This notice concerns our policy regarding all the information that we record about you. It establishes the conditions under which we may process any information that we collect from you or that you provide to us. This includes information that would identify you and information that could not. By ‘process’ we mean collect, store, transfer, use or otherwise act on information.
If you disagree with any of the points below, your only recourse is to leave the site.
The protection of your privacy and confidentiality is something we do not take lightly. We acknowledge that all visitors to art4you.ie have the right to know that their personal data will not be used for any other purpose than that intended by them and will not find its way into the hands of a third party.
We will maintain the confidentiality of your information and expect that you will do the same with ours.
Our practice is in line with Irish law, including that concerned with the EU General Data Protection Regulation.
The law necessitates that we inform you of your rights and our obligations to you regarding the processing of your personal data. This information is provided at www.knowyourprivacy.org
Excepting what is set out below, we do not share, sell or disclose any of your information to a third party.
We process your information on the bases set out below. Legally we are required to determine on which of six defined bases we process different categories of your personal info and to inform you of the basis of each category.
If any of the bases become irrelevant we will immediately stop processing your data.
If any of these bases change, we will notify you of the change as well as any new basis on which we have determined that we can continue to process your information.
1 Information processed on the basis of a contractual obligation.
When you create an account at art4you.ie or buy a product or service or agree to our terms and conditions in any other way, a contract is made between you and us. Under that contract we are obliged to process your information in the following ways:
- Verify your identity for security purposes
- Sell products or services to you
- Offer suggestions and advice on products or services, or the best way to get the most from our site
As well as a legal contract, we process your information on the basis of consent by you allowing us to use the information prior to a contract.
Also, we may aggregate this information to monitor how we perform in relation to a particular service we provide, or other class information. If we use it in this way, you will not be identifiable.
Until the contract ends or is terminated by either you or us, we will continue to process information.
2 Information processed on the basis of consent.
When performing certain actions on the site without a contractual relationship, such as browsing or requesting more info about our products and services, you consent to have your information processed.
Implicit consent is given sometimes e.g. when you send an email that you expect a reply to.
Except where consent is given, we will not use your information in a way that makes you personally identifiable.
If you permit us to, we may occasionally pass your details to associates who provide products or services that we think might interest you.
We will cease processing information on this basis when you withdraw your consent or when it is reasonably apparent that your consent no longer exists. Your consent will be immediately withdrawn when you instruct us to do so at firstname.lastname@example.org However, this means that you may not be able to use our website or service further.
3 Information processed on the basis of legitimate interests.
Information processed for the purpose of legitimate interests happens after these careful considerations are made:
- Whether the same objective can be reached by other ways
- Whether processing the information is detrimental to you
- Whether you expect us to use the info or consider it reasonable to do so
Some examples of processing info for legitimate interests are:
- Record keeping for the necessary administration of our business
- Replying to unsolicited emails from you to which we determine you expect a response
- Protection and assertion of the rights of any party by law
- Insurance against or management of business risk
- Protection of your interests where we determine that it is our duty to do so
4 Information processed on the basis of legal obligation.
Sometimes we process information in order to comply with the law. For example, we might be obliged to provide information to legal authorities if they have the proper authorisation, such as a court order or search warrant.
5 Information provided for sharing with a third party.
Information you post on art4you.ie may be read, copied, downloaded or used by other people. For example:
- Posting a message on our forum
- Tagging an image
- Reacting to another person’s post
It is up to yourself to decide the privacy level of the info that will be shared in this way. Besides allowing it to be displayed or shared, we do not use this information. However, we do store it and maintain the right to use it in the future in any way we see fit.
Once it is made public, we have no control over what any third party may decide to do with this information. We have no responsibility at any time regarding this.
You may delete personal information you have posted if your request is within reason and there is no legal basis for us to keep it. You may email us at email@example.com
6 Complaints about our website content.
We will look into any complaints you make about our website content. While we investigate, the content will be removed if we are legally required to do so or if we feel it is right to do so.
The right of free speech is a fundamental one and we must determine whose free speech is being obstructed, yours or the person who is responsible for the offending content. We will not act if we think your complaint is without basis or is vexatious.
7 Information in relation to your payment method.
We never take your payment information from either our website or others, so none of our employees have access to it. When you are about to make a payment, we transfer you to a secure page or the website of a reputable payment service provider such as PayPal. We have no control over this page, even if it looks like one of the pages on our website.
8 Information regarding your direct debit.
After a direct debit arrangement has been made between you and us, the information we take from you is transferred to our own bank, Bank of Ireland, for processing. We do keep a copy of this information. We keep the information for as long as the direct debit arrangement lasts.
We are registered under the direct debit guarantee scheme. This necessitates that the bank in question refunds disputed payments without question, pending further enquiry. Direct debits can only be established for payments to beneficiaries that are approved originators of direct debits. Approval requires these beneficiaries to be vetted carefully. After approval they must provide indemnity guarantees through their banks.
9 Job application and employment.
Information relating to a job application may be kept by us for up to three years in case we want to contact the applicant again. If we take you on as an employee, information about you and your work is collected occasionally for the duration of your employment with us. The information will only be used for purposes relevant to your employment. If your employment with us ceases, we may retain the information for up to six years before deleting it.
10 Contacting our support team.
When you send us a message, whether it be by email, phone or through our website, we collect your data in order to reply with the information you requested. For the purposes of efficiency, we record both your message and our reply.
Personally identifying information will be kept by us so as to track our communications and deliver a quality service.
In order to resolve a complaint, we record all the information you have given us in relation to it.
If we need to contact someone else regarding the complaint, we may opt to provide that person with some of this information. We will only do this if it is absolutely necessary. It is a matter of our sole discretion to judge if this is required and what information will be given.
Statistics in relation to the information provided to the source may be compiled by us for the purposes of evaluating the level of service we provide. You will not be personally identifiable through information gathered in this way.
12 Business partner and affiliate information.
This is information we collect from you if you are an affiliate or business partner to us. Through it we can recognise visitors that you have referred to us and give you credit for commissions that result from these referrals. Information allowing us to transfer commission to you is also included.
This information will not be used for any other purpose.
The terms of our agreement and the confidentiality of the information collected will be preserved by us and we expect you, as an affiliate or business partner, to reciprocate.
13 Information collected through our website’s automated systems i.e.
When you visit a website your browser places small text files or ‘cookies’ on your hard drive. These allow information that is gathered about you on one web page to be stored until it is required on another. It makes using a website a more personalised experience and the information collected provides statistics for the website owner to use for the purpose of improving the experience.
Cookies may last for any length of time, from a few days to indefinitely. Your web browser should allow you to delete or disable cookies.
- Tracking how you use our website
- Recording whether specific messages we display have been seen by you
- Keeping you signed in to our site
- Recording your responses to surveys and questionnaires, if you complete them
- Recording a conversation you might have with a member of our support team
14 Personally identifiable information from your browsing activity.
We record all requests from your browser to download web pages and other content on our site.
This gives us information such as your location, your ISP and your IP address. Information about your browser software is also recorded, such as screen resolution and the kind of computer you are using.
This information is used by us in aggregate to evaluate our website’s performance. Together with information we have recorded from previous visits, this data could possibly be used to identify you, even if you are not signed in to art4you.ie
Remarketing involves us putting a cookie on your computer when you browse our site which enables us to advertise our products and services when you go to another website.
16 Information we get from third parties.
Although we never reveal your personal information to third parties (except as specified in this notice), we occasionally get data that is indirectly made up from your personal information from third parties whose services we use. None of this information is personally identifiable.
17 Third party advertising.
When you visit our site, you may come across adverts from third parties. These parties, including their agents and companies working for them, may employ technology that automatically collects information about you when their advert is visible to you.
18 Credit reference.
To help combat fraud, we provide information to credit reference agencies in so far as it relates to clients or customers who tell their credit card issuer to cancel payment to us without having first given an acceptable reason to us for this and without giving us the opportunity to refund their money.
19 Information processed outside then EU.
Our business sometimes involves using outsourced services in countries outside the EU. As a result, data collected within Ireland or other countries could be processed outside the EU. For example, some of the software we use for our website may have been deigned in the U.S. or Australia.
The following are safeguards we use in relation to information processed outside the EU:
- The processor resides in the same corporation as our business and is subject to the same corporate rules regarding information processing
- Our contracts with data processors have protection clauses that include transfer clauses either written or approved by a supervisory authority in the EU
- We follow a code of conduct approved by a supervisory authority in the EU
- We are certified under an approved certification mechanism as provided for in the GDPR
- There is a legally binding agreement or administrative arrangement between us and the data processor that is approved by a supervisory authority in the EU in relation to protecting your information
20 Access to personal information.
After signing into your account on our website, you may review and change personally identifiable information that we possess. Any information that is not given on our site may be obtained by sending an email to firstname.lastname@example.org
After we have received your request, we will let you know when you can expect the information and whether there is a fee for its provision.
21 Removal of information.
Email us at email@example.com to request the removal of personally identifiable information.
Note: this may restrict your getting the most out of our website.
22 Information verification.
To safeguard your information, it is important that we verify your identity before granting you access to and allowing you to change or delete personally identifiable information.
23 Use of the site by children.
We do not sell or market our products or services to children.
Under 18s may use our website only on condition that consent has been given by a parent or guardian.
24 Data encryption.
In order to verify our identity to your browser and to encrypt any information you provide us with, we use Secure Sockets Layer (SSL) certificates. Look for a closed padlock symbol or other trust mark in your browser’s URL bar or tool bar to check that information transferred between us is done so using SSL.
25 Making a complaint.
You also have the right to lodge a complaint with the Data Protection Commissioner.
26 Retention period for personal information.
Except as set out in this notice, we retain your personal information only for as long as we have the following requirements:
- Providing you with the services you have requested
- Complying with other laws such as the period demanded by our tax authorities
- Supporting a claim or defence in court
27 Compliance with the law.
This policy has been compiled so as to comply with the law of every country or legal jurisdiction we do business with. If you think we have failed in this, we would like to hear from you.
However, ultimately the choice is yours whether to use our website or not.
Updating this notice may be necessary from time to time. The terms posted here on the day you use our website apply to you. We recommend that you print a copy for your records.