Privacy Policy

1. Who we are

golfpools.ie is operated by golfpools.ie, a company registered in Ireland. We are the data controller for personal data collected through this website.

Contact: privacy@irishgolfpools.ie

2. Data we collect

We collect only the data necessary to run your golf pool:

• Pool administrator: name, email address, pool name and settings
• Pool participants: name, email address, golfer pick selections
• Payment information: when paying for a Pool Pass or Season Pass, your payment is processed by Stripe. We do not store your card details — only a record of the transaction.

We do not collect government ID, financial data (beyond Stripe transaction references), or any sensitive personal data as defined under GDPR.

3. Why we collect it

• To provide the service: running golf pools, scoring entries, showing leaderboards
• To send transactional emails: pool management links, picks confirmation, and results
• To process payments: via Stripe where applicable

Our legal basis is contract performance (Article 6(1)(b) GDPR) — you provide data to use a service you have requested.

4. Data storage and security

• All data is stored on EU-based servers (Ireland / EU regions)
• Data is encrypted in transit (HTTPS/TLS) and at rest
• We use AWS infrastructure in the EU
• Access to personal data is restricted to authorised personnel only

5. Data retention

Personal data (name, email, picks) is retained for the duration of the golf tournament and for a period of 90 days after the tournament ends, after which it is permanently deleted. You may request earlier deletion at any time (see Your Rights below).

6. Third-party sharing

We do not sell your data or share it for advertising purposes.

We share data with the following third parties only as necessary to operate the service:

• Stripe — payment processing. Stripe processes card payments on our behalf and is subject to their own Privacy Policy. Stripe is certified to PCI DSS Level 1.
• AWS — infrastructure hosting within the EU.

No data is transferred outside the European Economic Area (EEA).

7. Cookies and tracking

golfpools.ie uses only essential, functional cookies (e.g. for session state). We do not use advertising cookies, tracking pixels, or third-party analytics tools that collect personal data.

8. Your rights under GDPR

As a data subject under GDPR, you have the right to:

• Access — request a copy of the personal data we hold about you
• Rectification — request correction of inaccurate data
• Erasure — request deletion of your personal data ("right to be forgotten")
• Restriction — request that we limit processing of your data
• Data portability — receive your data in a structured, machine-readable format
• Objection — object to processing based on legitimate interests

To exercise any of these rights, email privacy@irishgolfpools.ie with your request. We will respond within 30 days.

9. Complaints

If you are unhappy with how we handle your personal data, you have the right to lodge a complaint with the Data Protection Commission (DPC), Ireland's supervisory authority:

10. Changes to this policy

We may update this privacy policy from time to time. Material changes will be communicated to pool administrators via email. Continued use of the service after changes constitutes acceptance of the updated policy.