- We are BRM Computers Ltd, and you can contact us at [email protected]
- We process your data to provide our services to you, or for our legitimate interests
- We only process your data for as long as we need to, and then we delete it
- We do not sell or share your data with others unless they are providing a service to us (such as payment service providers), or unless you ask us to share your data
- Our services include a number of places where you can send data to third parties. If you want to use these, you should check you are happy with the way they use your data
- We do not market to you without your consent and, if you give us your consent, you can withdraw it at any time
Who we are
Our intranet system is built by us, hosted locally in our building and the data stored in the database is stored locally. It is in-accessible from the outside world.
When you book a device in with us or purchase something from us, we need to know your first & last name so that you can be identified. We will use your name to address you. This is necessary to provide our service to you.
Your name will be kept with your billing records where we have a legal obligation to store this information.
Company name & your postal address
We require your postal address in order to provide you with an invoice. This information is collected as a legal obligation and will be stored on our systems along with invoices for a minimum period of 7 years.
We will store your email address for the purposes of managing your account with us. This information is required in order to ensure you are informed about your repairs or invoices so we can take appropriate actions in various situations. If you do not wish to be contacted via email, then you can call us and ask to remove your email address from your customer record.
If we send you transactional emails, these will be passed through Postmark and stored for a period of time to assist with debugging delivery problems and ensuring messages are appropriately delivered to their destinations. This is necessary to provide our service to you.
We use Postmark for sending transactional emails. You should refer to their privacy notices for details on how they manage this information
Phone and mobile numbers
We will store your phone and mobile numbers for the purposes of contacting you about repair jobs or invoices. This information is required in order to ensure you are informed about your repairs or invoices.
If we send you text messages, your mobile number will be passed through Twilio and stored for a period of time to assist with debugging delivery problems and ensuring messages are appropriately delivered to their destinations. This is necessary to provide our service to you.
We use Twilio for sending text messages. You should refer to their privacy notices for details on how they manage this information
We do not store full payment card details on our own servers. We work with external PCI-compliant payment processor, Stripe, who store these details.
We store the last 4 digits of your card and the card type on our systems so that you can identify which card will be used for future payments.
We will instruct our payment processor to delete any stored card details when you cancel your support subscription.
We use Google Analytics to help us track the details of visitors browsing our public website. We do not send any personal data to Google's services through Google Analytics and we configure our tracking codes to anonymise any IP addresses.
Emails directly to/from our employees
If you communicate with our employees directly by email, we may retain your name & email address in the mailboxes of the employee(s) that you communicate with. This is necessary to provide our service to you.
Employee emails are kept indefinitely. Any emails that contain sensitive data that are delivered by accident will be removed immediately.
We use Google G Suite for hosting our email service. You should refer to their privacy notices for details on how they manage this information
We store backups of customer data (documents, pictures, music, etc) for repair jobs as required. This data is stored on a site dedicated machine which has up to date antivirus software. This is necessary to provide our service to you.
We store backups of our intranet system. Backup data is encrypted and stored off site in a secure data centre.
Backup data is stored for a period of 4 weeks.
Correcting your personal data
It is important to us that the information we store is up to date and accurate. You may update your details at any time by coming in to the shop or by calling us.
Electronic storage of data
No method of electronic storage can be 100% secure, however, we have sophisticated and detailed security policies that govern our systems & applications to help ensure your data is as secure as it can be.
Our lawful basis for data processing
Under the General Data Protection Regulation, unless we have otherwise specified above, we will be processing your data as a legitimate interest. These interests include staff training, ensuring the security of our systems and to allow us to operate our business in an efficient manner.
Where our processing is based on consent, you may withdraw consent at any time.
Where our processing is necessary for us to perform our contract with you, or to take steps to enter into a contract with you, we will not be able to enter into a contract with you or deliver our services to you if you do not give us the data in question.
Disclosure of information to law enforcement agencies
We may disclose your information if we are requested to by any law enforcement agency where we believe we are required to comply with the request under any applicable laws.