Privacy Policy — Crestline Digital

Who we are

This website is operated by Ruairí Daly, trading as Crestline Digital, a sole trader registered in Ireland under NACE code 6201.

We provide web design and local SEO services to small and medium businesses across Ireland.

Data Controller: Ruairí Daly (Crestline Digital)
Email: hello@crestlinedigital.net
Website: crestlinedigital.net

What data we collect

When you submit an enquiry through our contact form, we collect:

Your name
Your business name
Your email address
Your phone number (optional)
Your town, county, or business address
The service you're interested in
Any message you include

We do not collect any payment card data directly. Card payments are processed securely by Stripe — see Third-Party Processors below.

We do not use tracking cookies, analytics tools, or advertising pixels on this website.

Why we collect it

We collect your data for the following purposes:

To respond to your enquiry — the primary reason we collect contact details is to get back to you about your request.
To provide our services — if you become a client, we use your details to deliver the agreed work and manage the client relationship.
To issue invoices and maintain records — as a sole trader we are required to retain business records for tax purposes.

The legal basis for processing your data is legitimate interests (responding to business enquiries) and contractual necessity (delivering services to clients).

We will never use your data for unsolicited marketing without your explicit consent.

How long we keep it

Enquiries that don't lead to a contract: deleted after 12 months.
Client data: retained for the duration of the contract, plus 6 years thereafter in line with Irish tax and legal obligations.

Third-party processors

We use the following services to run our business. Each acts as a data processor on our behalf.

Formspree Processes contact form submissions and delivers them to our inbox. Data is stored on Formspree's servers (US-based, GDPR compliant).

Stripe Processes card payments. Stripe collects and stores payment data directly — we never see or store your card details. Stripe is PCI-DSS compliant.

Cloudflare Hosts and serves this website via a global content delivery network. Cloudflare may process your IP address as part of normal routing.

Supabase Used in our restaurant ordering demos to store order data in real time. Only used in demo environments, not for storing visitor or client data.

We self-host all fonts used on this website. This means your browser loads typography directly from our servers — no font data or IP address is transmitted to Google or any third-party font provider when you visit.

Your rights under GDPR

As a person based in the EU/EEA, you have the following rights regarding your personal data:

Right of access — you can request a copy of the data we hold about you.
Right to rectification — you can ask us to correct inaccurate data.
Right to erasure — you can ask us to delete your data, subject to legal retention obligations.
Right to portability — you can request your data in a machine-readable format.
Right to object — you can object to us processing your data for certain purposes.

To exercise any of these rights, email us at hello@crestlinedigital.net. We will respond within 30 days.

If you are unhappy with how we handle your data, you have the right to lodge a complaint with the Data Protection Commission (Ireland).

Cookies

This website does not use tracking cookies, analytics, or advertising scripts. Cloudflare may set a strictly necessary cookie (__cf_bm) as part of its security and bot management functions. This cookie does not track you across websites and expires within 30 minutes.

No consent is required for strictly necessary cookies under GDPR.

Data security

This website is served over HTTPS at all times via Cloudflare. Form submissions are transmitted securely to Formspree over an encrypted connection. We do not store enquiry data locally.

While we take reasonable steps to protect your data, no internet transmission is completely secure. If you have concerns about a specific piece of sensitive information, contact us by email directly.

Changes to this policy

We may update this policy from time to time. The "last updated" date at the top of this page will always reflect the most recent version. We recommend checking back periodically.

Contact

For any questions about this privacy policy or how we handle your data:

Ruairí Daly — Crestline Digital
hello@crestlinedigital.net
crestlinedigital.net