GDPR Compliance
Last updated: July 16, 2026
Our Commitment
Snug-atoll operates in full compliance with the General Data Protection Regulation (GDPR) and Irish data protection legislation. We are committed to protecting your personal data and respecting your privacy rights.
Legal Basis for Processing
We process your personal data under the following legal bases:
- Consent: When you submit information through our forms, you provide explicit consent for us to process that data for the stated purposes.
- Legitimate Interest: We process certain data to operate our website, improve our services, and communicate with you about programmes you've expressed interest in.
- Contractual Necessity: When you engage our services, we process data necessary to fulfill our contractual obligations.
Your GDPR Rights
Under GDPR, you have the following rights regarding your personal data:
Right of Access
You may request confirmation of whether we process your personal data and obtain a copy of that data.
Right to Rectification
You may request correction of inaccurate personal data or completion of incomplete data.
Right to Erasure
You may request deletion of your personal data under certain circumstances, including when the data is no longer necessary for the purposes for which it was collected.
Right to Restriction
You may request that we restrict processing of your personal data in specific situations, such as when you contest the accuracy of the data.
Right to Data Portability
You may request a copy of your personal data in a structured, commonly used, machine-readable format.
Right to Object
You may object to processing of your personal data based on legitimate interests or for direct marketing purposes.
Rights Related to Automated Decision-Making
We do not use automated decision-making or profiling that produces legal effects or similarly significant impacts.
How to Exercise Your Rights
To exercise any of these rights, contact us at [email protected]. We will respond to your request within one month. In complex cases, we may extend this period by two additional months and will inform you of the extension.
Data Protection Officer
For questions about our data protection practices or to exercise your rights, contact [email protected].
Supervisory Authority
If you believe we have not addressed your concerns adequately, you have the right to lodge a complaint with the Irish Data Protection Commission:
Data Protection Commission
21 Fitzwilliam Square South
Dublin 2, D02 RD28
Ireland
International Data Transfers
We primarily store and process data within the European Economic Area. If we transfer data outside the EEA, we ensure appropriate safeguards are in place in accordance with GDPR requirements.
Data Breach Notification
In the event of a data breach that poses a risk to your rights and freedoms, we will notify you and the relevant supervisory authority within 72 hours of becoming aware of the breach.