Privacy Policy

Banner

Privacy Policy

Privacy Policy

 

Effective Date: 23/08/2024

Last Updated: 22/09/2025

Whitty Group (“we,” “our,” “us”) is committed to protecting the privacy and personal data of our clients, employees, suppliers, and website users. This Privacy Policy explains how we collect, use, store, and safeguard your information in accordance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”), the Data Protection Acts 1988–2018 (as amended), and other applicable Irish and EU data protection laws.

 

1. Who We Are

 

Whitty Group provides services in fire safety, security systems, and electrical contracting across Ireland. As a data controller, we determine how and why your personal data is processed.

If you have questions regarding this Privacy Policy, you can contact us at:

Email: info@whittygroup.ie

Address: Unit 5c, Ballyloughan Business Park, Gorey, Co. Wexford

Phone: 01 2330233

 

2. Personal Data We Collect

 

We may collect and process the following categories of personal data:

  • Identification Information: Name, job title, company name.

  • Contact Information: Email address, phone number, postal address.

  • Transactional Information: Details of services purchased or enquiries made.

  • Technical Data: IP addresses, browser type, operating system, cookies, and analytics data from website visits.

  • Employment Data: CVs, references, qualifications, and application details when applying for roles.

  • Financial Data: Bank details or payment information where necessary for invoicing.

 

 

3. How We Use Your Data

 

We use personal data only where lawful and necessary, including:

  • To provide and deliver our services.

  • To respond to enquiries and provide quotations.

  • To manage contracts and service agreements.

  • To send service updates, compliance reminders, or regulatory information.

  • To process job applications and recruitment.

  • To improve our website and customer experience.

  • To comply with legal obligations.

 

 

4. Legal Basis for Processing

 

Under GDPR, we process data on the following legal bases:

  • Contractual Necessity – processing is required to fulfil a contract with you.

  • Legal Obligation – compliance with laws and regulations.

  • Legitimate Interests – for example, to improve services or protect our business.

  • Consent – where you have given clear consent, such as for marketing communications.

 

 

5. Data Sharing

 

We do not sell your personal data. We may share data with:

  • Service providers and subcontractors who support our operations.

  • Regulatory authorities or legal bodies when required.

  • IT service providers (e.g. hosting, security, CRM systems).

 

All third parties are bound by confidentiality and data protection obligations.

 

6. Data Retention

 

We retain personal data only for as long as necessary:

  • Client records: retained for the duration of the service contract and statutory periods.

  • Job applications: retained for up to 12 months unless consent is given for longer.

  • Financial and invoicing data: retained for a minimum of 6 years in compliance with tax law.

 

 

7. International Data Transfers

 

We generally process personal data within the European Economic Area (EEA). Where transfers outside the EEA are necessary, we ensure appropriate safeguards, such as EU Standard Contractual Clauses.

 

8. Your Rights Under GDPR

 

You have the following rights:

  • Access – request a copy of your personal data.

  • Rectification – correct inaccurate or incomplete data.

  • Erasure – request deletion of your data where applicable.

  • Restriction – limit how we process your data.

  • Data Portability – obtain and reuse your data across services.

  • Objection – object to processing based on legitimate interests.

  • Withdraw Consent – withdraw consent at any time.

 

To exercise your rights, contact us at [Insert Contact Email].

 

9. Cookies and Website Data

 

Our website uses cookies to improve functionality and analyse user behaviour. You can manage or disable cookies through your browser settings. For more details, see our Cookie Policy [link].

 

10. Security

 

We implement technical and organisational measures to secure your data, including encryption, firewalls, access controls, and regular audits. However, no method of online transmission is completely secure, and we cannot guarantee absolute security.

 

11. Marketing

 

We may send marketing communications only where you have consented or where a legitimate interest exists. You can opt out at any time by clicking “unsubscribe” in our emails or contacting us directly.

 

12. Changes to This Policy

 

We may update this Privacy Policy periodically. The updated version will always be posted on our website with a revised effective date.

 

13. Contact & Complaints

 

If you have questions about this policy or how we handle your data, contact us at [Insert Contact Email].

You also have the right to lodge a complaint with the Data Protection Commission (DPC) in Ireland:

https://www.dataprotection.ie

To top