Privacy Policy

This Privacy Policy explains how Coyne Solicitors collects, uses, shares and protects your personal data when you use our website, request a quote, ask us to call you back, contact us, or instruct us to act on your behalf. We process your personal data in accordance with the EU General Data Protection Regulation (Regulation (EU) 2016/679) (“GDPR”) and the Data Protection Act 2018.

Where we link to third-party websites, we are not responsible for their content or privacy practices. Please read their own privacy notices.

Who we are (the data controller)

Coyne Solicitors, trading as “Coyne Solicitors incorporating Declan J O’Connell & Co Solicitors”, is the data controller responsible for your personal data. Our office is at Liffey Bridge House, 1 Main Street, Lucan and Pettycanon, Lucan, Co. Dublin, K78 KV24, Ireland.

You can contact us about this policy or about your personal data at reception@coynesolicitors.ie or by telephone on 01 628 1000.

For data-protection queries and to exercise your data-subject rights, please contact us at reception@coynesolicitors.ie or by telephone on 01 628 1000.

We have not appointed a Data Protection Officer, as we are not required to do so under Article 37 of the GDPR. Any data-protection queries can be directed to reception@coynesolicitors.ie.

Coyne Solicitors is regulated by the Law Society of Ireland.

Personal data we collect

You can browse most of our website without giving us any personal data. However, when you use certain features or instruct us, we collect the following, depending on what you do:

Contact form: your name, email address, telephone number, your message, and the topic or area of law your enquiry relates to.
Callback requests: your name, the telephone number you would like us to call, your email address, the details of any quote you generated, and the transcript and summary of your chat conversation.
Quote calculator: your email address, the answers you provide about your transaction, and the resulting quote and pricing.
Conveyancing onboarding (when you instruct us): your full name, telephone number, home address, your PPS (Personal Public Service) number, and any identity and transaction documents you upload to us.
Website technical and analytics data: information collected automatically when you visit, such as your device and browser type, approximate (country-level) location derived from your IP address, the pages you view, the actions you take, and technical error information. See “Analytics” below.

Sensitive data: your PPS number and uploaded documents

When you instruct us on a conveyancing matter, we may need to collect your PPS number and copies of your identity and transaction documents. We collect these only where required for a specific legal or tax purpose — in particular to meet our customer due-diligence obligations under the Criminal Justice (Money Laundering and Terrorist Financing) Act 2010 (as amended by the Criminal Justice (Money Laundering and Terrorist Financing) (Amendment) Acts 2018 and 2021), under which solicitors are “designated persons” required to verify client identity.

The use of PPS numbers is restricted by law and we will only request, use and retain your PPS number where we are lawfully entitled to do so (for example, in connection with tax clearance for a property transaction). We treat these documents and identifiers as confidential and limit who can access them.

How we use your data and our legal bases

We rely on the following lawful bases under Article 6 of the GDPR (and, where relevant, Article 9 for special-category data):

Responding to enquiries, callbacks and quotes — legitimate interests (Article 6(1)(f)) in responding to you and running our practice, and/or taking steps at your request prior to entering into a contract (Article 6(1)(b)).
Delivering our legal and conveyancing services — performance of our contract with you (Article 6(1)(b)).
Anti-money-laundering identity checks, including your PPS number — compliance with our legal obligations (Article 6(1)(c)) under the Criminal Justice (Money Laundering and Terrorist Financing) Act 2010 (as amended).
Establishing, exercising or defending legal claims — where this involves special-category data, Article 9(2)(f).
Website analytics and improving our site — legitimate interests (Article 6(1)(f)) in understanding and improving how our website is used, or your consent (Article 6(1)(a)) where consent is required.

Who we share your data with

We do not sell your personal data. We share it only with trusted service providers (processors) who help us run our website and services, and only for the purposes set out below. Each is engaged under a written data-processing agreement:

Resend — delivers our transactional emails (for example, contact-form notifications, callback details including your chat transcript and summary, and quote confirmation emails). Receives the contact, callback and quote data described above.
Airtable — our customer-relationship and storage system. Stores contact and quote records and, for clients who instruct us, onboarding details (full name, phone, address and PPS number) together with any documents you upload.
PostHog — provides product analytics and error tracking. Receives website usage, device, approximate location and event and error data. PostHog is hosted in the European Union (Frankfurt, Germany).
Vercel — hosts our website and processes the request data and server logs needed to serve our pages securely.

We may also disclose personal data where required by law, by a court, or by a regulatory or law-enforcement body.

International transfers

PostHog hosts our analytics data within the European Union (Frankfurt, Germany), so that data remains within the EEA. Resend, Vercel and Airtable are US-based providers and we are not on an EU-residency plan with them, so some personal data is transferred to the United States. Where personal data is transferred outside the European Economic Area, that transfer is protected by appropriate safeguards, namely those providers’ EU-US Data Privacy Framework certification and/or the European Commission’s Standard Contractual Clauses.

Analytics

To understand how our website performs, we use PostHog, a third-party product analytics and error-tracking platform. PostHog loads on every page and captures information such as page views, device and browser type, approximate (country-level) location derived from your IP address, the actions you take on the site, and technical error information. PostHog data is hosted within the European Union (Frankfurt).

Our PostHog setup uses in-memory storage only, so it does not set any cookies or store identifiers in your browser between visits, and it does not track you across other websites. Because we set no cookies for analytics, no cookie-consent banner is required. PostHog acts as our data processor in relation to this information.

How long we keep your data (retention)

We keep personal data only for as long as necessary for the purposes for which it was collected, including to meet legal, regulatory, tax and accounting requirements. In particular:

General website data: contact-form enquiries, callback requests, unconverted quote data and analytics data are retained for up to 24 months.
Anti-money-laundering and client due-diligence records (including identity documents and PPS data): retained for the period required by anti-money-laundering legislation. Under section 55 of the Criminal Justice (Money Laundering and Terrorist Financing) Act 2010 (as amended), these records must be kept for at least five years from the date on which we cease to provide services to you or the date of our last transaction with you, whichever is later.
Client files: in line with our Terms of Engagement, client files are retained for not less than six years.

Security of your data

We take the security of your personal data seriously and use appropriate technical and organisational measures to protect it against unauthorised access, alteration, disclosure or destruction. We will never sell your personal data to a third party for marketing purposes.

Your data-protection rights

Under the GDPR and the Data Protection Act 2018, you have the following rights in relation to your personal data:

The right to be informed about how we use your data.
The right of access to a copy of the personal data we hold about you.
The right to rectification of inaccurate or incomplete data.
The right to erasure (“the right to be forgotten”) in certain circumstances.
The right to restrict processing in certain circumstances.
The right to data portability.
The right to object to processing based on our legitimate interests.
The right to withdraw consent at any time, where we rely on your consent (this does not affect processing already carried out).
Rights in relation to automated decision-making — the right not to be subject to a decision based solely on automated processing that produces legal or similarly significant effects.

To exercise any of these rights, please contact us using the details in the “Who we are” section above. Some rights are subject to conditions and exceptions under data-protection law.

Your right to complain

If you are unhappy with how we handle your personal data, you have the right to lodge a complaint with the Data Protection Commission (DPC):

Data Protection Commission, 6 Pembroke Row, Dublin 2, D02 X963, Ireland
Website: www.dataprotection.ie
Complaints are submitted in writing, preferably via the online form at forms.dataprotection.ie/contact

We would, however, appreciate the chance to address your concerns before you approach the DPC, so please consider contacting us first.

Jurisdiction and governing law

Our processing of personal data is governed by the EU General Data Protection Regulation (Regulation (EU) 2016/679) and the Data Protection Act 2018. All issues regarding the website coynesolicitors.ie are subject to the exclusive jurisdiction of the Irish courts and are governed by Irish law.

Changes to this policy

This is a live document and is kept under regular review. This policy was last updated on 29 May 2026.