Privacy Statement

Edenderry Swimming Pool is committed to protecting the privacy of its users, we take privacy seriously, the purpose of this Privacy Policy is to describe to you how Edenderry Swimming Pool will use personal information about you that is submitted to Edenderry Swimming Pool.

This policy follows our obligations under the General Data Protection Regulation (GDPR) which came into effect on the 25th May 2018.


The GDPR replaces and amends existing regulations and laws and places an enhanced accountability and transparency obligations on organisations such as ours when using your personal data. The GDPR also introduces changes which will give you greater control over your personal data, including the right to object to processing of your data where that processing is being carried out for business.


Please take the time to read this policy. If you are under 16 years of age please review this policy with your parent or guardian and please ensure that you understand it.


Edenderry Swimming Pool may revise this Privacy Policy at any time by posting an update on its website. Please ensure that you check the website from time to time to review the then current Privacy Policy and to update your preferences.

The Information we process

To allow us to provide services and to run our business, we collect and process various types of information throughout your relationship with us including basic information such as your name and contact details. We may be required to take information from you in relation to family members and we aim to keep such data to a minimum. The details we take are vital to the progression of bookings and the successful completion of lessons. We do periodic reviews on all customer information held and we aim to keep everything relevant to the service being provided.

Collection of personal information

The types of personal information collected and stored by Edenderry Swimming Pool might include your name, date of birth, e-mail address, postal address, telephone number, mobile number and credit/debit card details (to the extent permitted by the Data Protection Act) “the DPA”.

By providing your personal information to Edenderry Swimming Pool, you consent to the collection and use of it in the context of advancing bookings and any other information provided to Edenderry Swimming Pool in accordance with this Privacy Policy.

Edenderry Swimming Pool (or any of its agents) may collect personal information about you in the following ways:

  1. Any data you provide over the phone, through social media or by email;
  2. any data which you provide when you complete and submit an application to Edenderry Swimming Pool to register on its website(s) or receive email alerts or other communications from Edenderry Swimming Pool;
  3. any data that you provide via postings to forums and blogs and any other posting that you make to Edenderry Swimming Pool website (in such circumstances the information posted by you will, of course, also be available to users of the website throughout the world);
  4. during any transaction with us; and
  5. any other data which you provide to Edenderry Swimming Pool when you enquire about our activities, email, telephone or write to us or otherwise provide us with personal information. Please note your calls to Edenderry Swimming Pool may be recorded for training and quality control purposes.
  6. Edenderry Swimming Pool (or any of its agents) may also receive information about you from third parties, for example a friend who wants to tell you about one of our websites.





Storage and retention of your information

Edenderry Swimming Pool will keep your information (to the extent permitted by the GDPR) to enable Edenderry Swimming Pool to use it for the purposes described in this Privacy Policy.

Data Protection Principles

We shall perform our responsibilities under the Data Protection Acts and GDPR 2018 in accordance with the following eight Data Protection principles:

  •  Obtain and process information fairly

We shall obtain and process your personal data fairly and in accordance with statutory and other legal obligations.

  • Keep it only for one or more specified, explicit and lawful purposes

We shall keep your personal data for purposes that are specific, lawful and clearly stated. Your personal data will only be processed in a manner compatible with these purposes.

  • Retain for no longer than is necessary

Your personal data will be stored for a period of up to 24 months at which point it will be destroyed/purged from our databases or if given permission by you to extend will be held for up to a further 24 months

  • Use and disclose only in ways compatible with these purposes

We shall use and disclose your personal data only in circumstances that are necessary for the purposes for which we collected the data.

  • Keep it safe and secure

We shall take appropriate security measures against unauthorized access to, or alteration, disclosure or destruction of your personal data and against its accidental loss or destruction.

  • Keep it accurate, complete and up-to-date

We adopt procedures that ensure high levels of data accuracy, completeness and that your data is up-to-date.

  • Ensure it is adequate, relevant and not excessive

We shall only hold your personal data to the extent that it is adequate, relevant and not excessive.

  • Give a copy of his/ her personal data to that individual, on request

We adopt procedures to ensure that data subjects can exercise their rights under the Data Protection legislation to access their data.

Your Rights

Under the General Data Protection Regulation (GDPR) and The Data Protection Act 2018 (DPA) you have certain legal rights to control your information and the manner in which we process it, this includes:-

  • a right to access your personal data
  • a right to request us to correct inaccurate information, or to update incomplete information;
  • a right to request that we restrict the processing of your date in certain circumstances;
  • a right to receive the personal information you provided to us in portable format;
  • a right to object to us processing your personal data in certain circumstances; where you believe the information is not being used for a lawful purpose or for the purpose for which it was provided;
  • where we have requested your permission to use your data, you have a right to withdraw your consent.
  • You have a right to object to us processing information for direct marketing purposes;
  • You have right to withdraw consent for processing your data at any time, this must be notified to us in writing.





Fair and Lawful Processing

We must process personal data fairly and lawfully in accordance with individual’s rights under the first principle. This means that we should not process personal data unless the individual whose details we are processing has consented to this happening or we have a legitimate interest to do so.

“Consent” means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her

“Legitimate Interests” means the interests of our company in conducting and managing our business to enable us to give you the best service/products and most secure experience. For example, we have an interest in making sure our marketing is relevant for you, so we may

process your information to send you marketing that is tailored to your interests. It can also apply to processing that is in your interests. For example, we may process your information to protect you against fraud. When we process your personal information for our legitimate interests, we make sure to consider and balance any potential impact on you and your rights under data protection laws. Our legitimate business interests do not automatically override your interests. We will not use your Personal Data for activities where our interests are overridden by the impact on you unless we have your consent or are otherwise required or permitted to by law.

Subject Access Request

If you would like to have a copy of the data we hold about you, you can contact us by email at Also if you would like us to amend such details please also issue your request in writing by email. We will issue you with a form that will be required to be completed and posted back to us. This form will enable you to request exactly what information you need/ want. Once we have received your request back the office will begin processing and information will be returned within the timeframe specified under GDPR i.e 30 days.

The way we use your information

It is in our interest as a business to ensure that we provide you with the most appropriate service/ lessons or class bookings and that we continually develop and improve as an organization, this may require us to process your information to understand your preferences and expectations which will help us provide the most appropriate service.


Overall responsibility for ensuring compliance with Data Protection Acts rests with the Chairman.

All employees and contractors of Edenderry Swimming Pool who separately collect, control or process the content and use of personal data are individually responsible for compliance with the Data Protection Acts. The Pool Manager will co-ordinate the provision of support, assistance, advice, and training throughout Edenderry Swimming Pool to ensure that the Pool is in a position to comply with the legislation.

Procedures and Guidelines

Edenderry Swimming Pool is firmly committed to ensuring personal privacy and compliance with the Data Protection Acts, including the provision of best practice guidelines and procedures in relation to all aspects of Data Protection.

This Data Protection Policy is supplemented (and may be amended) by specific policies and procedures by the Board of Directors of Edenderry Swimming Pool.

Don`t copy text!

We are using cookies on our website

Please confirm, if you accept our tracking cookies. You can also decline the tracking, so you can continue to visit our website without any data sent to third party services.