Who we are

Introduction

At Hart Gallery, we are committed to protecting your privacy and complying with the General Data Protection Regulation (GDPR). This Privacy Policy outlines how we collect, use, and safeguard your personal data in accordance with applicable data protection laws. By accessing our website or using our services, you consent to the terms of this Privacy Policy.

  1. Controller Information

Hart Gallery, located at Frascati Centre, Blackrock, Dublin, Ireland acts as the data controller for the personal information we collect and process. If you have any questions regarding the processing of your personal data or your rights under the GDPR, please contact us at Jennifer@hartgalleryireland.com.

  1. Personal Information We Collect

We collect and process the following categories of personal information:

2.1. Identity Information: This includes your name, email address, phone number, and any other information you provide to us when using our services or contacting us.

2.2. Financial Information: If you make a purchase from us, we collect payment details, such as credit card information, to process the transaction. However, we do not store your payment information on our servers. We use a trusted third-party payment processor to handle payment transactions securely.

2.3. Usage Information: We collect information about your use of our website, such as IP address, browser type, device information, and website activity. This information is collected through cookies and similar technologies. Please refer to our Cookie Policy for more details.

  1. Purpose and Legal Basis for Processing

We process your personal information for the following purposes:

3.1. Contractual Necessity: We use your personal information to fulfill our contractual obligations, such as processing your orders, delivering purchased art works, and providing customer support.

3.2. Legitimate Interests: We may process your personal information for our legitimate business interests, including improving our services, analyzing website usage patterns, and sending you promotional materials. We ensure that our legitimate interests are not overridden by your rights and freedoms.

3.3. Consent: Where required by law, we will obtain your consent before sending you direct marketing communications or using cookies and similar technologies.

  1. Data Retention

We will retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. After this period, your personal information will be securely deleted or anonymized.

  1. Data Sharing and Transfers

5.1. Third-Party Service Providers: We may share your personal information with trusted third-party service providers who assist us in delivering our services, such as payment processors, shipping companies, and IT service providers. These parties are contractually obligated to handle your data securely and only process it on our behalf.

5.2. Legal Compliance: We may disclose your personal information if required to do so by law or in response to valid legal requests from public authorities.

5.3. International Transfers: If we transfer your personal information to countries outside the European Economic Area (EEA), we will ensure appropriate safeguards are in place, such as using standard contractual clauses or relying on the recipient’s Privacy Shield certification.

  1. Your Rights

Under the GDPR, you have the following rights regarding your personal information:

6.1. Right of Access: You have the right to request access to the personal information we hold about you and receive a copy of it.

6.2. Right to Rectification: You have the right to request correction of any inaccurate or incomplete personal information we hold about you.

6.3. Right to Erasure: You have the right to request the deletion of your personal information in certain circumstances, such as when it is no longer necessary for the purposes for which it was collected.