Your Cart is Empty
Effective Date: 01/11/2025
Data Controller: TechStar IT Limited
Registered Address: 17 Dock Road, Galway, H91 KX34
TechStar IT Limited ("we," "us," or "our") is committed to protecting the privacy and security of your personal data. We act as aData Controller for the information you provide to us (e.g., your contact details) and as aData Processor for the data stored on any device you submit for repair.
This Policy explains how we collect, use, and process your personal data in compliance with the General Data Protection Regulation (GDPR) and the Irish Data Protection Act 2018.
For all data protection and privacy queries, please contact:
Email:privacy@techstar.ie
Telephone:091 575757 (Your query will be directed to the appropriate privacy contact person.)
Data Protection Officer (DPO): We are not required to have a DPO.
We collect different types of data depending on the service you require. We must have a lawful reason (a 'Legal Basis') to process your data, as detailed below:
|
Activity / Data Type |
Categories of Personal Data Collected |
Purpose of Processing |
Legal Basis (GDPR Art. 6) |
|
Retail Sales (Warranty/Advanced Hardware) |
Name, Phone Number, Email Address. |
To fulfil the sale, provide the purchased hardware, and manage the associated warranty/guarantee. |
Performance of a Contract |
|
Repair Services (Booking & Communication) |
Name, Phone Number, Email Address, Device Description. |
To manage the repair process, communicate status updates, and provide the service you requested. |
Performance of a Contract |
|
Data on Customer's Device |
Any data stored on the device (e.g., files, photos, application data). |
Incidental access is necessary for diagnosis and technical repair tasks (TechStar acts as aData Processor). |
Performance of a Contract (You are the Controller, we are the Processor) |
|
CCTV Recording |
Visual images and timing data. |
Crime prevention, security of our premises, and staff monitoring. |
Legitimate Interests (of the Controller, TechStar IT Limited) |
|
Direct Marketing |
Name, Email Address. |
To send you promotional offers and business news. |
Consent (Freely Given) |
Crucial Note for Repairs: We advise all customers to fully back up their device data before submission for repair, as we are not liable for data loss. By submitting a device for repair, you acknowledge that our technicians may have incidental access to the data stored on it as a necessary part of fulfilling the repair contract.
We employ appropriate technical and organisational security measures to protect your data, including:
Use of a dedicated,GDPR-compliant CRM system (RepairShopr.com).
Password-protected access controls to your data records.
Internal policies ensuring restricted access and appropriate data handling by staff.
We only keep your personal data for as long as necessary for the purpose for which it was collected:
Sales and Repair Records: We retain your name, contact, and transaction history for7 years following the date of the last transaction or repair. This is necessary to meet our statutory obligations under Irish tax, accounting, and consumer warranty laws.
CCTV Footage: Retained for a maximum period of6 weeks, unless the footage is required as part of an active investigation into a specific incident (e.g., theft).
Marketing Consent: We retain your data for marketing until you withdraw your consent (opt-out).
We willnot sell or rent your personal data to any third parties. We only share data when strictly necessary for the purposes outlined in this policy:
IT System Providers: We share necessary data with our hosting and CRM providers (e.g., RepairShopr) to operate our business efficiently. We have contractual agreements (Data Processing Agreements - DPAs) in place with them to ensure they meet GDPR standards.
Third-Party Repair Services: We confirm that when we use external repairers, weonly share a non-identifying ticket number with them. Theydo not receive any of your personal information (Name, Phone, Email), and all customer communication remains solely through TechStar IT Limited.
Legal/Regulatory Obligations: We may disclose data if legally required to do so, for example, to An Garda Síochána (Irish Police) or the Revenue Commissioners.
Under GDPR, you have the following rights regarding the personal data we hold about you. You can exercise these rights by contacting us using the details in Section 1.
The Right to Access: You have the right to request a copy of the personal data we hold about you (Subject Access Request).
The Right to Rectification: You have the right to have inaccurate or incomplete data corrected.
The Right to Erasure ('Right to be Forgotten'): You have the right to request the deletion of your personal data. We comply with all legal requests for erasure, covering bothsoft deletion (history of transactions) andhard deletion (complete removal of any records) where required.
The Right to Restrict Processing: You have the right to request that we limit the way we use your personal data.
The Right to Data Portability: You have the right to request that we provide your personal data in a structured, commonly used, and machine-readable format.
The Right to Object: You can object to us processing your data where the legal basis is 'Legitimate Interests' (e.g., CCTV). You also have an absolute right to object to processing fordirect marketing at any time.
The Right to Withdraw Consent: Where we process data based on your Consent (e.g., marketing), you can withdraw that consent at any time.
If you are not satisfied with how we have handled your data protection rights, you have the right to lodge a complaint with the supervisory authority in Ireland:
Data Protection Commission (DPC)
Address: 6 Pembroke Row, Dublin 2, D02 X963, Ireland.
