Privacy Policy
Version: 2.0
Effective date: 29/06/2026
Governing law: Republic of Ireland
Contact: info@ceolconnect.com
This Privacy Policy explains how CeolConnect Now Ltd (“CeolConnect”, “we”, “us”, “our”) collects, uses, shares, and protects personal data when you use the CeolConnect platform and website (together, the “Platform”). It applies to all registered users, including Artists and Venues, as well as visitors to our informational website. CeolConnect is committed to processing personal data in compliance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the Data Protection Acts 1988–2018. Please read this policy carefully. By registering on the Platform or using our services, you confirm that you have read and understood this policy.
1. Data Controller
CeolConnect Now Ltd is the data controller of personal data collected from users of the Platform. Our registered address is:
CeolConnect Now Ltd
Clooneigh, Carrick-on-Shannon, Co. Roscommon, Ireland
Email: info@ceolconnect.com
As data controller, CeolConnect is responsible for determining the purposes and means of processing your personal data and for ensuring that processing is carried out lawfully, fairly, and transparently.
2. Information We Collect
We collect the following categories of personal data, depending on whether you use the Platform as an Artist or as a Venue.
Account Information (all users)
When you create an account, we collect information associated with that account, including your name, email address, contact details, account credentials, and profile photograph.
Artist Profile Data
If you register as an Artist, we additionally collect: artist biography, genre, performance style, and experience; audio samples, photographs, and videos forming your artist profile; performance history and booking records; and indicative rates and availability information.
Artist Payment and Verification Data
In connection with our In-App Payment functionality (Version 2), we collect bank account or IBAN/BIC details provided by Artists for the purpose of receiving Gig fee disbursements. We and our payment service provider, Stripe, may also collect identity verification documents (“KYC documents”) such as government-issued identification, in order to comply with antimoney laundering legislation and to verify your identity before payments are made.
Venue Business Data
If you register as a Venue, we additionally collect: business name, address, and any available registration or licence information; insurance documentation where requested; and Gig history, booking records, and communications with Artists.
Booking and Payment Data
We collect information relating to bookings and financial transactions carried out through the Platform, including: Gig bookings, confirmations, and cancellations; ratings and reviews submitted by users; and payment and billing records. Payment card details and Venue billing data are processed by our third-party payment provider, Stripe, and are not stored by CeolConnect.
Communication Information
If you communicate with us, including by email, in-app messaging, or through our social media pages, we may collect your name, contact details, and the content of those communications.
Technical and Usage Information
When you access the Platform, we automatically collect certain technical information, including:
- Log data: IP address, browser type and settings, date and time of access, and page interaction patterns.
- Usage data: features used, pages or content viewed, actions taken, time zone, device type, and access timestamps.
- Device information: device name, operating system, device identifiers, and browser type.
- Location inference: general geographic location inferred from IP address for security and fraud prevention purposes. The Platform does not collect precise GPS location.
Cookies and Similar Technologies
Our informational website uses cookies and similar tracking technologies to operate the site and improve user experience. Full details are set out in our Cookie Notice, available on the website. The CeolConnect mobile application does not use browser cookies but may collect usage and analytics data as described in this Policy.
3. How We Collect Your Data
We collect personal data through the following means:
- Account registration and profile creation or updates.
- Booking, messaging, and communication tools within the Platform.
- Interactions with the Platform via mobile or other devices.
- KYC and identity verification processes conducted by Stripe on our behalf.
- Customer support enquiries and correspondence.
- Automatic technical collection when you access the Platform or website (as described above).
4. How We Use Your Data
We use personal data for the following purposes:
- To create, administer, and manage your account and Platform profile.
- To facilitate Gig bookings, confirmations, cancellations, and related communications between Artists and Venues.
- To process payments, disburse Gig fees to Artists, and issue payment confirmations or receipts.
- To carry out identity verification and Know Your Customer (KYC) checks in compliance with anti-money laundering legislation.
- To detect and prevent fraud, misuse of the Platform, unauthorised account access, and financial crime.
- To support trust, safety, and internal moderation processes.
- To send essential service-related communications, including booking updates, payment notifications, and Platform notices.
- To monitor, analyse, and improve the performance, functionality, and features of the Platform.
- To comply with applicable legal, regulatory, and contractual obligations, including obligations under Irish Revenue, company law, and anti-money laundering legislation.
CeolConnect does not use personal data to train machine learning or artificial intelligence models. We do not sell personal data to third parties or share it for advertising or marketing purposes without your explicit consent.
5. Legal Basis for Processing (GDPR)
We process personal data on the following legal bases under Article 6 GDPR:
Performance of a contract: Where processing is necessary to provide the Platform services to which you have registered, including managing your account, facilitating Gig bookings, processing payments, and administering Gig fee disbursements.
Legal obligation: Where processing is necessary to comply with a legal obligation, including obligations under Irish Revenue law, company law, and the Criminal Justice (Money Laundering and Terrorist Financing) Acts 2010–2021. This includes processing for AML compliance, KYC verification, and financial record-keeping.
Legitimate interests: Where processing is necessary for our legitimate interests, including maintaining Platform security and integrity, preventing fraud and misuse, improving Platform performance, and communicating about Platform changes. Such processing is carried out only where our legitimate interests are not overridden by your fundamental rights and freedoms.
Consent: Where you have given your explicit consent, including in relation to optional features such as marketing communications. You may withdraw your consent at any time without affecting the lawfulness of processing carried out prior to withdrawal.
6. Sharing Your Data
We share personal data only to the extent strictly necessary for the operation, security, and delivery of the Platform. We may share relevant personal data with the following categories of recipients:
- Stripe, Inc. and its European affiliate Stripe Payments Europe, Ltd., for the purpose of processing Venue subscription payments, collecting Venue Gig fee payments, disbursing Gig fees to Artists, and conducting KYC identity verification on Artists and Venues.
- Cloud hosting and infrastructure providers, which host and maintain our systems and data on servers located within the European Economic Area.
- Customer support and analytics service providers, engaged to support secure and efficient operation of the Platform.
- Regulatory authorities, law enforcement agencies, and courts, where we are required to disclose data by law or legal process, including
All third-party recipients are contractually required to process personal data solely on our instructions, to apply appropriate technical and organisational security measures, and to comply with applicable data protection laws.
CeolConnect does not sell personal data to third parties or disclose it to third parties for their own independent marketing or commercial purposes.
7. AML, KYC & Fraud Prevention Processing
In connection with our In-App Payment functionality, CeolConnect and its payment service provider (Stripe) may process personal data, including identity documents and financial information, for the following purposes:
- To carry out identity verification (KYC) checks on Artists before Gig fees are distributed, as required under applicable anti-money laundering legislation.
- To carry out verification checks on Venues in connection with payment processing.
- To monitor transactions for indicators of financial crime, money laundering, or sanctions violations in accordance with the Criminal Justice (Money Laundering and
- Terrorist Financing) Acts 2010–2021.
- To report suspicious activity to competent authorities where required by law.
This processing is carried out under a legal obligation basis (Article 6(1)(c) GDPR). Users are required to cooperate with verification requests. Failure to complete required verification may result in payment being withheld until identity is satisfactorily confirmed.
8. Data Retention
We retain personal data for only as long as necessary for the purposes for which it was collected, or as required by applicable law. Our approach to retention is as follows:
Financial and transactional records: Records of Gig fee payments, invoices, and financial transactions are retained for a minimum of seven (7) years from the date of the transaction, to comply with obligations under Irish Revenue law and the Companies Act 2014.
Account and profile data: General account data, profile information, and booking records are retained for the duration of your active account and for a reasonable period after account closure, to allow for the resolution of any outstanding disputes, complaints, or legal claims.
KYC and identity verification data: Identity verification documents collected for AML compliance are retained for a minimum of five (5) years following the end of the business relationship, in accordance with the Criminal Justice (Money Laundering and Terrorist Financing) Acts 2010–2021.
Communication records: Records of communications and support correspondence are retained for a reasonable period to allow for follow-up and quality assurance.
Where data is no longer required for any of the above purposes, it will be securely deleted or anonymised.
9. Your Rights Under GDPR
As a data subject under GDPR, you have the following rights in relation to your personal data:
- Right of access: to request a copy of the personal data we hold about you and information about how it is processed.
- Right to rectification: to request correction of inaccurate or incomplete personal data.
- Right to erasure (“right to be forgotten”): to request deletion of your personal data, subject to our legal retention obligations (including the seven-year financial records obligation described above).
- Right to restriction of processing: to request that we limit how we process your data in certain circumstances.
- Right to data portability: to receive your personal data in a structured, commonly used, machine-readable format, and to transmit it to another controller.
- Right to object: to object to processing based on legitimate interests, including profiling. You may also object to processing for direct marketing at any time.
- Right to withdraw consent: where processing is based on consent, to withdraw that consent at any time without affecting prior lawful processing.
To exercise any of the above rights, please contact us at info@ceolconnect.com. We will respond to your request within one calendar month, as required under GDPR.
If you are not satisfied with our response, or believe that we are processing your personal data unlawfully, you have the right to lodge a complaint with the Irish Data Protection Commission (DPC):
Data Protection
21 Fitzwilliam Square South, Dublin 2, D02 RD28
Website: www.dataprotection.ie | Phone: +353 (0)57 868 4800
10. Data Security
CeolConnect implements appropriate technical, administrative, and organisational measures designed to protect personal data against loss, misuse, unauthorised access, disclosure, alteration, or destruction. These measures include access controls, encryption of data in transit, and regular security reviews.
However, no method of internet transmission or electronic storage is entirely secure. While we strive to protect your personal data, we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your account credentials and should notify us immediately at info@ceolconnect.com if you suspect any unauthorised access to your account.
11. Children’s Privacy
The Platform is not directed to or intended for use by minors under the age of 18. We do not knowingly collect personal data from anyone under 18. If you have reason to believe that a minor has provided personal data to us through the Platform, please contact us at info@ceolconnect.com and we will take appropriate steps to investigate and, where applicable, delete that data from our systems.
12. International Data Transfers
CeolConnect processes and stores personal data primarily on servers located within the European Economic Area (EEA). Where personal data is transferred to or accessed from outside the EEA (for example, through the use of third-party service providers such as Stripe, whose infrastructure may involve processing in non-EEA countries), we ensure that appropriate safeguards are in place in accordance with Chapter V GDPR.
Transfers outside the EEA are carried out on one of the following bases:
- Adequacy decisions: where the European Commission has determined that the recipient country provides an adequate level of data protection under Article 45 GDPR.
- Standard Contractual Clauses (SCCs): where no adequacy decision exists, we rely on the Standard Contractual Clauses approved by the European Commission under Article 46(2)(c) GDPR.
For further information about the safeguards in place for international transfers, or to request a copy of the relevant SCCs, please contact us at info@ceolconnect.com.
13. Cookies and Similar Technologies
The CeolConnect informational website uses cookies and similar tracking technologies to operate and administer the site, maintain user preferences, and improve user experience. A full description of the cookies used, their purpose, and how to manage your cookie preferences is set out in our Cookie Notice, available on the CeolConnect website.
The CeolConnect mobile application does not use browser cookies. However, the app may collect usage and analytics data as described in Section 2 of this Policy. Where analytics tools are used within the app, these are governed by this Privacy Policy and our agreements with the relevant third-party analytics providers.
14. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our data practices, services, or applicable law. Where we make material changes, we will notify you by email or by prominent notice within the Platform before the changes take effect. The updated version will always be accessible on the CeolConnect website and within the Platform, with an updated effective date.
Continued use of the Platform after notification of changes constitutes acceptance of the revised Privacy Policy.
15. Contact Us
If you have any questions about this Privacy Policy, wish to exercise your data protection rights, or have a concern about how we handle your personal data, please contact us:
CeolConnect Now Ltd
Email: info@ceolconnect.com
Address: Clooneigh, Carrick-on-Shannon, Co. Roscommon, Ireland