Privacy Policy

Last updated: 1 March 2026 · Terms of Use

1. Who We Are

FloodPredictor.ie is operated by Flood Predictor Ltd. This policy explains what personal data we collect, why, and how we protect it under the GDPR and the Irish Data Protection Act 2018. Our data controller contact is privacy@floodpredictor.ie.

2. Data We Collect

Account data: email address, name, hashed password, and subscription tier when you register.
Usage data: pages visited, stations viewed, address searches (addresses are stored to improve geocoding speed, not linked to your identity on free tier).
Technical data: IP address, browser type, device type — used for security and performance monitoring.
Payment data: handled entirely by Stripe. We never store card numbers.
Address searches (Personal/Business): addresses you search are cached to speed up future lookups. You can request deletion.

3. Why We Process Your Data

Contract performance: to provide your subscription, send flood alerts, and manage your account.
Legitimate interests: site security, abuse prevention, service improvement.
Consent: optional marketing emails, if you opt in.

4. Cookies and Analytics

We use Google Analytics 4 to understand how the service is used. GA4 is configured to anonymise IP addresses and not collect personal identifiers. We may also use PostHog for product analytics. You can opt out of analytics cookies via our cookie preferences banner.

5. Data Sharing

We do not sell your personal data. We share data only with:

Stripe — for payment processing.
Google — for analytics (anonymised).
Hetzner — our hosting provider, located in Germany (EU).
Irish authorities — if required by law.

6. Your Rights (GDPR)

You have the right to: access your data, correct inaccuracies, request deletion ("right to erasure"), restrict processing, and data portability. To exercise these rights, email privacy@floodpredictor.ie. We will respond within 30 days.

7. Data Retention

Account data: retained while your account is active plus 2 years after deletion.
Server logs: 90 days.
Prediction data: retained indefinitely for accountability purposes (anonymised after 12 months).

8. Security

Passwords are hashed using bcrypt. Data is transmitted over TLS. Our server infrastructure is in the EU. We conduct regular security reviews and maintain rate limiting and IP-blocking systems to prevent abuse.

9. Contact and Complaints

For privacy queries: privacy@floodpredictor.ie. If you believe your GDPR rights have been violated, you may lodge a complaint with the Data Protection Commission Ireland.