lodge a complaint with the Irish Data Protection Commission:

Irish Data Protection Commission

21 Fitzwilliam Square South, Dublin 2, D02 RD28, Ireland

Phone: +353 57 868 4800

Email: info@dataprotection.ie

Continuous Improvement

We regularly review and update our data protection practices to ensure ongoing compliance with GDPR and to incorporate best practices in data protection and privacy.