Privacy Policy

Introduction

brightforgia Ltd ("we", "our", or "us") is committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website brightforgia.world and use our services.

Data Controller Information

brightforgia Ltd is the data controller responsible for your personal data. Our contact details are:

• Company: brightforgia Ltd
• Address: Patrick Street 108, Waterford, X39 8180, Ireland
• Email: privacy@brightforgia.world
• Phone: +353 51 338 6822
• Registration Number: CRO816439

Data We Collect

We may collect and process the following types of personal data about you:

• Contact Information: Name, email address, phone number, postal address, and company details when you contact us or request our services.
• Communication Data: Records of communications between us, including emails, phone calls, and messages through our contact forms.
• Technical Data: IP address, browser type, device information, and website usage data collected through cookies and analytics tools.
• Service Data: Information related to the financial risk management and legal compliance services we provide to you.
• Marketing Data: Your preferences for receiving marketing communications and information about events or services.

How We Use Your Information

We use the personal data we collect for the following purposes, based on legitimate business interests, contractual necessity, or your consent:

• Service Provision: To provide financial risk management and legal compliance services, respond to enquiries, and manage client relationships.
• Communication: To communicate with you about our services, respond to questions, and provide customer support.
• Legal Compliance: To comply with legal obligations, regulatory requirements, and professional standards in the financial services sector.
• Business Operations: To manage our business operations, maintain records, and improve our services.
• Marketing: With your consent, to send you information about our services, industry updates, and relevant business communications.
• Website Analytics: To analyse website usage, improve user experience, and optimise our digital services.

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner. For detailed information about our use of cookies, please see our Cookie Policy.

Legal Basis for Processing

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:

• Contractual Necessity: Processing necessary to perform contracts for our services.
• Legitimate Interests: Processing necessary for our legitimate business interests, such as improving services and business communications.
• Legal Obligation: Processing required to comply with legal and regulatory requirements.
• Consent: Where you have given specific consent for marketing communications or cookie usage.

Data Sharing and Disclosure

We may share your personal data with the following categories of recipients:

• Service Providers: Third-party companies that provide services on our behalf, such as IT support, website hosting, and professional services.
• Legal and Regulatory Authorities: When required by law, court order, or regulatory requirement.
• Professional Advisers: Lawyers, accountants, and other professional advisers who assist us in providing our services.
• Business Partners: With your consent, we may share information with trusted business partners for legitimate business purposes.

We do not sell, trade, or otherwise transfer your personal data to third parties for their own marketing purposes without your explicit consent.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, comply with legal obligations, and resolve disputes. Specific retention periods depend on the type of data and the purpose for processing. Generally, we retain client data for seven years after the end of our business relationship to comply with financial services regulations. Marketing data is retained until you withdraw consent or for three years if there is no engagement.

Your Rights

Under GDPR and Irish data protection law, you have the following rights regarding your personal data:

• Right of Access: Request copies of your personal data.
• Right to Rectification: Request correction of inaccurate or incomplete data.
• Right to Erasure: Request deletion of your personal data in certain circumstances.
• Right to Restrict Processing: Request limitation of processing in certain circumstances.
• Right to Data Portability: Request transfer of your data to another organisation.
• Right to Object: Object to processing based on legitimate interests or for direct marketing.
• Right to Withdraw Consent: Withdraw consent where processing is based on consent.

To exercise any of these rights, please contact us using the contact information provided below. We will respond to your request within one month.

Data Security

We implement appropriate technical and organisational security measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption, access controls, regular security assessments, and staff training. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

International Transfers

We primarily process data within the European Economic Area (EEA). Where we transfer personal data outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission or transfers to countries with adequacy decisions.

Contact Information

If you have any questions about this Privacy Policy, wish to exercise your rights, or have concerns about how we handle your personal data, please contact us:

• Email: privacy@brightforgia.world
• Phone: +353 51 338 6822
• Post: brightforgia Ltd, Patrick Street 108, Waterford, X39 8180, Ireland

Complaints

If you believe we have not handled your personal data in accordance with data protection law, you have the right to lodge a complaint with the Irish Data Protection Commission (DPC). You can contact the DPC at www.dataprotection.ie or by phone at +353 57 868 4800.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes, we will update the "Last updated" date at the top of this policy and notify you of any material changes through our website or direct communication. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

Governing Law

This Privacy Policy is governed by Irish law and the General Data Protection Regulation (GDPR). Any disputes arising from this policy will be subject to the jurisdiction of the Irish courts.