Privacy Policy

Last Updated: February 9, 2026

This Privacy Policy describes how Org-swapai ("we," "us," or "our") collects, uses, and shares personal information when you visit our website at www.org-swapai.com, use our services, or otherwise interact with us. We are committed to protecting your privacy and ensuring your personal data is handled in accordance with the General Data Protection Regulation (GDPR) and Irish data protection laws.

1. Information We Collect

1.1 Personal Information You Provide

We may collect the following types of personal information that you voluntarily provide to us:

  • Contact Information: Name, email address, phone number, and postal address
  • Farm Information: Farm size, location, production types, and other details about your agricultural operation
  • Business Information: Business name, business contact details, and role/position
  • Correspondence: Information contained in your communications with us
  • Service Information: Details about the services you're interested in or have engaged us for

1.2 Information Collected Automatically

When you visit our website, we may automatically collect certain information about your device and usage, including:

  • Device Information: IP address, browser type, operating system, and device type
  • Usage Data: Pages visited, time spent on pages, links clicked, and interaction with website features
  • Location Information: General location based on IP address
  • Cookies and Similar Technologies: Information collected through cookies and similar tracking technologies (see our Cookie Policy for more details)

2. How We Use Your Information

We use your personal information for the following purposes:

2.1 Providing Our Services

  • To deliver the services you have requested or contracted us for
  • To respond to your inquiries, questions, and requests
  • To provide tailored advice and recommendations for your farming operation
  • To process payments and maintain records of transactions

2.2 Communication and Marketing

  • To communicate with you about our services, updates, and news
  • To send you newsletters, educational content, and event invitations
  • To provide information about relevant farming grants, subsidies, and opportunities
  • To conduct surveys and gather feedback about our services

We will only send you marketing communications if you have given your consent or if we have another lawful basis to do so. You can opt out of receiving marketing communications at any time by following the unsubscribe instructions in our emails or contacting us directly.

2.3 Improving Our Services

  • To analyze and improve the functionality and user experience of our website
  • To develop new services and features based on user needs and preferences
  • To monitor and analyze usage patterns and trends
  • To diagnose technical issues and maintain security

2.4 Legal and Compliance Purposes

  • To comply with legal obligations and regulatory requirements
  • To enforce our terms of service and other agreements
  • To protect our rights, privacy, safety, or property, and/or that of our clients or others
  • To detect and prevent fraud, security breaches, and other potentially prohibited or illegal activities

3. Legal Basis for Processing

We process your personal information based on one or more of the following legal grounds:

  • Consent: Where you have given us explicit consent to process your data for specific purposes
  • Contract Performance: When processing is necessary to fulfill a contract with you or take steps at your request before entering into a contract
  • Legitimate Interests: When processing is necessary for our legitimate interests or those of a third party, provided these interests are not overridden by your rights and freedoms
  • Legal Obligation: When processing is necessary to comply with a legal or regulatory obligation

4. How We Share Your Information

We may share your personal information with the following categories of recipients:

4.1 Service Providers

We may share your information with third-party service providers who perform services on our behalf, such as:

  • IT and system administration providers
  • Professional advisors (e.g., accountants, lawyers, consultants)
  • Payment processors
  • Customer relationship management systems
  • Marketing and communication platforms

These service providers are only permitted to use your information to provide services to us and are required to maintain the confidentiality and security of your data.

4.2 Partners and Affiliates

With your consent, we may share your information with agricultural partners, certification bodies, or other organizations that may provide complementary services to support your organic farming transition.

4.3 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).

4.4 Business Transfers

If we are involved in a merger, acquisition, reorganization, or sale of all or a portion of our assets, your information may be transferred as part of that transaction.

4.5 With Your Consent

We may share your information with other third parties when we have your consent to do so.

5. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. The criteria used to determine our retention periods include:

  • The duration of our ongoing relationship with you
  • Our legal obligations under applicable laws
  • Statutes of limitations for legal claims
  • The nature of the data and its sensitivity
  • The potential risk of harm from unauthorized use or disclosure

When we no longer need to process your personal information, we will securely delete or anonymize it. If this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store it and isolate it from any further processing until deletion is possible.

6. Your Rights

Under the GDPR and Irish data protection laws, you have certain rights regarding your personal information:

  • Right to Access: You can request a copy of the personal information we hold about you.
  • Right to Rectification: You can ask us to correct inaccurate or incomplete information.
  • Right to Erasure: You can ask us to delete your personal information in certain circumstances.
  • Right to Restriction of Processing: You can ask us to restrict the processing of your information in certain circumstances.
  • Right to Data Portability: You can ask us to transfer your information to another organization or directly to you.
  • Right to Object: You can object to the processing of your personal information in certain circumstances.
  • Right to Withdraw Consent: Where we process your data based on consent, you can withdraw this consent at any time.

To exercise these rights, please contact us using the details provided in the "Contact Us" section below. We will respond to your request within one month, although we may extend this period by up to two additional months if necessary due to the complexity or number of requests.

Please note that some of these rights may be limited where we have compelling reasons to continue processing your information.

7. Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized or unlawful processing, accidental loss, destruction, or damage. These measures include:

  • Encryption of sensitive data
  • Regular security assessments
  • Access controls and authentication procedures
  • Staff training on data protection
  • Secure data storage systems

While we strive to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure. Therefore, we cannot guarantee absolute security.

8. International Data Transfers

We primarily process and store your personal information within the European Economic Area (EEA). However, some of our service providers may be based outside the EEA, which means your data may be transferred to and processed in countries that may not provide the same level of data protection as your country of residence.

When we transfer your personal information outside the EEA, we ensure that appropriate safeguards are in place, such as:

  • Transferring to countries that have been deemed to provide an adequate level of protection by the European Commission
  • Using specific contracts approved by the European Commission that give personal data the same protection it has in Europe
  • Transferring data to US-based providers that are part of privacy frameworks recognized by the European Commission as providing adequate protection

9. Cookies and Similar Technologies

We use cookies and similar tracking technologies to collect and use information about you and your device. For more detailed information about the cookies we use and how to manage your cookie preferences, please see our Cookie Policy.

10. Children's Privacy

Our services are not directed to individuals under the age of 16, and we do not knowingly collect personal information from children. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us, and we will take steps to delete such information.

11. Third-Party Links and Services

Our website may contain links to third-party websites, services, or content that are not owned or controlled by us. We are not responsible for the privacy practices or content of these third parties. We encourage you to review the privacy policies of any third-party sites or services you visit.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any material changes by posting the updated policy on our website with a revised "Last Updated" date. We encourage you to review this Privacy Policy periodically.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Data Protection Officer
Org-swapai
6, Trinity St, Dublin 2, D02 EY47
Ireland
Email: privacy@org-swapai.com
Phone: +353 1 676 4000

14. Complaints

If you are not satisfied with our response to your concern or believe our processing of your information does not comply with data protection law, you have the right to lodge a complaint with the Data Protection Commission (DPC), the Irish supervisory authority for data protection issues:

Data Protection Commission
21 Fitzwilliam Square South
Dublin 2
D02 RD28
Ireland
Website: www.dataprotection.ie