GDPR Compliance
Our commitment to protecting your personal data under EU regulations.
Last updated: July 2026
Our Commitment to GDPR
quaint-branch is committed to ensuring compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679. This page provides information about how we meet our obligations under this regulation and explains your rights as a data subject.
Data Controller Information
quaint-branch acts as the data controller for personal data collected through this website and our consulting services. Our contact details are:
quaint-branch
Unit 14, Innovation Quarter
Barrow Street
Dublin 4, D04 V2N9
Ireland
Email: [email protected]
Lawful Basis for Processing
Under GDPR, we must have a lawful basis for processing your personal data. We rely on the following legal bases:
Consent
Where you have explicitly consented to the processing of your personal data for specific purposes, such as receiving marketing communications or submitting enquiry forms.
Contract Performance
Where processing is necessary for the performance of a contract to which you are a party, or to take steps at your request prior to entering into a contract. This applies to our consulting engagements.
Legitimate Interests
Where processing is necessary for our legitimate business interests, provided these interests do not override your fundamental rights and freedoms. Our legitimate interests include:
- Operating and improving our website
- Understanding how visitors use our site
- Developing our business and services
- Maintaining security and preventing fraud
Your Rights Under GDPR
As a data subject, you have the following rights under GDPR:
Right to Be Informed
You have the right to receive clear, transparent information about how we use your personal data. This GDPR page and our Privacy Policy fulfil this obligation.
Right of Access
You have the right to request a copy of the personal data we hold about you. We will respond to such requests within one month.
Right to Rectification
You have the right to request correction of any inaccurate personal data we hold about you, or to have incomplete data completed.
Right to Erasure
You have the right to request deletion of your personal data in certain circumstances, including when the data is no longer necessary for the purpose for which it was collected.
Right to Restrict Processing
You have the right to request restriction of processing of your personal data in certain circumstances, such as when you contest the accuracy of the data.
Right to Data Portability
You have the right to receive your personal data in a structured, commonly used, machine-readable format and to transmit it to another controller.
Right to Object
You have the right to object to processing based on legitimate interests or for direct marketing purposes.
Rights Related to Automated Decision-Making
You have the right not to be subject to decisions based solely on automated processing that produce legal or similarly significant effects. We do not currently use automated decision-making processes.
Exercising Your Rights
To exercise any of your rights, please contact us at [email protected]. We will respond to your request within one month. In certain circumstances, we may need to verify your identity before processing your request.
Data Protection Impact Assessments
Where processing is likely to result in a high risk to the rights and freedoms of individuals, we conduct Data Protection Impact Assessments to identify and minimise data protection risks.
Data Breach Notification
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach. Where the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly.
International Data Transfers
Where we transfer personal data outside the European Economic Area, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.
Supervisory Authority
If you are not satisfied with how we handle your personal data, you have the right to lodge a complaint with a supervisory authority. In Ireland, the relevant authority is:
Data Protection Commission
21 Fitzwilliam Square South
Dublin 2, D02 RD28
Ireland
Website: www.dataprotection.ie
Updates to This Information
We may update this GDPR compliance information from time to time. Any significant changes will be communicated through our website.
This information is provided for general guidance on our GDPR compliance measures. For specific questions about how your personal data is processed or to exercise your data protection rights, please contact us directly at the email address provided above.