New: Digital Partner €1,500/month
Johny
Services
PortfolioBlog
Legal

Privacy Policy

This Privacy Policy explains how Johny.ie collects, uses, stores, and protects your personal data. It is written in compliance with the EU General Data Protection Regulation (GDPR) and the Data Protection Acts 1988–2018 (Ireland).

Effective date: 5 April 2026  |  Last reviewed: 5 April 2026

Important notice

This Privacy Policy explains how Johny.ie (sole trader) collects, uses, stores, and protects your personal data when you visit johny.ie or contact us. It is written in compliance with the EU General Data Protection Regulation (GDPR) and the Data Protection Acts 1988–2018 (Ireland). If you have any questions about this policy, contact us at hello@johny.ie before using the site.

1. Who We Are

The data controller for johny.ie is:

Trading name: Johny.ie
Business type: Sole trader
Principal place of business: Kildare, Ireland
Contact email: hello@johny.ie
Website: https://johny.ie

As a sole trader operating within Ireland and the European Union, we are subject to the General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) and the Irish Data Protection Act 2018. We take our obligations under these laws seriously.

2. What Personal Data We Collect

We only collect data that is necessary for running the business and responding to enquiries. We do not collect data we do not need.

2.1 Data you provide directly

When you submit a contact form, request a quote, book a call, or email us, we collect:

  • Your name
  • Your email address
  • Your phone number (if provided)
  • The content of your message or project description
  • Your business name (if provided)

2.2 Data collected automatically

When you visit johny.ie, we and our third-party service providers automatically collect:

  • Your IP address (anonymised where possible)
  • Browser type and version
  • Pages visited and time spent on each page
  • Referring website (where you came from)
  • Device type (mobile, desktop, tablet)
  • General geographic location (country/city level, derived from IP)

This data is collected via Google Analytics 4 (see Section 5 for details on cookies and third-party tools).

2.3 Data we do NOT collect

We do not collect:

  • Payment card numbers or banking details (all payments are handled outside this website via invoice)
  • Sensitive personal data (health, ethnicity, religion, political opinions)
  • Data from children under 16
  • Biometric data

3. How We Use Your Personal Data

We use your personal data for the following purposes and on the following legal bases:

PurposeExampleLegal Basis
Responding to enquiriesReplying to contact forms and quote requestsLegitimate interests (Art. 6(1)(f) GDPR)
Delivering contracted servicesBuilding your website, providing SEO servicesPerformance of a contract (Art. 6(1)(b) GDPR)
Sending project updatesEmails during an active projectPerformance of a contract (Art. 6(1)(b) GDPR)
Analytics and site improvementUnderstanding how visitors use the siteLegitimate interests (Art. 6(1)(f) GDPR)
Legal complianceRetaining invoices and financial recordsLegal obligation (Art. 6(1)(c) GDPR)
Direct marketing (newsletter)Only if you have explicitly opted inConsent (Art. 6(1)(a) GDPR)

We will never sell your personal data to third parties, use it for purposes incompatible with those listed above, or share it with advertising platforms for retargeting without your explicit consent.

4. Who We Share Your Data With

4.1 Service providers (data processors)

We use the following third-party tools that may process your data on our behalf:

ServiceProviderPurposeLocation
Google Analytics 4Google LLCWebsite analyticsUSA (SCCs)
Google Tag ManagerGoogle LLCTag managementUSA (SCCs)
Google reCAPTCHAGoogle LLCSpam prevention on formsUSA (SCCs)
CalendlyCalendly LLCBooking callsUSA (SCCs)
CloudflareCloudflare Inc.CDN / securityUSA (SCCs)
Gmail / Google WorkspaceGoogle LLCProcessing your enquiriesUSA (SCCs)

SCCs = Standard Contractual Clauses approved by the European Commission for transfers to third countries.

4.2 Legal disclosures

We may disclose personal data to law enforcement or regulatory authorities where required by law, court order, or legal proceedings.

4.3 Business transfer

If Johny.ie is sold or transferred, personal data may transfer to the new owner with reasonable prior notice to you.

5. Cookies

5.1 What cookies we use

CategoryName / ProviderPurposeDuration
Strictly necessaryCloudflare CF_CLEARANCESecurity / DDoS protectionSession
AnalyticsGoogle Analytics (_ga, _ga_*)Measuring site trafficUp to 2 years
AnalyticsGoogle Analytics (_gid)Distinguishing users24 hours
FunctionalCalendlyBooking widgetSession
SecurityGoogle reCAPTCHABot detection on forms6 months

5.2 Managing cookies

You can control cookies through your browser settings:

  • Chrome: chrome://settings/cookies
  • Firefox: about:preferences#privacy
  • Safari: Preferences > Privacy
  • Edge: Settings > Cookies and site permissions

Blocking strictly necessary cookies will affect site functionality.

6. How Long We Keep Your Data

Data TypeRetention PeriodReason
Enquiry / contact form submissions12 monthsPotential follow-up
Client project data and correspondence6 yearsIrish Revenue / statutory records
Invoices and financial records6 yearsIrish Revenue requirement
Google Analytics dataUp to 26 monthsGoogle default
Marketing email list (if opted in)Until you unsubscribeConsent-based retention

7. Your Rights Under GDPR

As a data subject under GDPR, you have the following rights:

7.1 Right of access (Article 15)

You can request a copy of the personal data we hold about you, free of charge. We will respond within one month.

7.2 Right to rectification (Article 16)

You can request that we correct inaccurate or incomplete personal data.

7.3 Right to erasure (Article 17)

You can request that we delete your data where it is no longer necessary, you withdraw consent, or it has been unlawfully processed.

7.4 Right to restriction (Article 18)

You can request that we restrict how we use your data while a dispute is resolved.

7.5 Right to data portability (Article 20)

Where processing is based on consent or contract, you can receive your data in a machine-readable format.

7.6 Right to object (Article 21)

You can object to processing based on legitimate interests. We will cease unless we can demonstrate compelling legitimate grounds.

7.7 How to exercise your rights

Email hello@johny.ie with the subject line "GDPR Rights Request". We will respond within one month and may need to verify your identity.

8. How to Make a Complaint

If you are unhappy with how we have handled your data, please contact us first at hello@johny.ie. If not satisfied, you may lodge a complaint with:

Data Protection Commission (Ireland)
21 Fitzwilliam Square South, Dublin 2, D02 RD28
Phone: +353 (0)1 765 0100
Email: info@dataprotection.ie
Website: www.dataprotection.ie

9. How We Protect Your Data

We implement appropriate technical and organisational measures including:

  • HTTPS encryption on all pages
  • Secure email communications
  • Access to client data restricted to Johny.ie only
  • Third-party processors bound by data processing agreements
  • Regular review and deletion of data no longer required

In the event of a personal data breach likely to affect your rights and freedoms, we will notify the Data Protection Commission within 72 hours and you as soon as reasonably practicable, as required by Articles 33/34 GDPR.

10. Links to Other Websites

johny.ie may contain links to third-party websites. We are not responsible for their privacy practices. We recommend reviewing the privacy policy of any site you visit via a link from johny.ie.

11. Changes to This Policy

We may update this Privacy Policy to reflect changes in our practices, technology, or legal requirements. The effective date at the top will be updated accordingly. For material changes, we will place a notice on the homepage or email active clients.

12. Contact Us

Privacy enquiries: hello@johny.ie
Subject line: "Privacy Policy Enquiry"
We aim to respond to all privacy-related requests within 5 business days.