TrenchMonkeyz Privacy Policy
TrenchMonkeyz - Server Infrastructure & Hosting SolutionsPRIVACY POLICY
Last Updated: 19-02-2026
I, trading as TrenchMonkeyz ("I", "me", "my"), respect your privacy and am committed to protecting your personal data. This Privacy Policy explains how I collect, use, disclose, and safeguard your information when you use my services, including my websites at trenchmonkeyz.com and ai.trenchmonkeyz.com.
This policy complies with the General Data Protection Regulation (Regulation (EU) 2016/679 — "GDPR") and the Irish Data Protection Act 2018.
- DATA CONTROLLER
I am the data controller for your personal data.
Trading as: TrenchMonkeyz Sole Trader Name: [Your Full Name] Business Address: [Business Address, City, County, Ireland] VAT Number: [VAT Number] Email: [Privacy Email Address] Phone: [Phone Number]
I do not have a statutory requirement to appoint a Data Protection Officer, but if you have privacy-related questions, please contact me at [Privacy Email Address].
- WHAT PERSONAL DATA I COLLECT
2.1 Information You Provide:
- Account information: name, email address, billing address, phone number, company name, VAT number
- Payment information: credit/debit card details, bank account information (processed by my payment processor — I do not store full payment card numbers)
- Communication data: emails, support tickets, chat messages, survey responses
- Service data: configurations, preferences, domain information, content you upload to my Services
2.2 Information Collected Automatically:
- Technical data: IP address, browser type and version, operating system, device type
- Usage data: pages visited, time spent, click patterns, referral sources
- Cookie data: see my Cookie Policy section below
2.3 AI Service Data:
- Input data: any text, files, images, or other data you submit to AI Services
- Output data: content generated by AI Services based on your input
- Interaction data: metadata about how you use AI Services
- HOW I USE YOUR PERSONAL DATA
I use your personal data for the following purposes and legal bases:
| Purpose | Lawful Basis (GDPR Art. 6) |
|---|---|
| Account creation & mgmt | Contract (Art. 6(1)(b)) |
| Service delivery | Contract (Art. 6(1)(b)) |
| Payment processing | Contract (Art. 6(1)(b)) |
| Technical support | Contract (Art. 6(1)(b)) |
| Service improvement | Legitimate Interest (Art. 6(1)(f)) |
| Fraud prevention | Legitimate Interest (Art. 6(1)(f)) |
| Legal compliance | Legal Obligation (Art. 6(1)(c)) |
| Marketing (with consent) | Consent (Art. 6(1)(a)) |
| AI model improvement | Legitimate Interest (Art. 6(1)(f)) or Consent where required |
If I rely on consent, you may withdraw it at any time without affecting the lawfulness of processing carried out before withdrawal.
- AI-SPECIFIC DATA PROCESSING
4.1 Input Data: When you use my AI Services, any data you input is processed to generate outputs. I process this data only as necessary to provide the requested service.
4.2 Model Training: I may use anonymised or aggregated data to improve my AI models. I will: (a) Notify you before using your data for training purposes; (b) Provide an opt-out mechanism where required; (c) Anonymise data where reasonably practicable before using it for training. If you wish to opt out of your data being used for AI model training, contact me at [Privacy Email Address].
4.3 Third-Party AI Providers: My AI Services may use third-party AI model providers (e.g., OpenAI, Anthropic, or similar). These providers process data in accordance with their own privacy and security practices. I ensure, through contractual safeguards, that such providers comply with GDPR requirements.
4.4 Automated Decision-Making: Where AI Services are used for automated decision-making that produces legal effects or similarly significant effects, you have the right to: (a) Request human intervention; (b) Express your point of view; (c) Contest the decision.
4.5 Data Retention for AI Services: Input and output data from AI Services is retained only as long as necessary to provide the service and for the retention periods set out in Section 7 below, unless you request earlier deletion.
- COOKIES AND TRACKING
5.1 I use cookies and similar tracking technologies. For full details, see my Cookie Policy available at trenchmonkeyz.com/cookies and ai.trenchmonkeyz.com/cookies.
5.2 Categories of cookies I use:
- Strictly Necessary: Required for website functionality. No consent required.
- Analytics: Help me understand how visitors use my sites. Consent required.
- Functional: Remember your preferences. Consent required.
- Marketing: Used to deliver relevant advertisements. Consent required.
5.3 I use cookie consent management tools that allow you to accept or reject cookies by category. Your preferences are stored and respected.
- DATA SHARING AND DISCLOSURES
6.1 I share your data only as necessary to provide my Services:
| Recipient Type | Purpose | Safeguards |
|---|---|---|
| Payment processors | Payment processing | DPA in place, PCI DSS |
| Cloud infrastructure | Service hosting | DPA in place, EU/EEA |
| AI model providers | AI Service delivery | DPA in place, GDPR compliant |
| Domain registries | Domain registration | Registry policies |
| Email providers | Communications | DPA in place |
| Legal authorities | Legal compliance | Lawful request required |
6.2 I do not sell your personal data to third parties.
6.3 Where third parties process your data, I have Data Processing Agreements (DPAs) in place that require them to protect your data to the same standards I do.
- DATA RETENTION
I retain your personal data only as long as necessary for the purposes for which it was collected:
| Data Type | Retention Period |
|---|---|
| Account data | Duration of account + 6 years |
| Payment records | 7 years (legal obligation) |
| Support communications | 3 years from resolution |
| Usage/analytics data | 26 months (anonymised after) |
| AI input/output data | [Specify — suggested: 90 days after project completion unless you request earlier deletion] |
| Cookie data | As per cookie expiry periods |
After the retention period ends, your data is securely deleted or anonymised.
- INTERNATIONAL DATA TRANSFERS
8.1 Your data may be transferred to and processed in countries outside the European Economic Area (EEA).
8.2 Where transfers occur, I ensure appropriate safeguards under GDPR Art. 46:
- Adequacy decisions by the European Commission (where applicable);
- Standard Contractual Clauses (SCCs) adopted by the European Commission;
- Supplementary measures where required by the Irish DPC.
8.3 For AI Services, data may be processed on servers in the US or other jurisdictions. I rely on SCCs and supplementary measures to ensure adequate protection.
8.4 You may request a copy of the relevant safeguard documentation by contacting me at [Privacy Email Address].
- YOUR RIGHTS UNDER GDPR
Under GDPR, you have the following rights:
| Right | What It Means |
|---|---|
| Access (Art. 15) | Request a copy of your personal data |
| Rectification (Art. 16) | Correct inaccurate or incomplete data |
| Erasure (Art. 17) | Request deletion of your data ("right to be forgotten") |
| Restriction (Art. 18) | Restrict processing of your data |
| Portability (Art. 20) | Receive your data in a portable format |
| Objection (Art. 21) | Object to processing based on legitimate interests |
| Withdraw Consent | Withdraw consent at any time where consent is the basis |
| Lodge Complaint (Art. 77) | Complain to the Irish Data Protection Commission |
To exercise any of these rights, contact me at [Privacy Email Address]. I will respond within 30 days (GDPR Art. 12).
- DATA SECURITY
10.1 I implement appropriate technical and organisational measures to protect your personal data, including:
- Encryption in transit (TLS 1.2+)
- Encryption at rest where appropriate
- Access controls and authentication
- Regular security assessments
- Staff training on data protection (applicable if I engage subcontractors)
- Incident response procedures
10.2 Despite my efforts, no security measures are perfect. I cannot guarantee absolute security.
10.3 In the event of a data breach that poses a risk to your rights and freedoms, I will notify you and the Irish DPC within 72 hours as required by GDPR Art. 33-34.
- CHILDREN'S PRIVACY
My Services are not intended for individuals under 18. I do not knowingly collect personal data from children. If you believe a child has provided me with personal data, contact me at [Privacy Email Address] so I can delete it.
- THIRD-PARTY LINKS
My websites may contain links to third-party websites. I am not responsible for the privacy practices of those websites. I encourage you to read their privacy policies.
- CHANGES TO THIS PRIVACY POLICY
I may update this Privacy Policy from time to time. Material changes will be notified:
- By email to registered users;
- By a notice on my websites;
- By updating the "Last Updated" date at the top.
I encourage you to review this policy periodically.
- COMPLAINTS
If you have a complaint about how I handle your personal data, please contact me first at [Privacy Email Address]. I will respond within 30 days.
If you are not satisfied with my response, you have the right to lodge a complaint with:
Irish Data Protection Commission 21 Fitzwilliam Square South Dublin 2, D02 RD28 Ireland Website: www.dataprotection.ie Phone: +353 (0)57 868 4800
- CONTACT
For any questions about this Privacy Policy or to exercise your rights:
TrenchMonkeyz (Sole Trader) Business Address: Dundalk, County Louth, Ireland Email: policy@trenchmonkeyz.com
DISCLAIMER: This document is a template for informational purposes. It does not constitute legal advice. This Privacy Policy must be reviewed by a qualified solicitor qualified in Irish law before publication or use. Laws and regulations, including the EU AI Act and GDPR, are subject to change.