Privacy and cookies
CEL values privacy and aims to collect as little personal data as possible while keeping the site functional and secure.
Last updated: 03-03-2026
Version: v1.0
Notice
1. Who we are
Creative Enterprise Lab (CEL) operates this website (creativeenterpriselab.eu) and is the data controller for personal data processed through the site.
Contact:
hello@creativeenterpriselab.eu
Postal address:
42 The Gallops, Gorey, Co. Wexford, Y25KT65, Ireland
2. What this notice covers
This notice explains:
-
what personal data we collect
-
why we collect it and the legal basis we rely on
-
who we share it with (service providers)
-
how long we keep it
-
your rights under GDPR and how to exercise them
CEL aims to collect as little personal data as possible while keeping the site functional and secure.
3. What data we collect
Depending on how you use the site, we may process:
A. Information you provide
-
Name, email address, organisation (if you include these in a form or email)
-
The content of your message or enquiry
-
Any attachments you send us
B. Technical and security data (collected automatically)
-
IP address, device type, browser type, pages viewed, and approximate location derived from IP (country/region level)
-
Security and error logs (for example, to detect malicious activity and keep the site running)
C. Cookies and similar technologies
We use a cookie consent tool to manage preferences and support compliance. Your browser also stores certain essential site data (for example, to remember consent choices).
CEL does not sell personal data.
4. Why we process personal data and our legal bases
We process data only where we have a lawful basis under GDPR:
A. To respond to enquiries and communications
Purpose: reply to messages, handle requests, keep an audit trail of important correspondence.
Legal basis: legitimate interests (responding to communications) and, where relevant, steps prior to entering a contract (if you are enquiring about a programme or engagement).
B. To operate, maintain, and secure the website
Purpose: performance, debugging, preventing fraud/abuse, protecting the site and users.
Legal basis: legitimate interests (secure and reliable service).
C. To run non-essential cookies or analytics (only if enabled)
Purpose: understand how the site is used, improve content and structure, measure performance.
Legal basis: consent (you choose via the cookie banner/preferences).
D. If the site includes purchases or paid downloads (only where enabled)
Purpose: process transactions, provide receipts, meet legal and accounting obligations.
Legal basis: contract and legal obligation.
5. Cookies
Cookies are small text files stored on your device. Some are essential for the site to work. Others (analytics, marketing) are optional.
Cookie preferences and consent
If we use non-essential cookies, we will ask for your consent through the cookie banner. You can change your preferences at any time via the cookie settings on the site and through your browser settings.
Current configuration note
Our cookie banner currently reports no cookies in optional categories (functional/analytics/advertising/unclassified). If we enable analytics or third-party embeds that set cookies, this notice and the cookie list will be updated accordingly.
6. Who we share data with (processors)
We use trusted service providers to run the website and communications. These providers process data on our behalf under contracts and confidentiality obligations.
Typical categories include:
-
Web hosting and infrastructure providers
-
Website maintenance and security tooling (including firewall/anti-spam where used)
-
Email and productivity providers (if you email us)
-
Cookie consent provider (currently surfaced as CookieAdmin)
-
Analytics providers (only if enabled and only with consent)
7. International transfers
Some service providers may process data outside the European Economic Area. Where this happens, we rely on appropriate safeguards (for example, Standard Contractual Clauses) and take steps to ensure GDPR-level protection.
8. How long we keep data (retention)
We keep personal data only as long as necessary for the purposes above.
Suggested retention schedule (edit to match your operations):
-
Enquiry emails and contact form messages: up to 12–24 months, unless a longer period is needed for an ongoing relationship or legitimate record-keeping
-
Security and server logs: typically 30–90 days (longer only where needed for incident investigation)
-
Cookie consent records: as configured in the consent tool (typically 6–12 months)
9. Your rights
Under GDPR, you have rights to:
-
access your data
-
correct inaccurate data
-
request deletion (where applicable)
-
restrict processing
-
object to processing based on legitimate interests
-
data portability (in certain cases)
-
withdraw consent at any time (where processing is based on consent)
To exercise your rights, contact us at:hello@creativeenterpriselab.eu. We may need to verify your identity before responding.
10. Complaints
If you have concerns, we encourage you to contact us first so we can resolve them.
You also have the right to complain to your supervisory authority. In Ireland, this is the Data Protection Commission (DPC).
11. Links and embedded content
Pages on this site may include links to external websites. We are not responsible for the privacy practices of third-party sites.
If we embed content (for example, videos or documents), those providers may collect data through their own tools. Where embeds create non-essential cookies, we will rely on consent and reflect that in the cookie settings.
12. Changes to this notice
We may update this notice to reflect changes in the site, services, or legal requirements. We will update the “Last updated” date at the top of this page.