Privacy Policy

At Apex Privacy we support companies in achieving GDPR compliance

Privacy Policy

Apex Privacy is an EU (Ireland) based company specialising in data protection services for organisations.
This Privacy Notice applies to the use of Apex Privacy website and to our use of personal data.

With privacy and data protection being the heart of our business, it is paramount for us to safeguard the privacy of our clients and visitors on our website, and to maintain compliance with global privacy legislation.

The data we process about you depends on how you avail of our services.

We Collect Data About You in the Following Instances

We Collect Data About You in the Following Instances:

• Joining our newsletter
• Downloading resources
• Inquiries on our services
• Filling in an online form
• Applying to our team

Our services are not intended for children, therefore we do not knowingly collect data from any natural person under the age of 18. If we learn we have collected or received personal information from a person under 18 we will delete that information. If you believe we might have any information from or about a person under 18, please contact us at

More Information
We strive for transparency in our data processing activities while also raising the bar as our knowledge and scope grow. For this reason, We may update this Privacy Notice from time to time. If we make any substantial changes to our processing, we will proactively inform you.

Apex Privacy as a Controller and Processor
Apex Privacy acts as a controller for the personal data belonging to our business contacts, namely the representatives of our corporate clients, potential clients and other stakeholders such as suppliers and their representatives. Apex Privacy may also act as a processor for personal data in the context of providing our DPO services to our clients. For example, when a corporate provides us with access to databases, software and communication tools during the course of our relationship. Our corporate customers always remain controllers of this personal data.
Personal Data We Collect
• Contact & Identity Data: includes an email address, name and phone number.
• Website Usage Data
• Aggregated data that helps us understand how to optimize our website to provide a better user experience
• Technical Data includes internet protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system device technology used to access this site.
We Process Personal Data for the Following Purposes
• Where we need to perform the contract we are about to enter into or have entered into with you
• Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests
• Where we need to comply with a legal or regulatory obligation to engage with you in a recruitment process.
The processing is based on our interest to establish new business relationships and to maintain the existing ones. Our marketing approach is based on our interest to gain insights from customers, potential customers, and other stakeholders. When we perform electronic marketing rest assured that we request your consent and provide opt-out mechanisms.

More Information
As we are a company dependent on certain core business operations, we conduct marketing to obtain new business contacts and establish new partnerships. We keep records of our clients’ and potential clients’ details to promote our services and provide resources. For example, when we perform outreach via email campaigns and marketing activities to provide a potential customer with free training material we have developed in order to increase their interest in our services.

You can unsubscribe from our mailing list by using the unsubscribe link in the relevant email at all times.

Data Sharing And Disclosures
We use third-party service providers to deliver our services and optimize how we operate our business. We audit our service providers who process your personal data to ensure that they do so in accordance with the laws and relevant data protection practices.

More Information
To ensure the processing of your personal data is performed in accordance with our standards, we enforce data processing agreements with every service provider we use for the personal data processing. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions. We will not disclose any personal data you have given to us other than as described in this statement, unless you have authorized us to so do, or if we are required to do so by law.

Data Security
Apex Privacy has an appropriate information security policy tied to procedures that protect personal data from breach, misuse and loss. We ensure we have technical and operational measures in place that define a standard for how we protect our client data.

More Information
Taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons whose personal data are subject to the GDPR, ApexPrivacy has implemented appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including the following as appropriate: the pseudonymisation and encryption of personal data; the ability to ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and services; the ability to restore the availability and access to data in a timely manner in the event of a physical or technical incident; and a process for regularly testing, assessing and evaluating the effectiveness of technical and organizational measures for ensuring the security of the processing. We guarantee that your data is kept confidential and secure. All the employees authorized to process your data are committed themselves to confidentiality. We have a procedure to manage data breaches which allow us to assess the possible risks, notify the relevant authorities and alert you in case your personal data may have been affected. We ensure awareness within our organization through regular training and consultation.

Your Rights
You have several rights concerning your personal data, such as the right to access, update, delete and have a copy of such data as well transfer it between IT environments of your choosing. We seek to ensure that you can exercise your rights efficiently. You exercise your rights by reaching us at

More Information
Under the law, you are granted six fundamental rights when data about you is being processed. We will ensure to reach out without undue delay when you submit a request related to exercising your data subject rights. Although uncommon, when applicable for official or legal reasons we may be unable to address the specific request you make related to your rights. As a data subject, you may: request access to the personal information we process about you; request that we correct inaccurate or incomplete personal information about you; request deletion of personal information about you; request restrictions, temporarily or permanently, on our processing of some or all personal information about you; request transfer of personal information to you or a third party where we process the data based on your consent or a contract with you, and where our processing is automated; and opt-out or object to our use of personal information about you where our use is based on your consent or our legitimate interests. If you wish to exercise your rights, or if you have any other question relating to your rights or this privacy statement, please contact us at You have the right to lodge a complaint with a supervisory authority.

We use cookies and other similar technologies to collect data on how our website is used. Through this analysis, we are able to improve and optimize our website user experience. For example, we get information on which service pages you go to, what blog texts you might be interested and how you navigate between the pages. In order to develop our website, it is important to know what kind of website content is most efficient and functional, this way we know what stays, what goes and what needs to be tweaked. The data we collect also helps us personalize services and marketing to you. We can, for example, define our customer personas and share content with you that you really respond to or might prove more useful. You can always disable cookies altogether in the browser settings or you can delete cookies from the browser and disable all targeted advertising and communication based on your previous visits on our website.

More Information
What are your options regarding cookies If you’d like to delete cookies or instruct your web browser to delete or refuse cookies, please check our instructions on how to disable cookies on your chosen browser as per below:

• Internet Explorer
• Chrome
• Firefox
• Safari

Please note, however, that if you delete cookies or refuse to accept them, you might not be able to use all of the features we offer, such as you will not be able to store your preferences and our Service might not display properly.

Retention Periods
We have determined retention periods based on the purpose of the processing and the rules set forth within the GDPR. For example, the GDPR requires us to remove data when it has served its purpose and is no longer of use. We review the personal data we collect (e.g. the information of our business contacts) regularly to ensure that the personal data we have is up-to-date and is not retained longer than needed or required by the regulation.

More Information
When not limited by applicable legislation, the retention periods are defined as follows: We retain your personal data for 3 years after the termination of the service agreement unless no other retention times are defined in the agreement. If you are listed as a potential customer, your personal data is erased when we have no reason to assume that you would be interested in our services. This usually takes place if we have not been in touch with you for the past 12 months. If you wish to have more detailed information about our retention times, please contact us at

Leaving Our Website
We may also provide links to other websites or services and provide access to products and services offered by third parties, whose privacy policies we don’t control. If you click on a link to an external site you will be subjected to that organization’s privacy policy, and not ours.

If you have any questions or comments, please don’t hesitate to contact us

manage cookies