Privacy Policy

Last updated: 5 December 2025

This Privacy Policy explains how Unique.I Ltd ("we", "us", or "our") collects, uses, and protects your personal information when you visit or make a purchase from www.uniquei.ie (the "Site") or otherwise interact with our services. Unique.I Ltd is a registered company in Ireland and complies with the General Data Protection Regulation (EU) 2016/679 (GDPR) and the Data Protection Acts 1988–2018.

1. Data Controller

Unique.I Ltd (Company Number: 770324) is the data controller responsible for all processing of personal data under this policy. Registered business address: The Talbot Building, Civic Street, Cherrywood Town Centre, Dublin 18, Dublin, Ireland. Unique.I Ltd is the data controller of your personal data.

Company Registration Number: 770324

Address: The Talbot Building, Civic Street, Cherrywood Town Centre, Dublin 18, Dublin, Ireland

Data Protection Officer (DPO): Maureen O' Sullivan

Email: privacy@uniquei.ie

If you have any questions or data protection requests, please contact our DPO. For security, we may ask you to verify your identity before processing certain requests.

2. Information We Collect

We collect and process the following categories of information:

A. Information You Provide Directly

  • Full name, email address, phone number, billing and shipping address

  • Order and payment details (processed securely through Shopify Payments, Stripe, or PayPal)

  • Account details (username, password, profile preferences)

  • Communications (emails, customer service messages, feedback)

B. Information Automatically Collected

  • Device, IP address, browser type, operating system

  • Usage data such as pages viewed, session duration, and interactions

  • Cookies and tracking data (see Section 7)

  • Server logs retained for 90 days for fraud and security purposes

C. Information from Third Parties

  • Analytics data from Google Analytics

  • Marketing insights from Meta or Google Ads

  • Data collected by e-commerce partners such as Shopify and Framer

This policy applies exclusively to www.uniquei.ie. External links or embedded third-party content (e.g., Instagram, TikTok) are governed by their own privacy terms.

3. Purpose and Lawful Basis for Processing

We process personal data under GDPR’s lawful bases: Purpose Lawful Basis Order fulfilment, payments, returns Performance of a contract Customer support and service updates Legitimate interest Marketing and newsletters Consent (explicit opt-in required) Site analytics and improvement Legitimate interest / Consent (for non-essential cookies) Legal, accounting, and tax compliance Legal obligation Fraud prevention and system security Legitimate interest

4. Sharing Your Data

Your data is shared only with trusted partners essential to our operations:

  • Shopify – e-commerce platform (Shopify Privacy Policy)

  • Framer – website builder (Framer Privacy Policy)

  • Payment Processors – Stripe, PayPal, Shopify Payments

  • Analytics and Advertising Tools – Google Analytics, Meta Pixel

  • Email Marketing and CRM Systems – Brevo (Sendinblue), Mailchimp, or other GDPR-compliant platforms used for newsletters, customer communication, and relationship management

  • Shipping Providers – An Post, DPD, or other couriers

These service providers process data solely to perform agreed functions and are bound by contractual GDPR obligations. Each third party acts as a data processor under contract with Unique.I and complies with GDPR requirements for security and confidentiality.

5. International Data Transfers

Some partners (e.g., Shopify, Meta, Google) may process data outside the EEA, including in the U.S. and Canada. Such transfers are safeguarded through Standard Contractual Clauses (SCCs) approved by the European Commission or equivalent protection mechanisms. For more details about Shopify’s data transfer practices and safeguards, users can review Shopify’s Data Processing Addendum and Privacy Policy. Some partners (e.g., Shopify, Meta, Google) may process data outside the EEA, including in the U.S. and Canada. Such transfers are safeguarded through Standard Contractual Clauses (SCCs) approved by the European Commission or equivalent protection mechanisms.

6. Data Retention

We keep personal data only for as long as necessary, justified by the purpose of processing and applicable legal obligations. Each retention period below reflects operational and regulatory needs, after which data is securely deleted or anonymised using industry-standard procedures:

  • Order and payment information – 6 years (statutory retention)

  • Account data – until deletion or 24 months of inactivity

  • Marketing data – until you withdraw consent

  • Support messages – 12 months after issue resolution

  • Technical and log data – 90 days for troubleshooting and security

7. Cookies and Tracking Technologies

We use cookies and similar technologies to improve user experience and site performance. For complete details of specific cookies used on our website, including their names, providers, and durations, please visit our dedicated Cookie Policy page, which complies with the EU ePrivacy Directive and GDPR transparency requirements.

We use cookies and similar technologies to improve user experience and site performance.

  • Essential cookies – necessary for site operation

  • Analytics cookies – track site usage (requires consent)

  • Marketing cookies – personalise advertising (requires consent)

Consent is gathered through a cookie banner before setting non-essential cookies. You can change preferences anytime in the Cookie Settings or browser controls.

For transparency, a full cookie table (name, provider, purpose, expiry) is provided in our Cookie Policy.

8. Your GDPR Rights

You have the right to:

  • Access – Obtain a copy of your personal data.

  • Rectification – Correct inaccurate or incomplete data.

  • Erasure – Request deletion of your data (“right to be forgotten”).

  • Restriction – Limit how we process your data.

  • Portability – Receive data in machine-readable format.

  • Objection – Object to processing based on legitimate interests.

  • Withdraw Consent – Revoke consent at any time.

Requests must be submitted to privacy@uniquei.ie. We will respond within 30 days and may verify your identity.

You may lodge complaints with the Data Protection Commission (DPC): www.dataprotection.ie

9. Security Measures

We apply appropriate technical and organisational controls and maintain a formal incident response procedure to identify, assess, and respond to potential data breaches swiftly. In the event of a confirmed breach that may affect your personal data, we will notify impacted users and the Data Protection Commission (DPC) within 72 hours as required by GDPR. Our security measures include:

  • SSL/TLS encryption for all data transmission

  • Role-based access and strong authentication

  • Data minimisation and pseudonymisation

  • Employee confidentiality agreements and training

  • Incident response plan with 72-hour breach notification to DPC and affected users when required

10. Children’s Data

Our services are not intended for individuals under 16 years. We do not knowingly collect such data. If a minor’s data is discovered, it will be erased promptly upon notification.

11. Policy Updates

We periodically update this Privacy Policy to reflect legal or operational changes. All updates are posted here with a revised “Last Updated” date.

By using our Site, you confirm you have read and understood this Privacy Policy.