Privacy policy
Last updated: 16 June 2026
This policy explains what personal data Atoro collects through this website, why we collect it, and the rights you have over it. Atoro is a cyber compliance consultancy registered in Ireland. We keep this simple and honest, the way we advise our clients to.
Who we are
Atoro is the controller of the personal data described in this policy.
Office 6, Portarlington Enterprise Centre, Canal Road, Portarlington, Co. Laois, R32 XD4F, Ireland.
Privacy contact: info@atoro.io.
What we collect and why
Contact form enquiries
When you use the contact form we collect your name, email address and message. We use this to respond to your enquiry and, where relevant, to discuss our services with you. The lawful basis is taking steps at your request prior to entering into a contract (Article 6(1)(b) GDPR) and our legitimate interest in responding to business enquiries (Article 6(1)(f)). Submissions are stored in our website system and sent to our team by email.
Analytics and cookies
We use analytics tools, loaded through Google Tag Manager, to understand how the site is used, such as pages visited and general location at city level. This may set cookies or similar identifiers in your browser. We use this information in aggregate to improve the site; we do not use it to identify you personally.
Server logs
Our hosting provider keeps standard server logs, including IP addresses and requests, for security and reliability. These are retained for a limited period as part of ordinary hosting operations.
Email correspondence
If you email us, we hold your message and address in our business email system for as long as we need it to deal with your enquiry and maintain a record of our correspondence.
Who we share data with
We do not sell personal data. We share it only with the service providers that run this website and our business systems, acting as processors on our behalf: our hosting provider (Hostinger), our email and productivity provider (Google Workspace), and our analytics tooling (Google). Where these providers process data outside the European Economic Area, transfers rely on appropriate safeguards such as the European Commission’s Standard Contractual Clauses or an adequacy decision.
How long we keep it
We keep enquiry data for as long as needed to handle your enquiry and for a reasonable period afterwards in case the conversation resumes. If you become a client, information moves into our client records and is retained per our engagement terms. You can ask us to delete your enquiry data at any time.
Your rights
Under the GDPR you have the right to access the personal data we hold about you, to have it corrected or erased, to restrict or object to our processing of it, and to receive it in a portable format. To exercise any of these rights, email info@atoro.io. We will respond within one month.
If you are unhappy with how we handle your data, you can complain to the Irish Data Protection Commission (dataprotection.ie) or to your local supervisory authority.
Changes to this policy
If we change how we handle personal data, we will update this page and revise the date at the top.