Privacy Policy
Northrope Limited (Updated 2025)

1. Introduction

NORTHROPE Limited (“we”, “us”, “our”) is committed to protecting your personal data and respecting your privacy.

This Privacy Policy explains:

• what personal data we collect,

• how and why we use it,

• your rights under the EU GDPR and the Irish Data Protection Act 2018,

• and how you can contact us.

By using our website, you agree to this Privacy Policy.

​

2. Data Controller

NORTHROPE Limited
Registered Office: Dublin, Ireland
Email: [insert email]
Phone: [insert number]
Website: www.southrope.com

We are registered and operating under Irish and EU data protection laws.

​

3. Personal Data We Collect

3.1 Data you provide to us

When you contact us (e.g., via email or contact form), we may collect:

• Name

• Email address

• Phone number (optional)

• Message content

• Company information (optional)

Legal basis: Art. 6(1)(b) GDPR – steps prior to entering a contract, or
Art. 6(1)(f) GDPR – legitimate interest (communication).

3.2 Automatically collected data (server logs)

When you visit our website, the server automatically collects:

• IP address (may be anonymised)

• Date and time of access

• Pages viewed

• Browser type and version

• Operating system

• Referrer URL

Legal basis: Art. 6(1)(f) GDPR – legitimate interest (website operation & security).

3.3 Cookies

Our website may use:

• Necessary cookies (for functionality)

• Optional cookies (analytics or marketing — only with consent)**

If a cookie banner is used, consent is collected according to Art. 6(1)(a) GDPR.

​

4. Analytics (Optional)

If we use analytics tools (e.g., Google Analytics), the following applies:

Google Analytics
Google Ireland Limited, Gordon House, Dublin 4.

Data processed:

• Pageviews

• User interaction behavior

• Device information

• IP address (truncated)

Legal basis: Art. 6(1)(a) GDPR – consent via cookie banner.

Transfers to the U.S. may occur based on Standard Contractual Clauses (SCCs).

(If you do not use analytics, remove this section.)

​

5. Third-Party Disclosure

We only share personal data with third parties when:

• you give explicit consent (Art. 6(1)(a)),

• it is required to fulfil a contract (Art. 6(1)(b)),

• we are legally obliged (Art. 6(1)(c)),

• or we have a legitimate interest (Art. 6(1)(f)),
  and if lawful and appropriate.

We do not sell your data.

​

6. Hosting

Our website is hosted by a third-party provider, who processes data (such as IP addresses) on our behalf.

We maintain a Data Processing Agreement (DPA) in accordance with Art. 28 GDPR.

​

7. International Transfers

If data is transferred outside the EU (e.g., to the USA):

• transfers are based on Standard Contractual Clauses (SCCs), or

• require your explicit consent under Art. 49 GDPR.

8. Data Retention

We store personal data only as long as necessary:

• Contact requests: usually 6 months

• Server logs: 7–30 days, depending on configuration

• Legal retention periods apply where required

9. Your Rights Under GDPR

As a data subject, you have the following rights:

• Right to access (Art. 15)

• Right to rectification (Art. 16)

• Right to erasure (Art. 17)

• Right to restriction (Art. 18)

• Right to data portability (Art. 20)

• Right to object (Art. 21)

• Right to withdraw consent (Art. 7)

To exercise these rights, contact us at any time.

10. Right to Lodge a Complaint

You have the right to lodge a complaint with the Irish supervisory authority:

Data Protection Commission (DPC)
21 Fitzwilliam Square South
Dublin 2, D02 RD28
Ireland
Website: www.dataprotection.ie

11. Data Security

We implement technical and organisational measures to protect your data, including:

• SSL encryption

• Access restrictions

• Secure servers

• Regular security updates

• Monitoring for suspicious activity

12. Changes to This Privacy Policy

We may update this Privacy Policy occasionally to reflect legal or operational changes.
The latest version is always available on our website