Privacy Policy | Quenadri

1. Who we are (data controller)

For the purposes of the GDPR and Irish data protection law, the data controller is Quenadri. When this policy says “Quenadri”, “we”, “us”, or “our”, it refers to the organisation responsible for deciding how and why your personal data is processed in connection with this website and our enquiries.

Controller name

Quenadri

Registered address

21 St Stephen’s Green, Dublin 2, D02 X285, Ireland

General contact

[email protected]

Privacy contact

[email protected]

If you have questions about this policy, want to exercise a right, or want to request deletion of information you have sent to us, contact our privacy email above. We may need to confirm your identity before acting on certain requests so we do not disclose or delete data for the wrong person.

2. Personal data we collect

We collect personal data that you provide directly, as well as certain technical data that is automatically generated when you use the website. We do not intentionally collect sensitive personal data categories. Please do not submit sensitive details in free-text fields.

Identity and contact data

Full name
Email address
Phone number (optional if you provide it)
Organisation name and role (if you include it in your message)

Enquiry content

Message content you submit in forms
Requested products, delivery area (county/city), and timing
Marketing preference (opt-in checkbox where offered)

Technical and usage data

IP address (or a truncated/derived form)
Browser type and version
Device identifiers and operating system
Referring page and pages viewed
Approximate location derived from IP (city/region level)

Cookie and similar data

Cookie choices (accept/reject)
Session and preference cookies where used
Analytics identifiers (only if you consent)
Marketing identifiers (only if you consent)

We do not require payment details through this website. If ordering involves a separate payment arrangement, we will share the relevant details at that time and ensure you understand which party processes your payment information.

3. How we collect personal data

We collect data using straightforward methods that are typical for a business website. The main sources are forms you complete, cookies you consent to, and technical logs required to run and secure the site.

Web forms and email links

When you submit an enquiry on our website, we receive the information you enter (for example name, email, and your message). If a mailto link opens your email client, any message you send to us by email is stored in our email system and handled as described in this policy.

Cookies and local storage

Our cookie banner stores your choice in your browser using local storage so we remember your preference. Depending on your selection, we may also use cookies for analytics or marketing. Details are in the Cookies section below.

Analytics tools

If you consent to analytics, we may use Google Analytics 4 (GA4) to measure page views, engagement, and how visitors navigate the site. Analytics helps us improve content and usability and helps us understand demand for products and information.

Marketing pixels

If you consent to marketing cookies, we may use the Meta Pixel to understand the performance of ads and to measure actions such as visits to the contact page. We do not use this data to infer sensitive characteristics.

Server logs

Our hosting and security systems automatically create logs when you access the site. Logs may include your IP address, timestamps, requested pages, and user-agent data. These logs are used for security monitoring, troubleshooting, and fraud prevention.

4. Legal basis for processing (GDPR Art. 6)

We process personal data only when a lawful basis applies. The lawful basis depends on what data is involved and why we process it. The main bases we rely on are consent, performance of a contract (or steps prior to entering a contract), and legitimate interests.

Legal basis by activity

Examples mapped to GDPR Article 6(1) grounds.

Responding to enquiries

Basis: Contract / steps prior to contract (Art. 6(1)(b)) and legitimate interests (Art. 6(1)(f)). We use your name and contact details to reply, provide a cut list or availability, and continue the conversation you started.

Analytics cookies and measurement

Basis: Consent (Art. 6(1)(a)). We only set analytics identifiers and process analytics data when you opt in via our cookie banner.

Marketing cookies and ad measurement

Basis: Consent (Art. 6(1)(a)). We only use marketing pixels and similar technologies if you consent.

Security, fraud prevention, and site integrity

Basis: Legitimate interests (Art. 6(1)(f)). We process technical data and logs to protect the site, investigate abuse, and maintain availability.

Legal compliance

Basis: Legal obligation (Art. 6(1)(c)), where applicable. We may retain certain records if required by law or to establish, exercise, or defend legal claims.

Where we rely on legitimate interests, we consider your rights and the expected impact. You can object to processing based on legitimate interests, and we will assess your request as described in the Rights section.

5. Purposes of processing

We use personal data only for specific, explained purposes. We do not sell your personal data, and we do not use it for unrelated profiling. The main reasons we process information are listed below.

Service delivery and enquiries

To respond to availability requests, provide product details, answer sourcing questions, and communicate about orders or delivery planning where relevant to your enquiry.

Customer support

To handle follow-up questions, resolve issues, and keep a record of what was agreed in communication threads so we can provide consistent responses.

Consent-based marketing

If you opt in, we may send occasional updates about product availability or seasonal boxes. Each message includes a practical unsubscribe route, and you can also email us to be removed.

Site improvement and analytics

If you consent to analytics cookies, we use aggregated measurements to improve navigation, content clarity, and to understand what pages are most helpful to visitors.

Security and fraud prevention

To protect our website, detect suspicious activity, limit abuse (such as scraping and automated attacks), and maintain operational reliability. This may include reviewing server logs and applying technical protections.

6. How long we keep data (retention)

We retain personal data only as long as necessary for the purpose it was collected for, plus any period required for legitimate operational needs (such as maintaining records of communications) or legal compliance. Retention periods vary by category.

Retention schedule

Typical time frames. We may retain longer if required for legal claims or compliance.

Form submissions and enquiry emails

Messages, contact details, and related correspondence used to answer your request and keep a clear record of what was discussed.

2 years

Marketing email list (opt-in only)

Email address and preferences used to send updates you requested.

Until unsubscribe + 30 days

Analytics data (if consented)

Aggregated website usage data, subject to the settings of our analytics tools.

14 months

Server and security logs

Technical logs used to maintain security, detect abuse, and troubleshoot.

90 days

Cookie consent record (local storage)

Your cookie choice is stored in your browser. It remains until you clear site data/local storage, or until we change the consent key.

Until cleared

You can ask us to delete enquiry data earlier. If we must keep limited records for legal reasons, we will restrict their use and retain only what is necessary.

7. Sharing your data (processors and third parties)

We share personal data only when needed to operate the website, communicate with you, or comply with law. We do not sell personal data. When we use third-party service providers, they act as processors under GDPR and are required to protect data and only process it on our instructions.

Hosting and infrastructure

Our website is hosted by a web hosting provider that processes technical data (such as IP address and request logs) to deliver site content and maintain security.

Email and communication tools

Enquiry messages and replies are handled through our email systems. These providers process message content and contact details to deliver emails.

Analytics providers (optional)

If you consent, Google Analytics 4 may process online identifiers and usage events to produce aggregated reporting about website performance.

Advertising measurement (optional)

If you consent, the Meta Pixel may process identifiers and events to measure ad performance and support retargeting. You can reject marketing cookies in the banner.

We may share data with professional advisers (such as legal advisers) where necessary to establish, exercise, or defend legal claims, or to comply with legal obligations. Where possible, we share only the minimum data needed for that purpose.

8. International data transfers

We are based in Ireland and primarily process data within the European Economic Area (EEA). However, some of our service providers may process data outside the EEA, including in the United States, depending on the tool and configuration.

When personal data is transferred outside the EEA, we use appropriate safeguards as required by GDPR Chapter V. These safeguards may include:

Standard Contractual Clauses (SCCs) approved by the European Commission, where applicable.
Reliance on an adequacy decision where one applies to the destination country for a given transfer scenario.
Supplementary technical and organisational measures where needed, such as encryption in transit.

If you want further details about specific transfer safeguards used for a given provider, email [email protected].

9. Your rights under GDPR

If you are in the EEA (including Ireland), you have rights over your personal data. We respect these rights and aim to respond without undue delay. In some cases we may ask for additional information to confirm your identity and locate your data.

Right of access

You can ask for a copy of the personal data we hold about you and information about how we use it.

Right to rectification

You can ask us to correct inaccurate or incomplete information, such as an updated email address or corrected name.

Right to erasure (right to be forgotten)

You can request deletion of your personal data where the legal conditions apply. For example, you can ask us to delete an old enquiry thread where we no longer need it.

Right to restrict processing

You can ask us to limit how we use data in certain circumstances, such as while a dispute about accuracy is being resolved.

Right to data portability

For data processed based on consent or contract and processed by automated means, you can request a copy in a commonly used format and, where technically feasible, ask us to transmit it to another controller.

Right to object

You can object to processing based on legitimate interests. If you object, we will stop unless we have compelling legitimate grounds that override your interests, rights, and freedoms, or if processing is needed for legal claims.

Right to withdraw consent

If we rely on consent (for example analytics or marketing cookies, or an optional email update list), you can withdraw it at any time. Withdrawal does not affect processing that occurred before withdrawal.

How to exercise your rights

Email [email protected] with your request. Include the email address you used to contact us and a clear description of what you want (access, deletion, correction, restriction, objection, or portability). We may ask for confirmation steps to protect your account and communication history.

You also have the right to lodge a complaint with the Irish supervisory authority: Data Protection Commission (DPC), Ireland. You can find current contact details on the DPC website.

10. Cookies and similar technologies

Cookies are small text files stored on your device by your browser. Some are necessary to remember preferences or keep a site secure. Others help measure site performance or support advertising. We use a cookie banner to allow you to accept or reject optional cookies.

Strictly necessary

These are required for the website to function and for basic security. Our site also stores your cookie choice using local storage so we do not repeatedly ask.

Typical duration: session to persistent (until cleared)

Analytics

If you accept analytics cookies, we may use Google Analytics 4 to understand how visitors use pages, which helps us improve the website. Analytics data is aggregated for reporting.

Typical duration: up to 14 months (tool setting dependent)

Marketing

If you accept marketing cookies, we may use advertising technologies such as the Meta Pixel. These help measure ad performance and can support retargeting. You can reject marketing cookies and still use the site normally.

Typical duration: varies by provider; you can manage via cookie settings and browser tools

Managing cookies

You can manage cookies through your browser settings (for example blocking, deleting, or limiting cookies). You can also clear site data/local storage to remove your saved cookie choice. If you clear local storage, the banner will appear again the next time you visit.

If you previously accepted optional cookies and want to withdraw consent, you can clear site cookies in your browser and choose “Reject” when the banner is shown again.

11. Children’s privacy

Our website and services are not directed at children under 16. We do not knowingly collect personal data from children under 16. If you believe a child has provided us with personal data, contact [email protected] and we will take appropriate steps to delete the information and restrict any further processing.

12. Changes to this policy

We may update this Privacy Policy to reflect changes in our practices, legal requirements, or site functionality. When we make changes, we will update the “Last Updated” date at the top of this page. If changes are significant, we may also provide a notice on the website.

Last Updated: January 15, 2026

13. Contact and data protection enquiries

For questions about this Privacy Policy, cookie choices, or requests to access, delete, or correct your data, contact our privacy address. We treat privacy requests seriously and aim to respond within a reasonable time frame.

Privacy email

[email protected]

Use this for rights requests, consent withdrawal, and deletion requests.

Postal address

Quenadri, 21 St Stephen’s Green, Dublin 2, D02 X285, Ireland

Mark correspondence “Privacy” for faster routing.

Data Protection Officer (DPO): Quenadri does not appoint a formal DPO for this website. However, privacy enquiries are handled by a dedicated privacy contact at [email protected].

Summary for visitors

Quenadri uses personal data to reply to enquiries and, if you choose, to send occasional availability updates. Optional cookies are controlled by your consent choice. You can request deletion, access, or correction at any time by emailing our privacy contact.

Contact Quenadri Read Terms