Last updated: 14 February 2026
1. Who We Are
This website is operated by the Immaculata Comitium of the Legion of Mary, residing in the Diocese of Down and Connor, Northern Ireland, United Kingdom.
Email: legionofmarydc@gmail.com
2. Data We Collect
We collect and process the following categories of personal data:
2.1 Contact Form Submissions
- Your name
- Your email address
- Your area of interest
- Your message
- Consent record (timestamp of when you consented)
2.2 Newsletter Subscriptions
- Your name
- Your email address
- Consent record (timestamp of when you consented)
2.3 Anonymous Analytics (with consent only)
If you accept cookies, we collect anonymous page visit data with no personally identifiable information:
- Page path visited
- Page title
- Referrer URL
- Device type (mobile or desktop)
We do not use tracking cookies, fingerprinting, IP logging, or any third-party analytics services. This data cannot be linked back to you.
3. Legal Basis for Processing
Under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, our lawful bases for processing are:
- Consent (Article 6(1)(a)) — for contact form submissions, newsletter subscriptions, and analytics
- Legitimate interest (Article 6(1)(f)) — for essential website functionality and security
4. How We Use Your Data
- To respond to your enquiries submitted via the contact form
- To send you newsletters you have subscribed to
- To understand which pages on our website are most visited (anonymous data only)
We will never sell, rent, or share your personal data with third parties for marketing purposes.
5. Data Storage and Security
Your data is securely stored using Supabase, a hosted database service, with Row Level Security (RLS) policies enforced. Access is restricted to authorised administrators of the Immaculata Comitium.
6. Data Retention
- Contact submissions: retained for up to 2 years, then deleted
- Newsletter subscriptions: retained until you unsubscribe or request deletion
- Anonymous analytics: retained for up to 1 year
7. Your Rights Under UK GDPR
You have the following rights regarding your personal data:
- Right of access — request a copy of your data
- Right to rectification — request correction of inaccurate data
- Right to erasure — request deletion of your data (“right to be forgotten”)
- Right to restrict processing — request we limit how we use your data
- Right to data portability — request your data in a machine-readable format
- Right to object — object to our processing of your data
- Right to withdraw consent — withdraw consent at any time
To exercise any of these rights, please email us at legionofmarydc@gmail.com or use the data deletion request form below.
8. Cookies
This website uses the following cookies:
- Essential cookies — required for the website to function (e.g., cookie consent preference stored in your browser’s localStorage)
- Third-party cookies — set by Google Fonts, OpenStreetMap, and YouTube embedded content. These services have their own privacy policies.
Non-essential analytics only run if you click “Accept” on the cookie banner.
9. Third-Party Services
10. Children’s Privacy
This website is not directed at children under the age of 13. We do not knowingly collect personal data from children.
11. Supervisory Authority
If you are unsatisfied with how we handle your data, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO):
12. Changes to This Policy
We may update this Privacy Policy from time to time. Any changes will be reflected on this page with an updated “Last updated” date.
Request Data Deletion
Under UK GDPR, you have the right to request the deletion of your personal data. Please enter the email address associated with your enquiry or subscription, and we will process your request within 30 days.