Privacy Policy

What Information We Collect

The information we gather depends on how you interact with our educational services. Some data you give us directly, while other information gets collected automatically through your use of our website.

Information You Provide

When you sign up for our learning programs, download resources, or contact us, you choose what to share. We ask for basic contact details and educational background to tailor the experience to your needs. If you're enrolling in a course, we'll need payment information processed securely through our payment partners.

Automatically Collected Data

Our website collects standard technical information through cookies and similar technologies. This helps us understand which content resonates with visitors and where people struggle with navigation. We also track course completion rates and learning patterns to improve our educational materials.

How We Use Your Information

Every piece of data we collect serves a specific purpose. We don't gather information just to have it sitting in a database somewhere.

• Delivering the educational services you've signed up for and communicating about your learning progress
• Processing payments and maintaining accurate financial records as required by Irish tax regulations
• Sending you relevant updates about new courses, resources, or changes to our programs when you've agreed to receive them
• Improving our educational content based on what works and what doesn't for actual learners
• Responding to your questions and providing support when you need help
• Detecting and preventing fraud or misuse of our services
• Meeting legal obligations under Irish and EU financial education regulations

Who We Share Data With

We're selective about who gets access to your information. We never sell your personal data to third parties. Period.

Service Providers

Some trusted partners help us run our educational platform. This includes payment processors, email service providers, and hosting companies. They only get the information they need to do their job, and they're contractually obligated to protect it.

Legal Requirements

Sometimes we're required to disclose information to comply with Irish law, respond to valid legal processes, or protect the rights and safety of our learners and staff. This doesn't happen often, but when it does, we only share what's legally necessary.

Business Transitions

If Vorilex were acquired or merged with another organization, your information would transfer as part of that transaction. You'd be notified beforehand, and the new entity would be bound by this privacy policy until they provide notice of changes.

Your Rights Under GDPR

Irish and EU law gives you substantial control over your personal information. These aren't just theoretical rights – we've built processes to honour them.

• Right to Access You can request a copy of all personal data we hold about you. We'll provide this in a commonly used electronic format within one month.
• Right to Rectification If information we hold is inaccurate or incomplete, you can ask us to correct it. This matters especially for contact details and learning records.
• Right to Erasure You can request deletion of your personal data when it's no longer needed for the purposes we collected it, or if you withdraw consent. Some information must be retained for legal compliance.
• Right to Restrict Processing You can ask us to limit how we use your data in certain circumstances, like when you're contesting the accuracy of information.
• Right to Data Portability You can obtain your data in a structured, machine-readable format and transfer it to another service provider.
• Right to Object You can object to processing based on legitimate interests or for direct marketing purposes at any time.
• Rights Related to Automated Decisions If we ever use automated decision-making that significantly affects you, you have the right to human review of those decisions.

To exercise any of these rights, email us at [email protected] with "Data Rights Request" in the subject line. We'll respond within one month and won't charge a fee unless your request is clearly excessive or repetitive.

How We Protect Your Information

Security isn't something we bolt on as an afterthought. Our systems are designed with data protection built in from the ground up.

Technical Safeguards

We use industry-standard encryption for data transmission and storage. Our servers are located in secure facilities with restricted physical access. Regular security audits help us identify and address vulnerabilities before they become problems.

Access Controls

Only staff members who need access to perform their jobs can view your personal data. We maintain detailed logs of who accesses what and when. All employees receive regular training on data protection responsibilities.

Third-Party Security

When we work with service providers, we verify their security practices and sign data processing agreements. Payment information is handled through PCI DSS compliant processors – we never store full card details on our systems.

Data Retention

We don't keep information longer than necessary. Retention periods depend on the type of data and why we collected it.

After retention periods expire, we securely delete or anonymize data so it can no longer identify you. Some aggregated, anonymized data may be retained indefinitely for statistical purposes.

International Data Transfers

Your data is primarily stored and processed within the European Economic Area. However, some of our service providers operate from other countries.

When we transfer data outside the EEA, we use approved mechanisms under GDPR like Standard Contractual Clauses or work with companies certified under adequacy frameworks. These provide equivalent protection to what you'd receive under Irish and EU law.

Cookies and Tracking

Our website uses cookies – small text files stored on your device that help the site function and remember your preferences.

Essential Cookies

Some cookies are necessary for basic functionality like maintaining your logged-in session. These don't require consent because the website wouldn't work without them.

Analytics Cookies

We use analytics tools to understand how people use our site. This helps us identify confusing navigation or content that isn't working. You can opt out of analytics tracking through your cookie preferences.

Managing Cookies

Your browser settings let you block or delete cookies, though this might affect how some features work. Most browsers allow you to control cookie behaviour through their settings menu.

Children's Privacy

Our educational services are designed for adults. We don't knowingly collect personal information from anyone under 16 without parental consent. If you believe we've inadvertently collected data from a child, contact us immediately and we'll delete it.

Changes to This Policy

We review and update this privacy policy periodically to reflect changes in our practices or legal requirements. When we make significant changes, we'll notify you by email or through a prominent notice on our website.

The "Last updated" date at the top of this page shows when the current version took effect. We encourage you to review this policy occasionally to stay informed about how we protect your information.

Complaints and Regulatory Contact

If you're not satisfied with how we've handled your personal data or responded to a rights request, you have the right to lodge a complaint with the Irish Data Protection Commission.

Data Protection Commission
21 Fitzwilliam Square South
Dublin 2, D02 RD28
Ireland
Phone: +353 57 868 4800
Email: [email protected]

We'd appreciate the chance to address your concerns directly before you contact the regulator, but this is entirely your choice.