Privacy Notice
1.1 This privacy notice explains in detail the types of personal data we may collect about you when you interact with Technology Demands. It also explains how we will store, handle, and safeguard that data.
1.2 We understand the importance of transparency, so we want you to be fully informed about your rights and how Technology Demands uses and protects your data.
1.3 It is important that you read this notice, together with any other privacy notice we may provide on specific occasions when we are collecting or processing personal information about you. This privacy notice is designed to complement any other notices and is not intended to override them.
1.4 Our Privacy Notice may be updated when there are changes to the way we process your personal data. We may modify this Privacy Notice periodically to ensure that the information provided to you is current and complies with applicable data protection laws. Any new version of this notice will be published on our website.
2.1 This Privacy Notice applies to the personal data that Technology Demands collects and uses to provide our services. Technology Demands is the data controller responsible for your personal data (referred to as “Technology Demands,” “we,” “us,” or “our” in this privacy notice). We determine how your personal data is collected, used, and protected, in compliance with data protection laws such as the UK GDPR and the Data Protection Act 2018.
2.2 If you have any questions about this Privacy Notice, please contact our customer service team using the details below:
Email: [email protected]
3.1 When we refer to “personal data” in this notice, we mean information that relates to you. We may collect, use, store, and transfer different kinds of personal data about you, which we have grouped as follows:
- Identity Data – First name, last name, and title.
- Contact Data – Billing address, delivery address, email address, telephone number.
- Financial Data – Bank account and payment card details (if applicable).
- Transaction Data – Details about payments to and from you and other details of products and services you have purchased from us.
- Technical Data – Internet Protocol (IP) Address, browser type and version, time zone and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website.
- Profile Data – Purchases or orders made by you, your interests, preferences, feedback, and survey responses.
- Usage Data – Information about how you use our website, products, and services.
- Marketing and Communications Data – Your preferences in receiving marketing from us and our third parties, and your communication preferences.
3.2 We also collect, use, and share Aggregated Data such as statistical or demographic data for various purposes. Aggregated Data may be derived from your personal data but is not considered personal data in law, as it does not directly or indirectly reveal your identity. For example, we may aggregate your Usage Data to calculate the percentage of users accessing a specific website feature. However, if we combine or connect Aggregated Data with your personal data in a way that can directly or indirectly identify you, we treat the combined data as personal data, which will be used in accordance with this privacy notice.
3.3 We do not collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sexual orientation, political opinions, trade union membership, information about your health, or genetic and biometric data). Nor do we collect any information about criminal convictions and offences.
3.4 If you fail to provide personal data where required by law, or under the terms of a contract we have with you, and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you (for example, to provide you with goods or services). In this case, we may need to cancel a product or service you have with us, but we will notify you if this occurs.
3.5 Device Passcode: We collect device passcode data from our customers to fully test the functionality of the device before and after repairs. The passcode is not used for any other purpose, and no personal data is accessed as part of the functionality test. The passcode is automatically deleted after each repair. If you prefer not to provide your passcode, we can proceed with the repair, but we will be unable to test your device post-repair until you return to collect it, which may cause delays if repair adjustments are needed.
4.1 We use various methods to collect data from and about you, including through direct interactions. You may provide us with your Identity, Contact, and Financial Data by filling out forms or corresponding with us via post, phone, email, or other means. This includes personal data you provide when you:
- Apply for our products or services
- Subscribe to our services
- Request marketing to be sent to you
- Enter a competition, promotion, or survey
- Give us feedback
4.2 Automated Technologies or Interactions: As you interact with our website, we may automatically collect Technical Data about your device, browsing actions, and patterns. We gather this personal data using cookies, server logs, and other similar technologies. For more details, please refer to our Cookies section.
4.3 Third Parties or Publicly Available Sources: We may receive personal data about you from various third parties and public sources, as outlined below:
- Technical Data from analytics providers (such as Google Analytics)
- Contact, Financial, and Transaction Data from providers of technical, payment, and delivery services (such as Shopify and Vend)
5.1 We will only use your personal data when the law allows us to. This includes:
- Performing a contract: We need to use your data to fulfill our contractual obligations with you.
- Legitimate interests: We may process your data to further our legitimate interests, such as improving our services and ensuring security.
- Legal obligations: We may process your data to comply with legal or regulatory requirements.
- Consent: For specific activities, such as direct marketing communications, we will rely on your consent.
5.2 Below is a table outlining the various purposes for which we use your personal data, the types of data involved, and the legal basis for processing:
| Purpose/Activity | Type of Data | Lawful Basis for Processing |
|---|---|---|
| To register you as a new customer | Full Name, Contact | Performance of a contract with you |
| To process and deliver your order, including: | ||
| – Manage payments, fees, and charges | Full Name, Contact, Financial, Transaction | Performance of a contract with you; Legitimate interest (to recover debts) |
| – Collect and recover money owed to us | Full Name, Contact, Financial, Transaction | Performance of a contract with you; Legitimate interest (to recover debts) |
| – Provision of device repair services | Full Name, Contact, Financial, Transaction | Performance of a contract with you |
| To test the functionality of your device before and after repair | Device Passcode | Performance of a contract with you |
| To manage our relationship with you or your organization | Full Name, Contact, Marketing and Communications | Performance of a contract with you; Legitimate interest (to keep records updated and study customer use) |
| To administer and protect our business and website | Full Name, Contact, Technical | Legitimate interest (business operations, IT services, network security); Legal obligation |
| To deliver relevant website content and advertisements | Full Name, Contact, Usage, Marketing and Communications, Technical | Consent |
| To use data analytics for improvement | Technical, Usage | Consent |
| To make recommendations about products and services | Full Name, Contact, Technical, Usage | Consent |
| To capture CCTV footage for safety and security | CCTV Footage | Legitimate interest |
| To manage legal claims and comply with legal obligations | CCTV Footage, Incident Reports | Legal obligation |
5.3 We may process your personal data for multiple lawful bases depending on the purpose of the processing.
5.4 Marketing
We use your Identity, Contact, Technical, and Usage data to understand your preferences and tailor our marketing efforts. You will receive marketing communications if you have requested information or purchased services from us, and you have not opted out. We will seek your explicit consent before sharing your data with third parties for marketing.
5.5 Change of Purpose
We will only use your personal data for the purposes for which it was collected unless we determine that it is necessary for a different, compatible purpose. If we intend to use your data for a new purpose, we will inform you and explain the legal basis for this new use. If you have any questions or need clarification, please contact us.
6.1 The GDPR and other data protection laws grant you specific rights to help you control your personal data. We aim to make it straightforward for you to exercise these rights. You can exercise any of these rights concerning the data iSmash holds about you by completing the form at the end of this section.
6.2 To process your request, please provide the following information:
- Your full name
- A description of the data you wish to access, including a date range. A detailed description will help us to locate your data efficiently and respond quickly.
- Email address used for booking or communication with us.
- Other information that might assist us in locating your data (e.g., booking references).
6.3 If you are making a request on behalf of another person, we need to verify that you have their authorization to make this request and to receive their data.
6.4 Data Access
You have the right to know if we hold your personal data and to request a copy of it. You can use the form provided at the end of this section to request access to your personal data.
6.5 Data Rectification
If you believe the information we hold about you is incorrect or incomplete, please let us know. In many cases, you can update your information by contacting our customer service team. If this is not possible, you can use the form below to notify us of the necessary corrections.
6.6 Data Retention
We will retain your personal data only as long as necessary to fulfill the purposes for which it was collected, including any legal, accounting, or reporting requirements.
To determine the appropriate retention period, we consider the following factors:
- The amount, nature, and sensitivity of the personal data
- The potential risk of harm from unauthorized use or disclosure
- The purposes for which we process the data and whether we can achieve those purposes through other means
- Applicable legal requirements
By law, we must keep basic customer information (including Contact, Identity, Financial, and Transaction Data) for six years after you cease being a customer for tax purposes. In some cases, we may anonymize your data for research or statistical purposes and use it indefinitely without further notice.
6.7 Objection
You have the right to object to the processing of your personal data where we rely on legitimate interests (or those of a third party) if you believe that processing impacts your fundamental rights and freedoms. You also have the right to object to processing for direct marketing purposes.
6.8 Restriction
You can request the restriction of processing of your personal data in the following scenarios:
- To verify the accuracy of your data
- If our processing is unlawful, but you do not want us to erase it
- If you need us to retain the data for the establishment, exercise, or defense of legal claims
- If you have objected to our processing, but we need to determine whether we have overriding legitimate grounds
6.9 Withdrawing Consent
You can withdraw consent at any time where we rely on consent to process your personal data. This will not affect the lawfulness of processing carried out before you withdrew your consent. If you withdraw consent, we may not be able to provide certain products or services, and we will inform you if this is the case.
6.10 Exercising Your Rights
You can exercise your rights by completing our form. Accessing your personal data or exercising other rights will generally be free of charge. However, we may charge a reasonable fee if your request is clearly unfounded, repetitive, or excessive. Alternatively, we may refuse to comply with such requests.
6.11 Opting Out
You can opt out of receiving marketing messages from us or third parties at any time by following the opt-out links provided in marketing communications or by contacting us directly. Please note that opting out of marketing messages does not apply to personal data provided as a result of service purchases, warranty registrations, product/service experiences, or other transactions.
7.1 Data Security
We are dedicated to safeguarding the personal data we hold through appropriate technical and organizational measures. These measures protect against unauthorized, unlawful, or accidental access, loss, destruction, or damage. We continuously strive to enhance our Information Security practices in response to evolving sector standards.
7.2 Access Control
Access to your personal data is restricted to employees, agents, contractors, and other third parties who need it for business purposes. These individuals and entities process your data solely based on our instructions and are bound by confidentiality obligations. We have established procedures to address any suspected data breaches and will notify you and relevant regulators as required by law.
7.3 International Transfers
Our customer relationship management, marketing, and accounting systems are primarily UK-based. In cases where data transfers occur outside the UK, we comply with GDPR requirements. This may involve using the European Commission’s Standard Contractual Clauses for transferring personal data outside the EEA. We ensure that all international transfers of personal data are adequately protected.
8.1 To improve our services, provide you with more relevant content, and analyze how visitors use our website, we may use technologies such as cookies. Cookies are alphanumeric identifiers transferred to your computer’s hard drive through your web browser when you visit our websites. These cookies enable our systems to recognize your browser and track when you return. Most websites use cookies.
8.2 The ‘Help’ menu on the menu bar of most browsers will guide you on how to prevent your browser from accepting new cookies, how to have the browser notify you when you receive a new cookie, and how to disable cookies altogether. However, cookies allow you to take full advantage of some of our website’s most innovative and useful features, so we recommend keeping them enabled.
8.3 You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. Please note that if you disable or refuse cookies, some parts of our website may become inaccessible or may not function properly.
8.4 We work to protect the security of all your information during transmission by using up-to-date SSL software, which encrypts the information you input and offers advanced security features. Although we strive to protect your personal data, we cannot guarantee the security of data transmitted to our site—any transmission is at your own risk.
8.5 We maintain physical, electronic, and procedural safeguards in connection with the collection, storage, and disclosure of personally identifiable customer information.
9.1 We may need to share your personal data with other companies for the purposes outlined in Section 5.2. Service providers acting as processors, both inside and outside of the EU, assist us with IT and system administration services, logistics, and downstream processing. These include:
- Shopify – Hosting the website
- Sage Pay – Payment gateway
- Amazon Web Services – Software hosting
- MS Office 365 – Email services
- TextBurst – SMS messages
- Royal Mail – Postal records
- Dotdigital – Marketing emails
- Companies House – Company records & SIC searches
- Sign Now – Electronic copies for agreements
- Trustpilot – Customer review service
- FreshDesk – Customer service software
- Xero – Accounting software
- Woodside, Camerascan – CCTV
- HM Revenue & Customs, regulators, and other authorities based in the UK who require reporting of processing activities in certain circumstances.
9.2 We may also share your personal data with third parties if we choose to sell, transfer, or merge parts of our business or assets. Conversely, if we acquire other businesses or merge with them, the new owners may use your personal data in the same manner as described in this Privacy Notice.
9.3 We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not permit our third-party service providers to use your personal data for their own purposes. They are only allowed to process your personal data for the specified purposes and in accordance with our instructions.
10.1 If you choose to use the Technology Demands website, your visit and any disputes or concerns related to privacy are governed by this Privacy Notice. The terms and conditions of Technology Demands, including limitations on damages and the application of the laws of England, also apply.
10.2 We may occasionally update our Privacy Notice and/or our terms and conditions. Unless stated otherwise, the current Privacy Notice will apply to all information we have received from you.
10.3 Third-Party Links
Our website may contain links to third-party websites, plug-ins, and applications. Clicking on these links or enabling these connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy practices. We encourage you to review the Privacy Notice of every website you visit.
11.1 We are committed to being open and transparent about how we use your personal data. Our goal is to be clear with our customers, but we understand that privacy practices can sometimes be complex. If you have any concerns about how we use your personal data or about your rights, please reach out to us. We will respond to your queries and, if necessary, take steps to align our practices with our commitments and obligations.
11.2 If you have any concerns regarding our website, business, or privacy notice, please contact us at:
Email: [email protected]
11.3 If you are not satisfied with how we handle your personal data and believe our practices do not comply with data protection laws, you have the right to file a complaint with a data protection authority. In the UK, this is the Information Commissioner’s Office (ICO). You can contact the ICO via their web form at www.ico.org.uk or call their helpline at +44 (0)303 123 1113. We would appreciate the opportunity to address your concerns before you approach the ICO, so please contact us first.