Privacy Policy
Last Updated: January 20, 2026
At Simplyplatonic ("we," "us," or "our"), we are committed to protecting your privacy and handling your personal data with transparency, security, and compliance with all applicable laws. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information when you interact with our website, services, or engage with us as a client.
We adhere to the principles of the General Data Protection Regulation (GDPR) and the Data Protection Act 2018 of Ireland. This policy is designed to provide you with clear information about your rights and how we respect them.
1. Data Controller
Simplyplatonic, located at Waterfront Square, 1 Horgan's Quay, Montenotte, Cork, T23 PPT8, Ireland, is the controller of your personal data. We determine the purposes and means of processing your personal data as described in this Privacy Policy.
2. Information We Collect
We collect and process the following categories of personal data:
2.1. Information You Provide to Us
- Contact Information: Name, email address, phone number, and business address.
- Business Information: Company name, industry, role, business size, and other details relevant to our advisory relationship.
- Communication Content: Messages, inquiries, feedback, and other information you provide when contacting us.
- Service-Related Information: Data provided during consultations, workshops, and other services.
2.2. Information We Collect Automatically
- Device Information: IP address, browser type, operating system, and device characteristics.
- Usage Data: Pages visited, time spent on pages, links clicked, and other interactions with our website.
- Location Data: General location inferred from your IP address.
- Cookies and Similar Technologies: Information collected through cookies and similar technologies as described in our Cookie Policy.
3. Purposes of Processing
We process your personal data for the following purposes:
3.1. Service Provision
- To deliver our digital transformation advisory services and fulfill our contractual obligations
- To respond to your inquiries, requests, and communications
- To manage our client relationships and provide ongoing support
- To tailor our advisory services to your specific business needs
3.2. Communication and Marketing
- To provide information about our services and relevant digital transformation insights
- To send service updates, newsletters, and other business communications
- To invite you to events, webinars, or workshops relevant to your business interests
3.3. Website Functionality and Improvement
- To operate, maintain, and improve our website functionality
- To analyze website usage patterns and optimize user experience
- To ensure the security and proper operation of our online platforms
3.4. Legal and Compliance
- To comply with legal obligations and regulatory requirements
- To enforce our terms of service and other policies
- To prevent fraud, unauthorized access, and other prohibited activities
- To establish, exercise, or defend legal claims if necessary
4. Legal Bases for Processing
We process your personal data on the following legal grounds:
4.1. Contract Performance
Processing necessary for the performance of a contract to which you are a party or to take steps at your request before entering into a contract. This applies when we provide our advisory services to you or your business.
4.2. Legitimate Interests
Processing necessary for our legitimate interests or those of a third party, provided these interests are not overridden by your interests or fundamental rights. Our legitimate interests include:
- Improving and developing our services
- Protecting our business, systems, and clients
- Maintaining efficient business operations
- Marketing our services to existing clients and business contacts
4.3. Consent
Processing based on your specific, informed, and unambiguous consent. We rely on consent particularly for:
- Marketing communications to non-clients
- Certain types of cookies and similar technologies
- Collection of certain optional information
You have the right to withdraw your consent at any time by contacting us using the details provided below or by using the unsubscribe functionality in our communications.
4.4. Legal Obligation
Processing necessary for compliance with legal obligations to which we are subject under Irish and EU law.
5. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period, we consider:
- The amount, nature, and sensitivity of the personal data
- The potential risk of harm from unauthorized use or disclosure
- The purposes for which we process the data
- Whether we can achieve those purposes through other means
- Applicable legal, regulatory, tax, accounting, or other requirements
5.1. Specific Retention Periods
- Client Information: We retain client data for the duration of our business relationship and for 7 years after its termination, in line with legal and tax requirements.
- Marketing Information: We retain this data until you withdraw consent or after 3 years of no engagement with our communications.
- Website Usage Data: We typically retain this data for up to 26 months, after which it is aggregated for analytical purposes.
- Contact Form Submissions: We retain these for 3 years from submission or until request fulfillment, whichever is longer.
When personal data is no longer necessary, we will securely delete or anonymize it so that it can no longer be associated with you.
6. Data Sharing and Transfers
6.1. Categories of Recipients
We may share your personal data with the following categories of recipients:
- Service Providers: Trusted third parties who provide services on our behalf, such as IT support, hosting, CRM systems, email delivery, and analytics.
- Professional Advisors: Legal, accounting, consultants, and other professional advisors when necessary for their services.
- Legal and Regulatory Authorities: Public authorities, regulators, or governmental bodies when required by law.
- Business Transferees: Third parties in connection with a business reorganization, merger, sale, or other transfer of assets.
6.2. International Transfers
Some of our service providers may be located outside the European Economic Area (EEA). When transferring your data internationally, we ensure appropriate safeguards are in place, including:
- Adequacy decisions by the European Commission
- Standard Contractual Clauses (SCCs) approved by the European Commission
- Binding corporate rules for transfers within a corporate group
- Other legally approved transfer mechanisms
You can request more information about these safeguards by contacting us using the details provided below.
7. Your Data Protection Rights
Under the GDPR and Irish data protection law, you have the following rights regarding your personal data:
7.1. Access
The right to request confirmation of whether we process your personal data and to receive a copy of that data along with information about its processing.
7.2. Rectification
The right to request correction of inaccurate personal data or completion of incomplete personal data.
7.3. Erasure (Right to be Forgotten)
The right to request deletion of your personal data in certain circumstances, such as when the data is no longer necessary, when you withdraw consent, or when there is no legitimate interest in continued processing.
7.4. Restriction of Processing
The right to request limitation of how we process your personal data in certain circumstances, such as when you contest its accuracy or object to processing.
7.5. Data Portability
The right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller where technically feasible.
7.6. Objection
The right to object to processing based on legitimate interests, including profiling, and to processing for direct marketing purposes.
7.7. Automated Decision-Making
The right not to be subject to a decision based solely on automated processing, including profiling, which produces legal or similarly significant effects on you.
7.8. Complaint
The right to lodge a complaint with a supervisory authority, particularly in the EU member state of your habitual residence, place of work, or place of the alleged infringement if you consider that our processing of your personal data infringes the GDPR.
To exercise any of these rights, please contact us using the details provided below. We may need to verify your identity before responding to your request.
8. Data Security
We implement appropriate technical and organizational measures to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. These measures include:
- Encryption of data in transit and at rest where appropriate
- Regular security assessments and penetration testing
- Access controls and authentication requirements
- Staff training on data protection and information security
- Business continuity and disaster recovery plans
- Regular backups and data redundancy measures
While we strive to protect your personal data, no method of transmission over the Internet or method of electronic storage is 100% secure. We encourage you to take precautions to protect your own personal data when online.
9. Cookies and Similar Technologies
Our website uses cookies and similar technologies to enhance functionality, analyze usage, and deliver a better user experience. For detailed information about the types of cookies we use, their purposes, and how you can control them, please see our Cookie Policy.
10. Children's Privacy
Our services are not directed at individuals under the age of 18, and we do not knowingly collect personal data from children. If we become aware that we have collected personal data from a child without parental consent, we will take steps to delete that information as soon as possible.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, services, or applicable laws. The revised policy will be effective immediately upon posting on our website. We encourage you to review this policy periodically to stay informed about our data practices.
If we make material changes to this policy, we will notify you by email or through a notice on our website prior to the changes becoming effective.
12. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us using the following details:
Data Protection Contact:
Simplyplatonic
Waterfront Square, 1 Horgan's Quay
Montenotte, Cork, T23 PPT8
Ireland
Email: privacy@simplyplatonic.com
Phone: +353 21 212 9780
12.1. Supervisory Authority
If you believe our processing of your personal data infringes data protection laws, you have the right to lodge a complaint with the Data Protection Commission (DPC) in Ireland or another supervisory authority in the EU member state of your habitual residence, place of work, or place of the alleged infringement.
Data Protection Commission
21 Fitzwilliam Square South
Dublin 2, D02 RD28
Ireland
Website: www.dataprotection.ie