Privacy Policy

 

2. What Data We Collect & How We Use It

We collect and process personal data under lawful bases as required by GDPR Article 6.

2.1 Personal Data You Provide

Type of Data	Example	Legal Basis
Contact Information	Name, Email, Phone	Legitimate Interest, Contract
Business Information	Company Name, Website URL	Contract
Billing & Payment Details	Invoice Data (via Secure Payment Processor)	Legal Obligation

2.2 Data We Collect Automatically

Type of Data	Example	Legal Basis
Device & Usage Data	IP Address, Browser Type	Legitimate Interest
Analytics & Performance Data	Page Views, Clicks	Legitimate Interest

2.3 AI-Processed Data & Automated Decision-Making

We use AI-powered tools in SEO, PPC, and content marketing. AI does not process personal data unless you consent.

• AI in SEO & PPC: Automated bid adjustments, keyword research, content analysis.
• AI in Analytics & Insights: Traffic predictions, ad performance optimisations.
• No Fully Automated Decisions: All AI-generated outputs are reviewed by human experts.

🔹 Your Rights: You have the right to:

• Request human review of AI-driven decisions.
• Opt out of AI-driven marketing by contacting info@neweradigital.ie.
• Receive clear disclosure when AI is used.

📖 More details? See our AI Policy below.

3. Data Sharing & Third-Party Providers

We do not sell your data. However, we share it with trusted partners for essential business operations.

3.1 Third-Party Services We Use

Service	Purpose	Country	Safeguards
Google (Ads, Analytics, Search Console)	SEO, PPC & Analytics	US	SCCs & Google EU DPA
SEMrush, SurferSEO, Ahrefs	SEO Performance Tracking	EU & US	GDPR Compliant
AI Tools (Rank Math AI, ChatGPT, Jasper AI)	Content Optimisation	EU & US	GDPR Compliant

💡 International Transfers: We ensure all data transfers comply with EU Standard Contractual Clauses (SCCs).

4. AI & Automated Processing Compliance

Complying with the EU AI Act, we ensure:

• Full transparency when AI is used.
• Bias prevention in AI-generated insights.
• Human oversight over AI decisions.

Your rights under GDPR (Article 22):

• Know when AI is used for your data.
• Request human intervention in AI-driven processes.
• Opt out of AI-based profiling.

If you have concerns about AI decisions, contact info@neweradigital.ie.

5. Data Security Measures (NIS2 Compliance)

Under NIS2 (Network & Information Security Directive), we have enhanced cybersecurity measures to protect your data.

Security Features:

• SSL encryption for secure data transmission.
• Two-factor authentication (2FA) for internal access control.
• Regular security audits & penetration testing.
• 24/7 monitoring for data breaches.

In case of a data breach: We will notify affected users within 72 hours, as required by GDPR.

6. Your GDPR Rights

Under GDPR (Articles 12-23), you have the right to:

Right	What It Means
Access	Request a copy of your personal data.
Rectification	Correct inaccurate data.
Erasure (“Right to Be Forgotten”)	Request data deletion.
Restriction	Limit how we process your data.
Data Portability	Request data in a structured format.
Object	Opt out of marketing & AI profiling.
Withdraw Consent	Revoke consent at any time.

💡To exercise these rights, email us at info@neweradigital.ie.

7. Data Retention Policy

We keep personal data only as long as necessary for:

• Legal obligations (e.g., tax laws require us to retain invoices for 7 years).
• Service contracts (data is retained while services are active).
• Marketing consent (you can withdraw consent anytime).

📖 For details on data retention per category, request our [Data Retention Schedule].

8. Cookies & Tracking

We use cookies to improve your experience.

🍪 Types of Cookies:

• Essential Cookies – Necessary for website function.
• Analytics Cookies – Used by Google Analytics, SEMrush.
• Marketing Cookies – Used for Google Ads & remarketing.

💡 Your Choices: You can manage cookies via [Cookie Settings].