Privacy Policy
Last updated: 6 May 2026. This policy describes how Fire Alarm Course collects, uses, and protects personal data of visitors to the site.
Who we are
Fire Alarm Course is a content site operated by John Kelly, based in Ireland. For the purposes of UK and EU data protection law, the data controller is the site operator, contactable via the Contact page.
What data is collected
Two categories of personal data are collected. First, technical data automatically logged when you visit the site: your IP address, browser type and version, the pages you visit, the time of your visit, and the referring page. This is standard server log data and is used to monitor site performance, diagnose technical problems, and produce aggregate analytics on which content is most useful to readers.
Second, contact data you provide voluntarily: your email address and the content of any message you send through the Contact page. This data is held only for as long as is needed to respond to your enquiry, and is not added to any marketing list.
Lawful basis for processing
Server log data is processed under the legitimate interests basis (Article 6(1)(f) of the GDPR), specifically the legitimate interest in maintaining a functional, secure website. Contact data is processed under the consent basis (Article 6(1)(a)): by sending an enquiry, you consent to the processing of the data needed to respond to it.
Cookies and analytics
The site uses essential cookies for site functionality (session management, language preference). Analytics cookies are used to understand which content is most read; these are anonymised where the analytics provider permits, and you can opt out via your browser settings or the cookie banner shown on first visit. The site does not use behavioural advertising cookies.
Third parties
The site is hosted with a third-party hosting provider; their access to data is limited to what is necessary to operate the hosting service. Email correspondence is handled through a standard business email provider. Beyond these operational suppliers, personal data is not shared with third parties.
Data retention
Server log data is retained for ninety days for technical and security purposes, then routinely deleted. Email correspondence is retained for as long as the conversation is active, plus a reasonable period afterwards for follow-up; correspondence on closed enquiries is deleted on a periodic basis.
Your rights
Under UK and EU data protection law, you have the right to access the personal data we hold about you, to request correction of inaccurate data, to request deletion (the "right to be forgotten"), to restrict processing, and to data portability. You also have the right to lodge a complaint with the relevant supervisory authority: the Data Protection Commission in Ireland, the ICO in the UK.
To exercise any of these rights, contact us via the Contact page.
Changes to this policy
This policy may be updated from time to time. Material changes will be notified at the top of this page. The "last updated" date at the top of this policy reflects the most recent revision.
Contact
For privacy-related questions or to exercise any data subject right, contact us through the Contact page or by email at
Note: This policy is a starting template and should be reviewed by qualified legal counsel before being relied upon for live regulatory compliance.