PRIVACY POLICY

RELENTLESS EVENTS LTD – PRIVACY POLICY
Effective Date: 8th July 2025
Disclaimer: *This policy provides general information about our data practices. It is not legal advice. Consult an Irish data protection solicitor to ensure compliance with the GDPR and Data Protection Acts 2018-2023.*
 
1. Data Controller & Contact
Relentless Events LTD (“we,” “us”)
Registered Address: OFFICE 2, 12A LOWER MAIN STREET, LUCAN, DUBLIN, K78 X5P8, IRELAND
Email: privacy@relentlessevents.ie
 
2. How We Collect Data
SourceData TypesLegal Basis
Website FormsName, email, phone, event detailsContractual necessity
Service ContractsBilling address, VAT number, payment details, ID copies (e.g., driver's license)Legal obligation (tax/compliance)
Event ExecutionAttendee lists (health/dietary info if provided), venue access logsLegitimate interests
Third Parties (e.g., bands)Performer contracts, bank details for paymentsContractual necessity
Cookies & AnalyticsIP address, device type, browsing behavior Consent (non-essential cookies)
 
3. Special Category & Children’s Data

• Health/Religious Data (e.g., dietary/accessibility needs): Processed only with explicit consent. Deleted 30 days post-event.

• Children’s Data: We do not knowingly collect data from under-16s. Children’s images at events require parental consent.
   

4. Data Uses & Retention
PurposeRetention Period
Service Quoting/Contracting3 years after last interaction
Financial Records (incl. VAT)7 years (Revenue Commissioners requirement)
Equipment Liability Claims6 years (statutory limitation period)
Marketing ConsentUntil withdrawal of consent

5. Data Sharing & Transfers
We Share With:

• Subprocessors: Payment processors (Stripe), cloud storage (EU-based), email marketing (Mailchimp).

• Legal Obligations: Revenue Commissioners, An Garda Síochána (court orders).

• Event Partners: Venues/DJs only with your prior consent.

Transfers Outside EU:
Data remains within the EU/EEA unless strictly necessary (e.g., international band bookings). Any third-country transfers use GDPR-compliant safeguards (SCCs).

6. Your Rights (GDPR Article 15-22)
You may request:
✅ Access to your data
✅ Correction of inaccuracies
✅ Deletion (where no legal basis remains)
✅ Restriction of processing
✅ Data portability (machine-readable format)
✅ Withdraw marketing consent
Submit Requests: privacy@relentlessevents.ie | Response within 30 days

7. Security Measures

• 🔒 Technical: End-to-end encryption (SSL), pseudonymisation, MFA access controls.

• 🛡️ Organizational: Staff GDPR training, confidentiality agreements, breach response protocols.

• Breach Notification: To DPC & affected individuals within 72 hours per GDPR Article 33.

8. Cookies & Tracking
Cookie TypePurposeControl
Strictly NecessaryShopping cart, login sessionsCannot opt-out
AnalyticsGoogle Analytics (anonymised IP)Opt-out via cookie banner
MarketingFacebook/Instagram adsOpt-in required

9. Policy Updates
We reserve the right to amend this policy. Material changes will be:

• Notified via email (clients)

• Posted on our website 14 days in advance