Legal

Privacy Policy

Last updated: June 2025

Open Door Digital ("we", "us", "our") is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal data when you use our website at opendoordigital.ie or engage our services.

This policy is written in accordance with the General Data Protection Regulation (GDPR) (EU) 2016/679, the Data Protection Acts 1988–2018, and applicable Irish data protection law.

1. Who we are

Open Door Digital is a data controller for the purposes of GDPR. Our contact details are:

2. What personal data we collect

2.1 Data you provide directly

When you request a free homepage check or purchase an audit, we collect:

  • Your name
  • Your email address
  • Your website URL (a business URL, not personal)
  • Company name (where provided)
  • Any information you include in email correspondence with us

2.2 Data collected automatically

When you visit our website, we may collect standard technical information including:

  • Your IP address (anonymised where possible)
  • Browser type and version
  • Pages visited and time spent on each page
  • Referring URL
  • Device type and operating system

This data is collected through our hosting provider and any analytics tools we use, and is used solely to understand how our website is being used so we can improve it.

2.3 Audit data

When we perform an accessibility audit, we access and crawl the publicly accessible pages of the website URL you provide. We do not collect or store personal data from the websites we audit. Our tools access only the same pages any member of the public could access in a browser.

3. Why we collect your data (legal basis)

We collect and process your personal data on the following legal bases:

  • Contract performance — to deliver the audit service you have requested and communicate with you about it.
  • Legitimate interests — to respond to your enquiries, improve our service, and send you information directly related to services you have used (where you have not opted out).
  • Legal obligation — to comply with applicable law, including tax and accounting obligations.
  • Consent — where you have explicitly consented, for example to receive marketing communications.

4. How we use your data

We use your personal data to:

  • Deliver your accessibility audit and the associated reports
  • Communicate with you about your order or enquiry
  • Send you your completed report by email
  • Issue invoices and process payments
  • Respond to any queries or complaints you raise
  • Improve our website and services based on usage patterns
  • Send you information about similar services we offer (you can opt out at any time)

5. Who we share your data with

We do not sell, rent, or trade your personal data with any third party. We may share your data with the following categories of processor where necessary to deliver our service:

  • Email service providers — to deliver your report and correspondence
  • Cloud infrastructure providers — to host and operate our systems (data processed within the EU where possible)
  • Payment processors — where you pay by card, your payment details are handled directly by a PCI-DSS compliant payment provider and are not stored by us
  • AI service providers — our accessibility scanning tool uses AI models to analyse web content; this analysis is performed on the public content of the website you submit, not on your personal data

Where any of these processors are located outside the European Economic Area, we ensure appropriate safeguards are in place in accordance with GDPR Chapter V.

6. How long we keep your data

We retain your personal data for as long as is necessary for the purposes described in this policy:

  • Customer records (name, email, order details): 7 years, in line with Irish tax law requirements
  • Completed audit reports: 2 years, in case you need a copy or we are asked to demonstrate our work
  • Website enquiries that did not result in a purchase: 12 months
  • Website analytics data: 26 months (anonymised)

7. Your rights

Under GDPR, you have the following rights in relation to your personal data:

  • Right of access — you can request a copy of the personal data we hold about you
  • Right to rectification — you can ask us to correct inaccurate data
  • Right to erasure — you can ask us to delete your data in certain circumstances
  • Right to restrict processing — you can ask us to stop processing your data in certain circumstances
  • Right to data portability — you can request your data in a machine-readable format
  • Right to object — you can object to processing based on legitimate interests or for direct marketing purposes
  • Right to withdraw consent — where processing is based on consent, you can withdraw it at any time

To exercise any of these rights, please email us at hello@opendoordigital.ie. We will respond within one month of receiving your request.

You also have the right to lodge a complaint with the Data Protection Commission (DPC), the Irish supervisory authority for data protection matters. Their website is www.dataprotection.ie.

8. Cookies

Our website uses only essential cookies necessary for the site to function correctly. We do not currently use any advertising, tracking, or analytics cookies that require your consent. If this changes, we will update this policy and obtain your consent before placing non-essential cookies.

9. Security

We take the security of your personal data seriously. We use appropriate technical and organisational measures to protect your data against unauthorised access, disclosure, alteration, or destruction. Our website is served over HTTPS and access to customer data is restricted to authorised personnel only.

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the Data Protection Commission within 72 hours of becoming aware of it, and will notify you directly where required by GDPR.

10. Changes to this policy

We may update this Privacy Policy from time to time. Where we make material changes, we will notify you by email (if you are an existing customer) or by posting a notice on our website. The "last updated" date at the top of this page will always reflect the most recent version.

11. Contact us

If you have any questions about this Privacy Policy or how we handle your personal data, please contact us at:

We aim to respond to all privacy enquiries within 5 business days.