Privacy Policy

Who We Are

Lumaton Wave is a financial services company registered in Ireland, specialising in event investment planning. Our registered address is Dunnaman, Dollas, Croom, Co. Limerick, V35 XD80, Ireland. We operate under the requirements of the General Data Protection Regulation (GDPR) and Ireland's Data Protection Act 2018.

When we refer to "we," "us," or "our" in this document, we mean Lumaton Wave. "You" and "your" refer to anyone who uses our website, contacts us, or engages with our services.

Information We Collect

The type of information we gather depends on how you interact with us. We don't collect data just because we can—every piece of information serves a specific purpose related to providing or improving our services.

Information You Provide Directly

When you reach out to us or use our services, you might share:

• Contact details like your name, email address, phone number, and postal address
• Financial information relevant to your investment planning needs
• Details about your investment goals and risk tolerance
• Documentation you submit for consultations or service delivery
• Communication preferences and feedback

Information Collected Automatically

Our website gathers certain technical data when you visit. This includes your IP address, browser type, device information, and which pages you view. We use this to understand how people use our site and spot any technical issues that need fixing.

We also track things like how long you spend on different pages and what links you click. This helps us figure out what content is useful and what might need improvement.

How We Use Your Information

We're pretty straightforward about why we need your data. Here's what we do with it:

We won't use your information for purposes beyond what's listed here without getting your permission first. And we definitely won't sell your data to third parties—that's not how we operate.

Sharing Your Information

We keep your information within our team whenever possible. But sometimes we need to share it with specific third parties to deliver our services properly.

Service Providers

We work with carefully selected companies that help us run our business. This might include website hosting providers, email services, or payment processors. These providers only access the information they need to do their specific job, and they're contractually required to protect it.

Professional Advisors

Occasionally we consult with lawyers, accountants, or other professional advisors. When we do, we only share what's necessary for them to provide their advice.

Legal Requirements

If Irish or European authorities require us to disclose information for legal proceedings or regulatory compliance, we'll do so. We might also share data if we genuinely believe it's necessary to prevent harm or protect someone's safety.

International Data Transfers

We primarily store and process data within Ireland and the European Economic Area. If we ever need to transfer information outside the EEA, we'll make sure appropriate safeguards are in place—things like Standard Contractual Clauses approved by the European Commission.

Some of our technology providers have servers in different locations, but they all meet European data protection standards. We review these arrangements regularly to ensure your information stays protected regardless of where it's processed.

Data Security

We take security seriously, though we won't pretend any system is completely foolproof. Our approach includes both technical and organisational measures to protect your information from unauthorised access, loss, or misuse.

Technical safeguards include encrypted connections, secure servers, and access controls. On the organisational side, our team receives regular training on data protection, and we limit access to personal information based on job requirements.

We regularly review and update our security practices as technology and threats evolve. If we ever experience a data breach that could affect you, we'll notify you and the Irish Data Protection Commission as required by law.

How Long We Keep Your Information

We don't hold onto data longer than necessary. The retention period depends on the type of information and why we collected it:

• Client records related to financial services are kept for seven years after our relationship ends, as required by Irish financial regulations
• Marketing contact information is retained until you ask us to remove it
• Website analytics data is typically retained for 26 months
• General enquiry information is kept for two years if no ongoing relationship develops
• Contract and transaction records follow statutory retention requirements

After these periods, we securely delete or anonymise the information so it can no longer identify you.

Your Rights

Under GDPR and Irish data protection law, you have several rights regarding your personal information. These aren't just theoretical—you can actually exercise them.

Access and Portability

You can ask for a copy of the personal information we hold about you. We'll provide this in a commonly used electronic format within one month of your request. If you want to move your data to another service provider, we'll help facilitate that where technically feasible.

Correction and Completion

If information we hold about you is inaccurate or incomplete, you can ask us to correct or update it. We'll do this promptly unless there's a legal reason we need to keep the original record.

Deletion

You can request that we delete your personal information in certain circumstances—for instance, if it's no longer needed for the original purpose or if you withdraw consent. Keep in mind that we might need to retain some information to meet legal obligations.

Restriction and Objection

You can ask us to restrict how we use your information or object to certain types of processing, particularly for marketing purposes. We'll honour these requests unless we have compelling legitimate grounds to continue processing.

Withdrawal of Consent

Where we process your information based on consent, you can withdraw that consent at any time. This won't affect any processing that happened before you withdrew consent, but we'll stop going forward.

To exercise any of these rights, contact us using the details at the end of this policy. We'll respond within one month, though complex requests might take up to three months—we'll let you know if that's the case.

Cookies and Tracking

Our website uses cookies—small text files stored on your device that help the site function properly and give us insight into how people use it.

We use essential cookies that are necessary for the website to work. These can't be disabled if you want to use the site. We also use analytical cookies to understand visitor behaviour and improve the user experience. You can control these through your browser settings.

We don't use advertising cookies or allow third-party advertisers to track you through our website.

Children's Privacy

Our services aren't directed at children under 18. We don't knowingly collect personal information from minors. If you're a parent or guardian and believe your child has provided us with personal information, please contact us and we'll delete it.

Changes to This Policy

We review and update this privacy policy periodically as our practices evolve and regulations change. When we make significant changes, we'll update the date at the top and notify you if you're an active client or subscriber.

We encourage you to check this page occasionally to stay informed about how we're protecting your information.

Your Right to Complain

We hope we can resolve any concerns you have about how we handle your data. But you also have the right to lodge a complaint with the Irish Data Protection Commission if you're not satisfied with our response.

The Data Protection Commission can be reached at:

Data Protection Commission
21 Fitzwilliam Square South
Dublin 2, D02 RD28
Ireland
Phone: +353 (0)761 104 800
Website: dataprotection.ie