Privacy
Privacy policy
Last updated: 8 June 2026 · Plain English · Irish & EU compliant (GDPR + ePrivacy + EAA)
The short version
- · We measure how visitors use tradeflo.ie with PostHog analytics.
- · You can decline that any time via the cookie banner — nothing else changes.
- · We keep analytics data for 1 year, then it's deleted.
- · We don't sell your data to anyone. Ever.
- · Questions? Email michael@tradeflo.ie.
1. Who we are
Tradeflo is an Irish business based in Carlow, run by Michael Hallers. We build websites + AI-powered lead automation for Irish tradespeople. For anything in this policy, get in touch at michael@tradeflo.ie.
2. What we collect
Three different groups of people interact with Tradeflo, so we handle three different sets of data:
Site visitors (you, reading this)
If you accept the cookie banner, PostHog records anonymised behaviour — page views, button clicks, scroll depth, session replays (with all form inputs automatically masked), and referrer source. We don't collect your name, email, or phone unless you fill in a form (audit, contact, demo booking).
Clients (tradespeople paying Tradeflo)
Business name, contact name, phone, email, trade type, county, referral code, and Stripe payment details. We keep this for as long as you're a client + 12 months after cancellation, then delete it.
Leads (customers contacting our clients via Tradeflo-built sites)
When a homeowner submits a contact form or chats with an AI agent on one of our client sites, we store their name, phone, email, and message. That data is delivered straight to the tradesman. We keep a copy for 24 months for support and report reconstruction.
3. Why we collect it
- To make Tradeflo faster, clearer, and more useful — analytics tells us which pages convert and which ones are leaking visitors
- To deliver the service our clients pay for (websites, SEO, AI replies, dashboards)
- To pass leads from homeowner enquiries straight to the right tradesman
- To run automated follow-ups (WhatsApp, SMS, email) on behalf of our clients
- To process subscription payments + manage your account
- To send you service-related messages (not marketing — unless you opt in)
4. PostHog analytics + session recordings
We use PostHog (hosted in the EU) to understand how visitors use tradeflo.ie. With your consent we track:
- Page views, time on page, scroll depth
- Clicks on buttons, links, and form fields (autocapture)
- Session replays — but every form input is automatically masked, so we never see your typed information
- Heatmaps of where visitors click and scroll
- Referrer (where you came from) and basic device info (browser, OS, screen size)
What we don't capture: cross-site tracking, third-party ad pixels, fingerprinting, your location beyond country/county-level, or any data you type into form fields (it's all masked at the source before it reaches PostHog).
If your browser sends a Do Not Track signal, we honour it automatically — no events fire even if you clicked Accept on the banner.
5. Cookies + the consent banner
When you first visit tradeflo.ie, a banner pops up at the bottom of your screen with two buttons:
- Accept → PostHog initialises and starts measuring this visit. Your choice is remembered for future visits.
- Decline → no PostHog code runs. No cookies set. No events. Nothing else on the site changes — it all works the same, we just don't see how you used it.
The banner only re-appears if you clear your browser's localStorage. To change your mind, clear thetf-consentkey from localStorage and refresh, or email michael@tradeflo.ie and we'll wipe your PostHog record manually.
Essential cookies (the bare minimum needed for the site to function — e.g. holding your consent choice) are set without consent. Per ePrivacy this is allowed.
6. How long we keep your data
PostHog's default retention is 7 years. We've set ours to 1 year — analytics events older than 12 months are automatically purged.
- Site visitor analytics (PostHog): 1 year, then deleted
- Session recordings (PostHog): 30 days, then deleted
- Client account data: duration of subscription + 12 months after cancellation, then purged
- Lead data (homeowners contacting clients): 24 months or until the lead requests deletion, whichever is sooner
- Audit submissions: 12 months — we may follow up with new findings, then automatically deleted
- API rate-limit records (Upstash): 24 hours rolling — used to block abuse, then expire automatically
- Audit log (admin actions): 6 years — append-only for accountability + dispute resolution
- Payment records: 6 years (Irish Revenue requirement, non-negotiable). After year 6, personal fields are anonymised; the financial record remains.
Where retention beyond a deletion request is legally required (e.g. tax records), we anonymise the personal fields and retain only the financial line — your name and email come out, the transaction record stays. This is the standard GDPR Article 17(3)(b) carve-out and we document it on every erasure request.
7. Who we share data with
We never sell your data to advertisers, data brokers, or any other third party. Full stop.
We do use a small number of GDPR-compliant processors to actually run the service:
- Vercel (US/EU edge) — website + API hosting
- Supabase (EU region — Frankfurt) — secure database for client + lead records
- PostHog (EU-hosted) — site analytics + session replays (only if you accept the cookie banner)
- Stripe (Ireland) — payment processing
- Resend (EU/US) — transactional email delivery
- Twilio (Ireland) — SMS + WhatsApp delivery on behalf of clients
- Anthropic (US, EU API endpoint) — Claude API for the free-audit scan analysis
- Browserless (EU/US) — headless browser rendering for audit PDF generation
- Upstash (EU region) — Redis for API rate limiting
- Loops / ConvertKit — nurture email sequences (only for people who opt in to receive our emails)
Each processor signs a Data Processing Agreement with us and is itself bound by GDPR. Leads generated for client businesses are passed directly to that client — never shared with other clients or anyone outside Tradeflo. A live list of every sub-processor we use is at tradeflo.ie/sub-processors.
8. Your rights under GDPR
You can ask us to:
- Show you what data we hold about you (access)
- Fix anything that's wrong (rectification)
- Delete your data entirely (right to be forgotten)
- Stop using your data for a specific purpose (restrict processing)
- Send your data to another provider in a portable format
- Withdraw consent at any time (if consent was the basis)
- Object to automated decisions made about you
Email michael@tradeflo.ie with what you want done. We'll reply within 30 days, usually a lot sooner — Michael reads every email himself.
9. How to opt out of tracking
Three ways, pick whichever:
- Click Decline on the cookie banner the next time you visit (clear localStorage if it doesn't show — see §5 above)
- Turn on Do Not Track in your browser. We honour it automatically, even if you'd previously clicked Accept
- Email Michael directly at michael@tradeflo.ie and ask for your PostHog record to be deleted. Done same day.
10. Security
Every connection is HTTPS-encrypted. Database access is locked down with row-level security. Service-role keys are server-side only and never exposed to browsers. Payment data is handled by Stripe (PCI-DSS Level 1 certified) — we never see your card number. No system is 100% secure, but we keep ours close to it.
11. Changes to this policy
If we change anything material (new processors, longer retention, new data types) we'll update this page and bump the "Last updated" date at the top. Active clients also get an email. The version you accepted at sign-up always applies to data already collected.
12. Contact + complaints
For anything in this policy — questions, data requests, complaints — email Michael directly at michael@tradeflo.ie.
If you're not happy with how we handle a privacy concern, you have the right to escalate to the Irish supervisory authority — the Data Protection Commission — at dataprotection.ie or by phone on +353 578 684 800.