Privacy Policy

Last Updated: April 2025

Purpose

Breached Labs Limited is committed to protecting the privacy and rights of all individuals whose personal data we process. We operate in full compliance with the General Data Protection Regulation (EU) 2016/679 (GDPR) and the Data Protection Acts 1988–2018 in Ireland.

Personal Data We Collect and Why

We collect personal data solely for the purpose of delivering our security services effectively, communicating with our clients, and improving our platform.

Types of data we may collect include:

  • Name and contact information (email, phone number)
  • Address and location details
  • IP address and browser/device metadata
  • Cookies and usage data (e.g. website activity)
  • Any additional information voluntarily provided via our forms or communications

Usage Data

We automatically collect certain information when you interact with our services, including:

  • Device and browser information
  • Pages visited and time spent
  • Access times and referring pages
  • Diagnostic data to improve service performance

Tracking Technologies & Cookies

We use cookies and related technologies to enhance your experience and improve our services. These include:

  • Essential Cookies – For core functionality such as login and session management
  • Analytics Cookies – To monitor website traffic and usage patterns
  • Preference Cookies – To remember settings such as language
  • Performance Testing Cookies – Used to test and optimise new features

You can manage cookie preferences via your browser settings at any time.

Use of Your Personal Data

We may use your data to:

  • Deliver and maintain services
  • Communicate updates, invoices, or responses to support queries
  • Comply with contractual obligations
  • Improve and optimise our service experience
  • Fulfil legal obligations or respond to regulatory requests

Data Retention

We retain personal data only for as long as necessary to fulfil the purpose it was collected for, or to meet legal and contractual obligations. Where possible, data is anonymised or pseudonymised. Data no longer needed is securely deleted.

Data Transfers

All data is processed within the European Economic Area (EEA). If data must be transferred outside the EEA, we ensure such transfers comply with GDPR via appropriate safeguards (e.g. Standard Contractual Clauses).

Disclosure of Personal Data

We may disclose data:

  • To comply with legal obligations or government requests
  • To protect the rights or safety of Breached Labs, our users, or the public
  • In response to lawful subpoenas, court orders, or similar legal processes

We do not sell or share personal data with third parties for marketing purposes.

Data Security

We implement technical and organisational measures to protect your data, including encryption, access control, and secure data handling policies. However, no system is immune to risk. We continuously monitor and improve our practices to maintain the highest security standards.

Your Rights Under GDPR

As a data subject, you have the right to:

  • Access your personal data
  • Correct or update inaccurate information
  • Request erasure ("right to be forgotten")
  • Object to or restrict certain processing
  • Data portability (receive your data in a structured format)
  • Lodge a complaint with the Data Protection Commission (Ireland)

Changes to This Privacy Policy

We may update this policy periodically. The most current version will always be available on our website, with the "Last updated" date clearly indicated.

Contact Us

If you have any questions or would like to exercise your data rightsplease contact us.