Website Guides
65+ practical guides on GDPR, accessibility, security and EU e-commerce law — written for small businesses.
Editor's picks
Accessibility Statement Template for Irish Businesses
What an accessibility statement must contain for an Irish business website under S.I. 636 of 2023, where to point complainants, and a template you can adapt.
9 min read
Editor's pickAI-Built Website Liability in Ireland
Your developer used Cursor or Lovable. If the site breaks GDPR or cookie law, the DPC enforces against you. What the AI Act and 9 Dec 2026 change.
13 min read
Browse by topic
GDPR & Privacy
AI-Built Website Liability in Ireland
UpdatedYour developer used Cursor or Lovable. If the site breaks GDPR or cookie law, the DPC enforces against you. What the AI Act and 9 Dec 2026 change.
13 min read · Updated May 2026
Contact Form GDPR Requirements: Article 13 Compliance
UpdatedWhat a GDPR-compliant contact form needs: Article 13 information, the right legal basis (legitimate interest vs precontractual), unchecked boxes, retention.
9 min read · Updated May 2026
Cookie banner dark patterns: DPC rules in Ireland
UpdatedThe 12 cookie banner dark patterns per EDPB taxonomy. DPC guidance, IAB Europe ruling and what the scanner detects after clicking reject all.
6 min read · Updated Apr 2026
Cookie consent in Ireland: DPC SI 336/2011 rules
UpdatedCookie consent in Ireland under SI 336/2011 and DPC guidance. What strictly necessary means and how to test your banner.
9 min read · Updated May 2026
Data Breach Reporting Under GDPR: 72-Hour Notification
UpdatedReport a personal data breach under GDPR Article 33: the 72-hour clock, when notification is required, what to file and when to tell affected individuals.
10 min read · Updated May 2026
Data Processing Agreement (DPA): Article 28 GDPR Guide
UpdatedWhen a third-party service needs a Data Processing Agreement under GDPR Article 28: required clauses, common processors and how to handle DPA refusal.
8 min read · Updated May 2026
Do I need a cookie banner in Ireland? DPC SI 336 rules
UpdatedYes, if your site loads Google Analytics, Facebook Pixel or any non-essential tracker. SI 336/2011 and DPC rules explained.
8 min read · Updated May 2026
Free GDPR website check for Irish businesses
UpdatedFree GDPR website check for Irish businesses. Tests cookies, privacy policy, CRO details and security. Results in 60 seconds.
3 min read · Updated Apr 2026
GDPR compliance checklist for Irish businesses (2026)
UpdatedGDPR compliance checklist for Irish businesses. DPC enforcement, DPA 2018, ePrivacy Regs 2011, CRO disclosure, cookie consent and processor agreements.
9 min read · Updated May 2026
GDPR compliance for Irish businesses: website checklist 2026
UpdatedGDPR compliance for Irish businesses: privacy policy, cookie consent, CRO number, DPC enforcement cases and a free website check in 60 seconds.
5 min read · Updated Apr 2026
GDPR Data Retention Periods: Article 5(1)(e) Guide
UpdatedHow long can you keep personal data under GDPR? The Article 5(1)(e) storage limitation principle and retention periods by data category for EU businesses.
9 min read · Updated May 2026
GDPR Records of Processing: Article 30 Template
UpdatedBuild the Article 30 GDPR record of processing activities. Who is exempt, what to include, controller vs processor versions and a ready-to-fill template.
8 min read · Updated May 2026
GDPR website audit checklist for Irish businesses
UpdatedGDPR website audit checklist for Irish businesses: DPC triggers, DPA 2018, cookie testing, privacy notice gaps, processor review. Step-by-step walkthrough.
8 min read · Updated May 2026
Google Analytics and GDPR: Is GA4 Legal in the EU? (2026)
UpdatedCan you use Google Analytics 4 in the EU? The consent requirement, the EU-US DPF transfer mechanism, Consent Mode v2 limits and cookieless alternatives.
10 min read · Updated May 2026
Google Maps and GDPR for Irish Businesses: Compliance Guide
UpdatedGoogle Maps GDPR Ireland: why DPC says embeds need consent, plus three compliant approaches (click-to-load, OpenStreetMap, static image).
9 min read · Updated May 2026
How to Create a Privacy Policy (Free Generator + Guide)
UpdatedCreate a GDPR-compliant privacy policy for your website. Use our free generator or follow this guide to write one yourself.
9 min read · Updated Apr 2026
Privacy Policy Requirements for Irish Business Websites
UpdatedPrivacy policy requirements for Irish business websites under GDPR and the Data Protection Act 2018: all 12 required elements with examples.
8 min read · Updated May 2026
Privacy policy requirements Ireland: DPC rules 2026
UpdatedThe 14 mandatory elements of a GDPR privacy policy for Irish websites. DPC guidance, LinkedIn EUR 310M transparency case and practical checklist for SMEs.
6 min read · Updated Apr 2026
GDPR Fines for Small Businesses: Real Cases and Amounts
UpdatedReal GDPR fines for small businesses run from about 1,000 to 50,000 EUR. See published regulator decisions, what triggers enforcement and how to avoid it.
9 min read · Updated May 2026
GDPR for dental practices in Ireland
UpdatedGDPR for Irish dental practices. Special category patient data, Dental Council rules, retention, online booking, DPC breach notification.
4 min read · Updated Apr 2026
GDPR for estate agents in Ireland: PSRA compliance
UpdatedGDPR for estate agents in Ireland: PSRA licence display, client and tenant data, viewing records, AML retention, photography and website compliance.
3 min read · Updated Apr 2026
GDPR for restaurants and hospitality in Ireland
UpdatedGDPR for restaurants and hospitality in Ireland: reservations, WiFi, loyalty, CCTV and staff data. DPC rules, SI 336/2011 cookies and a free website check.
8 min read · Updated Apr 2026
GDPR for solicitors in Ireland: Law Society requirements
UpdatedGDPR for Irish solicitors. Law Society of Ireland rules, client confidentiality and GDPR overlap, AML retention and website compliance.
3 min read · Updated Apr 2026
Product Liability Directive 2024/2853: 9 Dec 2026 (IE)
UpdatedDirective (EU) 2024/2853 makes software and AI 'products' for strict liability on 9 Dec 2026. What it means for Irish SMBs and what it does not change.
13 min read · Updated May 2026
The EU AI Act for Irish Website Owners
UpdatedArticle 50 applies 2 Aug 2026. DPC and Coimisiún na Meán enforce in Ireland. The honest checklist of what Irish SMB websites need to label.
13 min read · Updated May 2026
Accessibility
EAA for Irish small businesses: SI 636/2023 compliance
UpdatedEAA small business guide for Ireland: S.I. 636/2023, micro-enterprise exemption, CRO disclosure, WCAG 2.1 AA and CCPC expectations.
7 min read · Updated May 2026
EAA penalties Ireland: SI 636/2023 criminal liability
UpdatedEAA penalties in Ireland: S.I. 636/2023 creates criminal liability with fines up to €60,000 and 18 months imprisonment. CCPC enforcement explained.
7 min read · Updated May 2026
European Accessibility Act Ireland: online shop rules
UpdatedSI 636/2023, enforceable since 28 June 2025. CCPC supervises, criminal penalties, micro-enterprise exemption.
9 min read · Updated May 2026
Hotel website accessibility Ireland: EAA booking flow
UpdatedHotel accessibility Ireland: EAA compliance for Irish hotel websites. What the CCPC enforces, how to fix your date picker and booking flow from June 2025.
5 min read · Updated May 2026
Restaurant website accessibility for Irish businesses
UpdatedEuropean Accessibility Act is law in Ireland (deadline 28 June 2025). WCAG 2.1 AA requirements for restaurant websites: menus, booking forms, photos.
11 min read · Updated May 2026
Accessibility Statement Template for Irish Businesses
UpdatedWhat an accessibility statement must contain for an Irish business website under S.I. 636 of 2023, where to point complainants, and a template you can adapt.
9 min read · Updated May 2026
Website Accessibility Overlays vs. Real Compliance
UpdatedAccessibility overlays promise a one-click fix but don't deliver. Learn why they fail and what actually works.
8 min read · Updated Apr 2026
Security
My Website Says 'Not Secure'. Here's How to Fix It
UpdatedYour browser shows 'Not Secure' for your website? Here's what it means and how to fix it step by step.
6 min read · Updated Apr 2026
Website Security Checklist: 10 Things to Check Today
UpdatedA practical security checklist for small business websites. 10 things you can check and fix today without technical expertise.
8 min read · Updated Apr 2026
GDPR Requires a Secure Website: What You Need to Know
UpdatedGDPR Article 32 requires you to protect personal data with appropriate security. Here's what that means for your website.
8 min read · Updated Apr 2026
Vulnerable WordPress Plugins: How to Check and Fix Them
UpdatedVulnerable WordPress plugins are the top attack vector for small business sites and a GDPR Article 32 risk. How to check, patch and audit your plugins.
7 min read · Updated Apr 2026
Website Hacked? Here's What to Do Right Now
UpdatedYour website has been hacked or shows signs of malware. Here are the steps to take right now to contain the damage and get back online.
10 min read · Updated Apr 2026
What Does a Website Security Scan Check?
UpdatedWhat a website security scan actually checks: SSL, headers, vulnerable libraries, outdated CMS and more. Learn what the results mean and how to fix issues.
11 min read · Updated Apr 2026
SSL Certificate: What It Is, Why You Need It
UpdatedAn SSL certificate encrypts data between your website and visitors. Here's what it does, why you need one and how to get one for free.
7 min read · Updated May 2026
Legal Pages
ODR Platform Abolished: Remove the Link From Your Website
UpdatedODR platform abolished July 2025. If your website still links to the EU Online Dispute Resolution platform, here is what to do.
11 min read · Updated Apr 2026
Website trading disclosures Ireland: Companies Act 2014
UpdatedMandatory website disclosures for Irish businesses. Companies Act 2014 s.151, e-commerce regulations, CRO requirements and practical checklist.
5 min read · Updated Apr 2026
What Irish businesses must display on their website (law)
UpdatedCompanies Act 2014 and E-Commerce Regulations 2003 requirements for Irish business websites. CRO number, registered address, directors and VAT number.
6 min read · Updated May 2026
CRO Number on Google Business Profile: Required in Ireland?
UpdatedCRO number on Google Business Profile: when it's required in Ireland under Companies Act 2014, the right text to add, plus a PPSN warning for SMBs.
9 min read · Updated May 2026
Germany: §5 DDG Replaced §5 TMG, Update Your Impressum
UpdatedThe German TMG was replaced by the DDG in 2024. If your Impressum still references TMG, here is what changed and how to update it.
11 min read · Updated Apr 2026
E-Commerce
Irish Right to Cancel Online: 14 Days under CRA 2022
UpdatedIreland's 14-day right to cancel online purchases: CRA 2022 and S.I. 484/2013, when it starts, 8 exceptions, refunds, CCPC enforcement.
10 min read · Updated May 2026
Withdrawal button for ecommerce: Ireland 2026 rules
UpdatedFrom 19 June 2026 every EU webshop must show a withdrawal button. Directive 2023/2673 Article 11a. Ireland missed the deadline.
7 min read · Updated May 2026
EU Checkout Rules: Button Text, Pricing, Consent
UpdatedEU checkout rules under Directive 2011/83/EU: order button text, price display, withdrawal rights and consent before the customer clicks Buy.
10 min read · Updated Apr 2026
EU Consumer Rights for Online Sellers: Plain-Language Guide
UpdatedEU consumer rights for online sellers: the 14-day withdrawal right, Omnibus pricing rules and pre-contractual disclosures in plain language.
9 min read · Updated May 2026
Irish Discount Pricing: The 30-Day Prior Price Rule
UpdatedThe Irish 30-day prior price rule (S.I. 597 of 2022) explained. How to label discounts legally, what the CCPC enforces, where webshops trip up.
9 min read · Updated May 2026
Order Button Rules for Irish Webshops (CRA 2022 s.108)
UpdatedSection 108 of the Irish Consumer Rights Act 2022 mandates a clear 'obligation to pay' label on the checkout button. Get it wrong and the order is not binding.
8 min read · Updated May 2026
EU 14-Day Right of Withdrawal: Rules, Exceptions & Refunds
UpdatedEU 14-day right of withdrawal explained: when it starts, 8 exemptions, 14-day refund deadline, 12-month penalty for not informing buyers.
9 min read · Updated May 2026
Email Marketing
Is Double Opt-in Required? It Depends on the Country
UpdatedIs double opt-in required? Yes in Germany, recommended in Austria, optional elsewhere. What ePrivacy and GDPR say per country.
9 min read · Updated May 2026
Newsletter Signup Forms: GDPR Requirements
UpdatedYour newsletter signup form needs more than a checkbox. Here are the GDPR rules for email consent, what to store and how to avoid common mistakes.
9 min read · Updated May 2026
Pre-checked Signup Boxes Are Illegal: Here's Why
UpdatedPrechecked checkbox illegal under GDPR: the CJEU Planet49 ruling (C-673/17) confirms pre-ticked boxes do not produce valid consent. What to fix on your forms.
10 min read · Updated May 2026
SPF, DKIM and DMARC: Email Security in Plain Language
UpdatedSPF, DKIM and DMARC explained simply. Learn what they do, why you need them and how to set them up for your domain.
7 min read · Updated May 2026
Why Your Business Emails End Up in Spam (And How to Fix It)
UpdatedBusiness emails landing in spam? You're probably missing SPF, DKIM or DMARC records. Here's what they are and how to set them up.
8 min read · Updated Apr 2026
Email Marketing Consent: Country-by-Country Rules
UpdatedEmail marketing rules differ across Europe. Here are the consent requirements for the Netherlands, Germany, UK, Belgium and more.
11 min read · Updated Apr 2026
EU Soft Opt-in: Email Customers Without Consent
UpdatedThe soft opt-in lets you email existing customers without explicit consent. But strict conditions apply. Here's how it works.
8 min read · Updated May 2026
Images & Copyright
Getty Images letter Ireland: CRRA 2000 response guide
UpdatedGetty Images letter on your Irish website? What CRRA 2000 says, what Irish courts award and how to respond without overpaying. Covers PicRights and Higbee.
8 min read · Updated May 2026
AI-Generated Code and Open-Source Licences (Ireland)
UpdatedCopilot or Cursor wrote GPL code into your site. The site operator distributes it, not the AI. What Doe v. GitHub decided and what to do about it.
14 min read · Updated May 2026
AI-Generated Images on Irish Business Websites (2026)
UpdatedArticle 50(4) of the AI Act applies 2 Aug 2026. The four risk layers an Irish SMB should check before publishing AI-generated images on a website.
14 min read · Updated May 2026
How to Scan Your Website for Copyrighted Images
UpdatedLearn how to find copyrighted images on your website before enforcement agencies do. Manual and automated methods to check every image.
6 min read · Updated May 2026
Safe Free Stock Photos for Irish Business Websites
UpdatedFree image sources that are actually safe for Irish business websites, what the licences allow, and how the Irish Copyright and Related Rights Act 2000 fits.
9 min read · Updated May 2026