Privacy Policy

1. Data Controller

DigitalOmnibus.ie is operated by RippleXn, based in Dublin, Ireland. We act as the data controller for personal data collected through this website. For data protection enquiries, contact us at [email protected].

2. Data We Collect

We collect the following categories of personal data:

• Contact information: Name, email address, organisation name, and job title when you submit an enquiry or request a verification briefing.
• Usage data: Anonymised analytics data including pages visited, session duration, and referral source, collected via Google Analytics.
• Technical data: IP address, browser type, device type, and operating system — collected automatically via server logs and analytics.

3. How We Use Your Data

We process personal data for the following purposes:

• To respond to your enquiries and provide verification briefings
• To improve our website and services through aggregated analytics
• To comply with legal obligations, including GDPR and the EU AI Act
• To establish, exercise, or defend legal claims where necessary

4. Legal Basis for Processing

We process personal data under the following legal bases: (a) Consent — where you have given clear consent for us to process your data for a specific purpose; (b) Legitimate interest — where processing is necessary for our legitimate business interests, such as improving our services and responding to enquiries; (c) Legal obligation — where processing is necessary to comply with applicable law.

5. Data Sharing

We do not sell, rent, or trade your personal data. Data may be shared with: (a) service providers who process data on our behalf (e.g., Google Analytics, email infrastructure); (b) professional advisers where required by law; (c) regulatory authorities where legally obligated. All third-party processors are bound by data processing agreements in accordance with GDPR Article 28.

6. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected. Contact enquiry data is retained for a maximum of 24 months. Analytics data is retained in anonymised form and is not linked to identifiable individuals.

7. Your Rights

Under GDPR, you have the following rights:

• Right of access — to request a copy of your personal data
• Right to rectification — to correct inaccurate data
• Right to erasure — to request deletion of your data
• Right to restrict processing — to limit how we use your data
• Right to data portability — to receive your data in a structured format
• Right to object — to object to processing based on legitimate interests
• Right to withdraw consent — at any time, without affecting lawfulness of prior processing

To exercise any of these rights, contact [email protected]. You also have the right to lodge a complaint with the Irish Data Protection Commission (DPC).

8. International Transfers

Where data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission.

9. Security

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure, or destruction. These measures are reviewed and updated regularly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated revision date. We encourage you to review this policy periodically.