Privacy Policy

Last Updated: 15th January 2026

clearstone Ltd ("we", "our", or "us") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, and protect your personal data when you visit our website or use our services.

Data Controller Information

The data controller responsible for your personal data is clearstone Ltd, a company registered in Ireland with registration number 8852256C. Our registered address is Baggot Street 49, Waterford, X23 7591, Munster, Ireland.

Data Collection

The data we collect includes information you provide directly to us and information we collect automatically when you use our website. We collect personal data to provide you with our technology review services and improve your experience on our website.

The types of personal data we may collect include:

• Contact information (name, email address, phone number)
• Communication preferences and feedback
• Website usage data and analytics information
• Technical information (IP address, browser type, device information)
• Cookies and similar tracking technologies

How We Use Your Information

We process your personal data based on legitimate interests, contractual necessity, and your consent where required. How we use your data depends on the services you use and your preferences.

We use your personal information for the following purposes:

• To provide and improve our technology review services
• To respond to your enquiries and provide customer support
• To send you relevant information about our services (with your consent)
• To analyse website usage and improve user experience
• To comply with legal obligations and protect our legitimate interests
• To prevent fraud and ensure website security

Legal Basis for Processing

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:

• Consent: When you have given clear consent for us to process your data for specific purposes
• Contractual necessity: When processing is necessary to provide services you have requested
• Legitimate interests: When we have legitimate business interests that are not overridden by your privacy rights
• Legal obligation: When we need to process data to comply with legal requirements

Data Sharing and Third Parties

We do not sell, trade, or rent your personal information to third parties. We may share your data with trusted service providers who assist us in operating our website and providing our services, subject to strict confidentiality agreements. These partners include web hosting providers, analytics services, and email communication platforms.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. Contact information is typically retained for 3 years after last contact, whilst website analytics data is retained for 2 years. You can request deletion of your data at any time, subject to legal retention requirements.

Your Rights

Under GDPR and applicable data protection laws, you have several rights regarding your personal data:

• Right of access: Request copies of your personal data
• Right to rectification: Request correction of inaccurate or incomplete data
• Right to erasure: Request deletion of your personal data
• Right to restrict processing: Request limitation of data processing
• Right to data portability: Request transfer of your data to another service
• Right to object: Object to processing based on legitimate interests
• Right to withdraw consent: Withdraw consent for data processing at any time

Cookies and Tracking

Our website uses cookies and similar tracking technologies to enhance your browsing experience and analyse website performance. For detailed information about our use of cookies, please refer to our Cookie Policy.

You can control cookie settings through your browser preferences and our cookie consent banner. Some cookies are essential for website functionality, whilst others require your consent.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. This includes encryption of data in transit, secure server infrastructure, regular security assessments, and staff training on data protection principles.

International Data Transfers

As an Irish company, we primarily process data within the European Economic Area (EEA). When we use service providers outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions, to protect your data in accordance with GDPR requirements.

Children's Privacy

Our services are not intended for children under the age of 16. We do not knowingly collect personal information from children under 16. If you believe we have inadvertently collected such information, please contact us immediately so we can delete it.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website and updating the "Last Updated" date. We encourage you to review this policy periodically.

Contact Information

If you have any questions about this Privacy Policy, wish to exercise your rights, or need to contact us regarding data protection matters, please get in touch with us:

Supervisory Authority

If you are not satisfied with our response to your privacy concerns, you have the right to lodge a complaint with the Irish Data Protection Commission (DPC), which is our lead supervisory authority under GDPR. You can contact the DPC at www.dataprotection.ie or by phone at +353 57 868 4800.