Privacy Policy

Irish Bass Guide (trading name of Dave Power)
Last updated: 30 September 2025

1) Who we are

Controller: Dave Power, trading as Irish Bass Guide, County Wexford, Ireland.

This policy explains how we collect, use, share, and protect your personal data when you visit our website or contact us about guiding services.

2) What this covers

  • Visitors to our website (including embedded tools/widgets).

  • People who contact us via our web forms or email.

  • Clients (and prospective clients) for guiding sessions.

3) Personal data we collect

Information you provide:

  • Identity & contact: name, email, phone.

  • Booking details: preferred dates/times, experience level, wading comfort, gear owned.

  • Messages/notes you send us.

  • Optional health/safety notes you choose to provide (see section 4).

Information we collect automatically:

  • Basic technical data from your browser (IP address, device type, pages viewed).

  • Cookies/analytics if enabled (see section 8).

  • Security tools such as reCAPTCHA may collect usage data to prevent spam.

Information from third-party embeds (if used on a page):

  • Map/forecast/tide/sun-moon widgets (e.g., Windy, IPGeolocation, Google) can receive your IP address and browser details when their content loads. See section 6.

4) Special category data (health/safety)

We may ask for optional health/safety notes (e.g., mobility, medical considerations) to plan safe sessions. This is special category data. We will only process it with your explicit consent and only for safety planning. You can choose not to provide it.

How to reflect this on your form: add a required checkbox like
“I consent to Irish Bass Guide processing the health/safety notes I provide for session planning.”

5) How we use your data & lawful bases

Purpose | Examples | Legal basis

Respond to enquiries | Replying to your contact form/email | Legitimate interests (to run our business) or pre-contract steps at your request

Provide guiding services | Scheduling, communicating, delivering sessions | Contract

Safety planning | Considering terrain, tides, wading conditions | Explicit consent (for any health data)

Take deposits / invoicing (if/when used) | Sending deposit links, receipts | Contract; Legal obligation (tax)

Site security & spam prevention | reCAPTCHA, server logs | Legitimate interests

Legal & tax compliance | Revenue records, insurance | Legal obligation

We do not sell your personal data and we do not use automated decision-making or profiling.

6) Sharing your data (recipients)

  • Service providers (processors):

    • Squarespace (website & forms hosting).

    • Zoho Mail (email).

    • reCAPTCHA by Google (spam prevention), if enabled.

    • Third-party embeds for maps/forecasts/tides/sun-moon tables (only on pages where they are used).

  • Professional/Legal: Insurer, accountant, legal adviser (only if necessary).

  • Authorities: If required by law.

These providers only process data on our instructions and under appropriate contracts (DPAs) where applicable.

7) International transfers

Some providers may store/process data outside the EEA/UK (e.g., the US or India). In such cases, we rely on approved safeguards such as the EU Commission’s Standard Contractual Clauses or equivalent mechanisms.

8) Cookies & similar technologies

  • Essential cookies (site operation/security) — always on.

  • Analytics/marketing cookies (optional) — we only use these if we add them and, if required, with your consent via the cookie banner.

  • Third-party embeds may set their own cookies when loaded.

You can control cookies via your browser or our cookie settings (if implemented).

9) How long we keep your data

  • General enquiries: up to 24 months after last contact.

  • Booking and accounting records: 6 years (tax/legal).

  • Waivers/safety records: up to 7 years (insurance/legal).

  • Health/safety notes: only as long as needed for the specific session(s), then deleted or minimised.

We’ll keep data longer only if required by law or to establish/exercise/defend legal claims.

10) Your rights (EU/UK GDPR)

You can:

  • Access your data; correct inaccuracies; erase data (where applicable).

  • Restrict or object to processing in certain cases.

  • Withdraw consent at any time (does not affect prior lawful processing).

  • Portability (receive data you provided in a usable format, where applicable).

To exercise rights, contact us.


You also have the right to complain to the Data Protection Commission (Ireland) at dataprotection.ie.

11) Children

Our services are generally aimed at adults. If a minor participates, we require parent/guardian consent and will limit data collected to what is necessary for safety and scheduling. All minors must be accompanied by parent/guardian on any session.

12) Security

We use TLS/HTTPS, access controls, and data minimisation. No system is 100% secure, but we take reasonable steps to protect your data.

13) Changes to this policy

We may update this policy from time to time. The latest version will always be published here with the “Last updated” date.

Submit GDPR request