Privacy Policy

At McGuirks Golf, we are deeply committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, share, and protect your personal information when you visit our website at mcguirksgolsf.com, make a purchase, or interact with our services in any way. We encourage you to read this document carefully to understand our practices.

This policy is governed by the General Data Protection Regulation (GDPR) (EU) 2016/679, the Data Protection Acts 1988–2018, and all other applicable Irish and European Union data protection legislation. McGuirks Golf acts as the Data Controller in respect of the personal data we collect and process.

1. Who We Are

McGuirks Golf is a golf retail and services business operating in Ireland. For all purposes relating to this Privacy Policy, our contact details are as follows:

If you have any questions, concerns, or requests relating to this Privacy Policy or the way we handle your personal data, please contact us using the details above. We will endeavour to respond to all inquiries promptly and in accordance with our legal obligations.

2. What Personal Data We Collect

We collect personal data in various ways, including directly from you, automatically when you use our website, and occasionally from third parties. Below, we outline the categories of personal data we may collect.

2.1 Personal Information You Provide to Us

When you interact with our website or services, you may voluntarily provide us with the following personal information:

• Identity Data: Your full name, username, or similar identifier.
• Contact Data: Your email address, postal address, telephone number, and other contact details.
• Account Data: Login credentials, account preferences, and profile information if you register an account on our website.
• Transaction Data: Details about the products or services you have purchased from us, including billing and delivery addresses, payment method information, and order history.
• Financial Data: Limited payment information required to process transactions. Please note that full payment card details are processed securely by our third-party payment processors and are not stored by McGuirks Golf directly.
• Communications Data: Any messages, emails, or other correspondence you send to us, including customer service enquiries and feedback.
• Marketing Preferences: Your preferences regarding receiving marketing and promotional communications from us.

2.2 Usage and Technical Data Collected Automatically

When you visit our website, we automatically collect certain technical and usage data. This includes:

• Device Information: The type of device you use, operating system, browser type and version, device identifiers, and screen resolution.
• Log Data: Your IP address, time zone, access times and dates, pages visited, referring URLs, and clickstream data.
• Usage Data: Information about how you navigate and interact with our website, including which pages you visit, how long you spend on each page, and the links you click.
• Location Data: General geographic location inferred from your IP address. We do not collect precise GPS location data unless you explicitly provide it.

2.3 Cookie and Tracking Data

We use cookies and similar tracking technologies (including pixels, web beacons, and local storage) to collect data about your browsing activities on our website. Please refer to Section 9 of this policy and our dedicated Cookie Policy for full details on the types of cookies we use and how to manage them.

2.4 Data from Third Parties

We may occasionally receive personal data about you from third-party sources, including:

• Analytics providers such as Google Analytics, which provide us with aggregated data about website traffic and usage patterns.
• Advertising networks and social media platforms, where you may have interacted with our advertisements or content.
• Payment and fraud prevention service providers who assist us in verifying transactions.
• Publicly available sources, where permitted by law.

3. How We Use Your Personal Data

We use the personal data we collect for specific, lawful purposes. Under the GDPR, we must have a legal basis for processing your personal data. The legal bases we rely upon include: performance of a contract, compliance with a legal obligation, our legitimate interests, and your consent (where applicable).

3.1 Provision of Services and Order Fulfilment

We use your personal data to process and fulfil your orders, manage your account, arrange delivery of goods, handle returns and refunds, and provide customer support. The legal basis for this processing is the performance of a contract between you and McGuirks Golf.

3.2 Website Operation and Improvement

We use technical and usage data to operate our website, ensure its security, diagnose technical problems, and improve its functionality and user experience. This processing is based on our legitimate interests in maintaining a high-quality, functional, and secure online presence.

3.3 Marketing and Promotional Communications

With your consent, or where we have a legitimate interest in doing so (such as marketing similar products to existing customers), we may use your contact information to send you newsletters, promotional offers, product updates, and information about special events or sales. You have the right to opt out of marketing communications at any time — see Section 7 for details on how to exercise this right.

3.4 Analytics and Business Intelligence

We use aggregated and anonymised data, as well as tools like Google Analytics, to understand how visitors use our website, which products are most popular, and how we can improve our business. This processing is based on our legitimate interests in understanding and growing our business.

3.5 Legal and Regulatory Compliance

We may process your personal data to comply with applicable laws and regulations, including Irish tax law, consumer protection legislation, and anti-fraud measures. This processing is based on compliance with a legal obligation.

3.6 Fraud Prevention and Security

We may use your data to detect, prevent, and investigate fraud, security incidents, and other potentially illegal or prohibited activities. This is based on our legitimate interests in protecting our business and our customers.

4. Sharing Your Personal Data with Third Parties

We do not sell your personal data to third parties. However, we may share your data with trusted third parties in the following circumstances:

4.1 Service Providers and Data Processors

We work with a number of carefully selected third-party service providers who process personal data on our behalf and under our instructions. These include:

• Payment processors: Secure third-party payment platforms that process card transactions on our behalf (e.g., Stripe, PayPal, or similar). These providers are bound by their own strict security and data protection obligations.
• Delivery and logistics partners: Courier and postal services used to deliver your orders. We share your name, delivery address, and contact number with these parties as necessary.
• Website hosting and IT service providers: Companies that host our website and provide technical infrastructure.
• Email marketing platforms: Services used to send marketing communications, subject to your consent or our legitimate interests.
• Analytics providers: Including Google Analytics, to help us understand website usage.
• Customer support tools: Software platforms used to manage customer enquiries and support tickets.

All third-party service providers are required to process your data securely and only for the purposes specified by us. They are not permitted to use your data for their own purposes.

4.2 Legal Requirements and Law Enforcement

We may disclose your personal data to courts, regulatory bodies, law enforcement agencies, or other public authorities where we are required to do so by law, or where such disclosure is necessary to protect the rights, property, or safety of McGuirks Golf, our customers, or others.

4.3 Business Transfers

In the event of a merger, acquisition, business sale, or restructuring, your personal data may be transferred to the new business entity. We will ensure that appropriate protections are in place and will notify you of any such transfer where required by law.

4.4 Consent-Based Sharing

We may share your personal data with third parties for purposes not listed above where we have obtained your explicit prior consent.

5. Data Security

McGuirks Golf takes the security of your personal data very seriously. We have implemented a range of appropriate technical and organisational measures to protect your data against unauthorised access, disclosure, alteration, loss, or destruction. These measures include:

• Encryption: Our website uses SSL/TLS encryption (HTTPS) to protect data transmitted between your browser and our servers.
• Access Controls: Access to personal data is restricted to authorised personnel only, on a need-to-know basis. All staff with access to personal data are trained in data protection principles.
• Secure Payment Processing: We use reputable, PCI DSS-compliant third-party payment processors and do not store full payment card details on our systems.
• Regular Security Reviews: We regularly review and update our security practices to address emerging threats and vulnerabilities.
• Data Minimisation: We only collect and retain the minimum amount of personal data necessary for the purposes for which it is processed.
• Incident Response: We have procedures in place to detect, report, and investigate personal data breaches. In the event of a breach that poses a risk to your rights and freedoms, we will notify the Data Protection Commission (DPC) and, where required, affected individuals, in accordance with our obligations under the GDPR.

While we take all reasonable steps to protect your data, please be aware that no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security, and you transmit information to us at your own risk.

6. Data Retention

We retain your personal data only for as long as is necessary to fulfil the purposes for which it was collected, including to satisfy any legal, accounting, or reporting obligations. The following general retention periods apply:

When your personal data is no longer required, we will securely delete or anonymise it in accordance with our data disposal procedures. If deletion is not immediately possible (for example, where data is stored in backup archives), we will ensure that the data is isolated and protected from further processing until deletion is feasible.

7. Your Rights Under GDPR and Irish Data Protection Law

As a data subject under the GDPR and the Data Protection Acts 1988–2018, you have a number of important rights in relation to your personal data. We are committed to facilitating the exercise of these rights promptly and free of charge, unless a request is manifestly unfounded or excessive.

7.1 Right of Access

You have the right to request a copy of the personal data we hold about you, along with information about how it is being processed. This is commonly known as a Subject Access Request (SAR). We will respond to your request within one month of receipt, as required by the GDPR.

7.2 Right to Rectification

If any of the personal data we hold about you is inaccurate or incomplete, you have the right to request that we correct or update it without undue delay.

7.3 Right to Erasure ("Right to be Forgotten")

You have the right to request the deletion of your personal data in certain circumstances, such as where the data is no longer necessary for the purpose for which it was collected, or where you withdraw your consent and there is no other legal basis for processing. Please note that this right is not absolute and may be limited by legal obligations we are required to comply with.

7.4 Right to Restriction of Processing

In certain circumstances, you have the right to request that we restrict the processing of your personal data — for example, while the accuracy of data is being contested, or where you have objected to processing based on our legitimate interests.

7.5 Right to Data Portability

Where processing is based on your consent or on a contract and is carried out by automated means, you have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another data controller.

7.6 Right to Object

You have the right to object to the processing of your personal data where that processing is based on our legitimate interests or for direct marketing purposes. Where you object to direct marketing, we will cease processing your data for that purpose immediately.

7.7 Rights in Relation to Automated Decision-Making and Profiling

You have the right not to be subject to decisions based solely on automated processing, including profiling, that produce legal or similarly significant effects concerning you. McGuirks Golf does not currently make automated decisions of this nature, but we will inform you if this practice changes.

7.8 Right to Withdraw Consent

Where we rely on your consent as the legal basis for processing your personal data, you have the right to withdraw that consent at any time without affecting the lawfulness of processing carried out prior to withdrawal. To withdraw consent for marketing communications, you may use the "unsubscribe" link in any email we send you, or contact us directly at [email protected].

7.9 How to Exercise Your Rights

To exercise any of the rights listed above, please contact our team using the following details:

• Email: [email protected]
• Website: mcguirksgolsf.com

We may need to verify your identity before processing certain requests. We will respond to your request within one calendar month. If your request is complex or we receive multiple requests from you simultaneously, we may extend this period by a further two months, in which case we will notify you of the extension within the first month.

8. International Data Transfers

McGuirks Golf is based in Ireland, and your personal data is primarily processed and stored within the European Economic Area (EEA). However, some of our third-party service providers (including certain analytics, cloud hosting, and email marketing platforms) may transfer or store your data outside the EEA, including in countries such as the United States.

Where such transfers occur, we ensure that appropriate safeguards are in place in accordance with GDPR requirements. These safeguards may include:

• Standard Contractual Clauses (SCCs) approved by the European Commission, which provide legally binding contractual protections for the transfer of personal data.
• Adequacy Decisions: Transfers to countries that the European Commission has determined provide an adequate level of protection for personal data.
• Binding Corporate Rules (BCRs): Where applicable for multinational organisations.

If you would like more information about the safeguards we have in place for international data transfers, or wish to obtain a copy of the relevant transfer mechanism, please contact us at [email protected].

9. Cookies and Similar Tracking Technologies

Our website uses cookies and similar technologies to improve your browsing experience, analyse website traffic, and support our marketing activities. A cookie is a small text file that is stored on your device when you visit a website. Cookies help websites recognise your device and remember certain information about your preferences or visit.

9.1 Types of Cookies We Use

• Strictly Necessary Cookies: These are essential for the operation of our website, such as enabling you to log in to your account or add items to your shopping cart. These cookies cannot be disabled.
• Performance and Analytics Cookies: These cookies collect information about how visitors use our website, such as which pages are visited most often. We use tools such as Google Analytics for this purpose. These cookies are only set with your consent.
• Functional Cookies: These cookies allow our website to remember your preferences and settings, such as your language or region. These are set with your consent.
• Targeting and Advertising Cookies: These cookies may be set by our advertising partners to build a profile of your interests and show you relevant advertisements on other websites. These cookies are only set with your explicit consent.

9.2 Managing Your Cookie Preferences

When you first visit our website, you will be presented with a cookie consent banner that allows you to accept or decline non-essential cookies. You can change your cookie preferences at any time using our cookie settings tool available on our website.

You can also manage cookies through your browser settings. Most browsers allow you to refuse or delete cookies. Please be aware that disabling certain cookies may affect the functionality of our website.

For full details on the cookies we use, their purposes, and how to manage them, please refer to our Cookie Policy.

10. Children's Privacy

McGuirks Golf does not knowingly collect, use, or share personal data from children under the age of 18. If you are under 18, please do not submit any personal information through our website or services.

If we become aware that we have inadvertently collected personal data from a child under 18 without appropriate parental consent, we will take immediate steps to delete that data from our systems. If you believe that we may have collected data from a child under 18, please contact us immediately at [email protected].

Parents and guardians who are concerned about their child's online privacy are encouraged to review this policy carefully and to supervise their children's use of our website.

11. Third-Party Websites and Links

Our website may contain links to third-party websites, social media platforms, or other external services. These links are provided for your convenience and information only. McGuirks Golf has no control over the content, privacy practices, or data handling of third-party websites, and this Privacy Policy does not apply to those sites.

We recommend that you review the privacy policy of any third-party website you visit. We accept no responsibility or liability for the privacy practices of any third-party sites accessed through links on our website.

12. Social Media and Online Advertising

McGuirks Golf may operate pages and profiles on social media platforms including, but not limited to, Facebook, Instagram, Twitter/X, and YouTube. If you interact with our social media pages, the relevant platform will process your personal data in accordance with its own privacy policy. We may receive aggregated or anonymised analytics data from these platforms about interactions with our content.

We may also use social media advertising tools (such as Meta Pixel or Google Ads) that allow us to deliver targeted advertisements to users of those platforms who have previously visited our website or expressed interest in our products. These tools use cookies and similar tracking technologies and are subject to your cookie consent preferences.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or the services we offer. When we make significant changes, we will notify you by:

• Posting a prominently displayed notice on our website;
• Sending an email notification to registered account holders, where appropriate; and/or
• Updating the "Last Updated" date at the top of this policy.

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your personal data. Your continued use of our website after any changes are posted constitutes your acknowledgment and acceptance of the updated policy.

14. How to File a Complaint with the Data Protection Commission

If you have concerns about how McGuirks Golf handles your personal data and you are not satisfied with our response to your complaint, you have the right to lodge a complaint with the Data Protection Commission (DPC), which is the supervisory authority for data protection in Ireland.

We would, however, appreciate the opportunity to address your concerns directly before you approach the DPC. Please do not hesitate to contact us in the first instance so that we can attempt to resolve the matter for you.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy, or if you wish to exercise any of your data protection rights, please contact us using the details below. We are committed to handling all privacy-related enquiries in a transparent, timely, and professional manner.