Privacy Policy

Last updated: October 2025

1. Introduction

Rockline Technologies (“we”, “our”, “us”) respects your privacy and is committed to protecting your personal data.

This Privacy Policy explains how we collect, use, and safeguard information in compliance with the EU General Data Protection Regulation (GDPR) and the Data Protection Act 2018 (Ireland).

This policy applies to all visitors to our website, clients, and job applicants who submit enquiries or CVs via our online forms.

2. Who we are

Rockline Technologies is a technology and engineering company based in Ireland.


We operate this website and manage candidate and enquiry data through secure, GDPR-compliant systems provided by Zentra IO, our data processing partner.

For any privacy-related questions, please contact: [email protected]

3. Data controller and data processor

Data Controller: Rockline Technologies – determines how and why personal data is processed.

Data Processor: Zentra IO – manages our website and CRM system securely via GoHighLevel.

Sub-Processors: GoHighLevel (LeadConnector LLC) — provides hosting, CRM, and automation tools used by Zentra IO to process enquiries and candidate submissions.

Rockline Technologies uses Microsoft 365 (Outlook) for its own internal communications. This system is operated solely under Rockline’s control and covered by Microsoft’s Products and Services Data Protection Addendum (DPA).

4. Data we collect

a. Enquiry data

When you contact us via our website, we collect:

Full name

Email address

Phone number

Message or enquiry details

b. Candidate data

When you apply for a position or upload a CV, we collect:

Full name

Contact details

CV and employment information

Any additional information you provide voluntarily

c. Technical data

When you visit our website, limited technical information may be collected automatically to ensure site security and proper operation.

This may include:

Your IP address, browser type, and device operating system

Date, time, and duration of your visit

Basic website usage statistics (e.g., pages viewed)

This data is used only for security monitoring, spam prevention (via reCAPTCHA), and aggregated analytics.


We do not use it to identify individuals, and it is deleted or anonymised regularly.

5. How we use your data

Purpose

Responding to website enquiries

Managing job applications

Administrative communication

Legal compliance

Legal basis

Contactual necessity

Consent

Legitimate interest

Legal obligation

Description

To respond to your messages and provide requested information.

To assess suitability for employment.

To manage and improve our services.

To comply with applicable laws and regulations.

We do not engage in automated decision-making or profiling.

6. How we store and protect your data

All form submissions are securely stored in GoHighLevel (LeadConnector LLC), hosted on Amazon Web Services (AWS) in the United States. GoHighLevel operates under a signed Data Processing Addendum (Sept 2025) incorporating Standard Contractual Clauses (SCCs) for EU data transfers. Administrative communication is managed through Zoho Mail, hosted in EU data centres (Amsterdam/Dublin). Rockline’s internal email and document systems are managed through Microsoft 365 (Outlook), which is covered by Microsoft’s Products and Services Data Protection Addendum (DPA). All systems use TLS encryption, two-factor authentication, and role-based access to ensure data confidentiality and integrity.

7. Data retention

Data type

Enquiry data

Candidate data (CVs)

Email communication

Retention period

6 months

12 months

As required by business needs

Deletion method

Automatic deletion within CRM

Secure deletion within CRM unless renewed consent

Secure deletion or archiving

8. Data sharing and sub-processors

Sub-processor

Zentra IO

GoHighLevel (LeadConnector LLC)

Zoho Corporation

Microsoft (Outlook/365)

Purpose

Website & CRM management

CRM and automation platform

Administrative email (Zentra IO)

Rockline internal communication

Location

Ireland

USA

EU

EU/Global

Safeguard

DPA with Rockline

DPA + SCCs

DPA + SCCs

Microsoft DPA + SCCs

We do not sell, lease, or share personal data with unrelated third parties.

9. International data transfers

Where data is transferred outside the European Economic Area (EEA), it is protected by Standard Contractual Clauses (SCCs), ensuring equivalent data protection standards under Articles 44–46 of the GDPR.

10. Your data protection rights

You have the following rights under GDPR:

Access – request a copy of your personal data.

Rectification – correct inaccurate data.

Erasure – request deletion (“right to be forgotten”).

Restriction – limit processing under certain conditions.

Portability – request transfer of your data to another controller.

Objection – object to processing based on legitimate interests.

To exercise any of these rights, contact:
[email protected]

Requests are acknowledged within 7 days and completed within 30 days.

11. Cookies and analytics

Our website may use cookies to:

Ensure basic functionality.

Improve site performance and user experience.

Collect anonymous analytics data.

You can disable cookies or adjust preferences via your browser settings at any time.

12. Data breach procedure

In the event of a data breach:

1. Zentra IO will notify Rockline within 48 hours.

2. Rockline will assess risk and, if required, report the incident to the Data Protection Commission (DPC).

3. Affected individuals will be notified promptly if there is a risk to their rights or freedoms.

13. Changes to this policy

This Privacy Policy may be updated periodically.


All changes will be posted on this page with the “Last Updated” date revised accordingly.

14. Contact information

Rockline Technologies

[email protected]

Cork, Ireland

Zentra IO (Data Processor)

[email protected]

Cork, Ireland