Privacy Policy

PRIVACY NOTICE

THE J.O.D. CONTINUING THE CONVERSATION COMPANY DESIGNATED ACTIVITY COMPANY

(Fermoyle, Fanore, Clare, Ireland)

  1. Introduction
    1. The J.O.D. Continuing the Conversation Company Designated Activity Company and any affiliates it may have (the “Company” or, in this privacy notice, “we”, “us”, “our”) is strongly committed to protecting your Personal Data (as defined below). This Privacy Notice sets out how we collect, use and protect your Personal Data. Please read the following carefully to understand our practices regarding your Personal Data and how we treat and safeguard it.
    2. This notice (“Notice”) has been developed to ensure our Event or Tour Applicants, Event or Tour Participants, Website Users and all other Data Subjects whose Personal Data is processed under the control of the Company feel confident about the privacy and security of Personal Data, and to meet our obligations under EU Regulation 679/2016 General Data Protection Regulation (“GDPR”) and the Data Protection Acts of Ireland 1988-2018 (together “Data Protection Law”).
    3. For the purposes of this Notice, Personal Data is information that identifies you as an individual or is capable of doing so (“Personal Data”)

    4. We must comply with the data protection principles set down in Data Protection Law and this Notice applies to all Personal Data collected, processed and stored by us that is subject to the laws described above. By providing us with information, you accept and agree to the practices described in this Notice.
    5. For the purposes of Data Protection Law, the Company is the Data Controller of your Personal Data. You will find our contact details in the “Contact us” section below.
    6. The terms “Data Subjects”, “Data Controller”, “Data Processor” and “process”, when used in this Notice, have the meanings given to them in Data Protection Law, unless otherwise indicated.
    7. This privacy notice applies to this website, https://www.johnodonohue.com/, and all related company websites and domains. Our websites may provide links to third-party websites for your convenience and information. We are not responsible for the privacy practices or the content of such websites or for the privacy policies and practices of other third parties.
  2. What kinds of Personal Data do we collect?
    1. We may collect the following types of Personal Data in connection with our relationship with you:
      1. (a) Tour Applicants and Tour Participants:
        1. (i) identity data (such as name, title, gender, nationality)
        2. (ii) contact details (such as phone number, email address, home address)
        3. (iii) financial information (such as bank account details, PayPal account details, billing address)
        4. (iv) health information (such as general physical health, levels of physical activity)
        5. (v) dietary information (such as details any special dietary requirements, allergies or intolerances you may have)
        6. (vi) travel information (such as flight details)
        7. (vii) emergency contact information (such as name of emergency contact, relationship to you, phone number, home address, email address)
        8. (viii) any information you provide in correspondence to us
      2. (b) Attendees of our ticketed events
        1. (i) identity data (such as name, title, gender, nationality)
        2. (ii) contact details (such as phone number, email address, home address)
        3. (iii) financial information (such as bank account details, PayPal account details, billing address)
        4. (iv) dietary information (such as details any special dietary requirements, allergies or intolerances you may have)
        5. (v) emergency contact information (such as name of emergency contact, relationship to you, phone number, home address, email address)
        6. (vi) any information you provide in correspondence to us
      3. (c) browsers of Company’s website:
        1. (i) name, phone number, email address, etc.
        2. (ii) any information you provide in correspondence to us
  3. Legal basis for processing
    1. We rely on the following legal bases under GDPR in processing Personal Data:
      1. (a) Where it is necessary for the performance of a contract with you (for example, in the case of Event/Tour Applicants and Participants).
      2. (b) Where you have given consent (in circumstances where we rely on your consent, we will indicate this at the time of obtaining such consent. You are free to withdraw this consent at any stage and you can do so by contacting us. As the Company requires your personal data to provide a service to you, should you withdraw that consent the Company may no longer be able to provide its service to you).
      3. (c) For the legitimate interests in conducting our business .
      4. (d) In order to comply with a legal obligation that applies to us.
      5. (e) Where is it necessary for the performance of tasks that we may carry out in the public interest or in the exercise of official authority vested in us by law.
    2. In limited circumstances we may process special category personal data which includes, data revealing racial or ethnic origin, religious or philosophical beliefs, and data concerning health or data concerning a person's sex life or sexual orientation. If and when we process special categories of personal data, we implement appropriate safeguards to ensure the security of Personal Data and that your fundamental rights and the interests are protected.
    3. For example, we may be required process data related to your health in limited circumstances (e.g. in the context of Covid-19) (for more on our approach to Covid-19, please see Section 18 of our terms and conditions). Health data is special category data under the GDPR. We will only process health data, and any other special category personal data, where we have a legal basis to do so, and if one of the following applies:
      1. (i) we have obtained your explicit consent,
      2. (ii) the processing is necessary to protect your vital interests or the vital interest of other persons,
      3. (iii) the personal data has been made public by you,
      4. (iv) it is necessary for the establishment, exercise or defence of a legal claim or where courts are acting in their judicial capacity,
      5. (v) the processing in necessary for reasons of substantial public interest.
  4. How we Collect data and Personal Data
  5. We collect Personal Data from your interaction with us, for example:

    1. (a) when you submit an application form to attend one of our tours;
    2. (b) when you purchase tickets for one of our events;
    3. (c) when you sign up to our mailing list; or
    4. (d) when you contact us, for example through the website or via email.
  6. How we may use your Personal Data
    1. Except as set out in this Notice, we will not disclose Personal Data that we collect to any parties other than those with whom we partner or are affiliated with, without your consent. Except as set out below, we will not sell, share, trade, rent, or give away your Personal Data.
    2. Credit card information is used only for payment processing and fraud prevention.

    Information you directly provide

    1. We may use your Personal Data in the conduct of our business with you, for example, in order to fulfil our contract with you and, upon your consent, for the purposes of contacting you with regard to our services.
    2. Information you do not directly provide

    3. We only process Personal Data which you provide to us directly.
  7. Do we disclose Personal Data to anyone else?
    1. We shall disclose your Personal Data to third parties only when it is necessary as part of our contract with you, for the conduct of business or when there is a legal or statutory obligation to do so. Whenever we disclose your Personal Data to third parties, we will only disclose that amount of your Personal Data necessary to meet such business need or legal requirement. Third parties that receive your Personal Data from us must satisfy us as to the measures taken to protect the Personal Data such parties receive, in accordance with Data Protection Law and as stated in this Notice. Appropriate measures will be taken to ensure that all such disclosures or transfers of your Personal Data to third parties will be completed in a secure manner and pursuant to contractual safeguards.
    2. We may employ other companies and individuals to perform functions on our behalf, including professional advisors, outsourced services providers and contractors in order to fulfil our contract with you. For example, we may use third party payment service providers or event management providers. These third-party service providers are authorised to use Personal Data only as needed to perform their functions on our behalf and are required to maintain the security of your Personal Data.
    3. We may transfer your Personal Data to another company with which we have merged, or which has acquired all or some of our assets. We will advise you if such a change of ownership or change of corporate structure takes place and we will update this Notice accordingly.
    4. We may provide your Personal Data when obliged to do so under relevant Data Protection Law and in response to properly made requests, for example, for the purpose of the prevention and detection of crime, and the apprehension or prosecution of offenders. We may also provide your Personal Data for the purpose of safeguarding national security. In the case of any such disclosure, we will do so only in accordance with the relevant Data Protection Law.
    5. We may also provide your Personal Data when required to do so by law, for example under a court order, and may transfer data to legal counsel where same is necessary for the defence of legal claims.
  8. Transfers outside of the EEA
    1. Your Personal Data may be processed by the Company or its trusted third-party partners outside of the European Economic Area (“EEA”). We may transfer your personal data to the United States of America in circumstances where such transfer is necessary for the Company to carry out its obligations under a contract with you or necessary to carry out pre-contract steps as requested by you. If and to the extent that we do so, we will ensure that appropriate measures are in place to comply with our obligations under applicable law governing such transfers.
    2. We will continue to monitor all developments regarding the legal bases for the international transfer of Personal Data and will update our processes as necessary.
  9. How long do we keep Personal Data?
    1. The period for which we retain Personal Data varies according to the use of that information. In some cases, there are legal requirements to keep Personal Data for a minimum period of time. Unless specific legal requirements dictate otherwise, we will retain Personal Data no longer than is necessary for the purposes for which the Personal Data were collected and processed (as described above).
    2. By law we have to keep basic information about bookings and our customers for seven years for legal claims and tax purposes.
    3. In some circumstances we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.
  10. How you can exercise your rights in respect of Personal Data we hold about you?
  11. Your rights

    1. We shall vindicate all rights under European Data Protection Law. You have the right to request that we:
      1. (a) provide you with information as to whether we process your data and details relating to our processing, and that we provide you with a copy of your data (‘access right’);
      2. (b) rectify and/or update any inaccurate data we might have about your without undue delay (‘right to rectification’);
      3. (c) the right to object to processing of data relating to you (‘right to object’);
      4. (d) under certain circumstances, be restricted from processing your data (‘right to restriction’);
      5. (e) under certain circumstances, erase your personal data without undue delay (i.e. the “right to erasure”); and
      6. (f) under certain circumstances, furnish you with the personal data which you provided us with in a structured, commonly used and machine readable format (‘right to data portability’).
    2. Vindication of these rights shall not affect any rights which we may have under European Data Protection Law.
    3. Exercising your rights and managing Personal Data

    4. You can exercise any of your rights by making a request to us at the contact information provided below. If, for some reason, these rights are denied, we will provide an explanation of why this is the case.
    5. We will endeavour to process your request within 30 days of receipt.
  12. security of your Personal Data
    1. We are committed to ensuring that all of your information, including Personal Data, is secure. In order to prevent unauthorised access or disclosure, we have put in place appropriate technical and organizational measures to safeguard and secure your Personal Data.
    2. Once we have received your Personal Data, we will use strict procedures and security features to try to prevent unauthorised access.
    3. Unfortunately, the transmission of information through the Company’s website(s) can never be completely secure. Although we will do our best to protect your Personal Data and apply appropriate safeguards, we cannot guarantee the security of your data transmitted through the website(s) and any transmission is at your own risk.
  13. How can you make a complaint about the Use of Personal Data?
    1. Complaints on the use, retention and disposal of Personal Data can submitted via email to This email address is being protected from spambots. You need JavaScript enabled to view it.
    2. Under European Data Protection Law, you also have the right to lodge a complaint with the relevant supervisory authority of your country. In Ireland the contact details for the Data Protection Commission can be found at:

    https://www.dataprotection.ie/en/contact/how-contact-us.

  14. Review
    1. This Notice will be reviewed and updated from time to time to consider changes in the law and the experience of the Notice and The Company’s processing of Personal Data in practice. Any and all changes will be published on our website. We encourage you to periodically review this Notice to stay informed about how we collect, use, and disclose Personal Data.
  15. Contact information
    1. If you have questions about this Notice or our treatment of the Personal Data provided to us, please contact us at:

Name: The J.O.D. Continuing The Conversation Company Designated Activity Company

ATTN: Data Privacy Champion

Address: Fermoyle, Fanore, Clare, Ireland

E-mail: This email address is being protected from spambots. You need JavaScript enabled to view it.

Last updated: February 2023