Who are ‘Coby Autos’ / ‘Coby Autos LTD’? Coby Autos Ltd is a private provider automotive repair and upgrade services located in the Red Cow area just off the Naas Road / M50 in Leinster, Ireland. This statement relates to our privacy practices and GDPR compliance in connection with this website, https://www.cobyautos.ie. We are not responsible for the content, privacy practices or GDPR compliance of other websites. Any external links to other websites are clearly identifiable as such.
Who is the Data Controller? Coby Autos Ltd Data Controller is Joe Coby.
Where are we? Where is the location of processing? Coby Autos LTD is based at Redcow, Naas Road, Clondalkin, Dublin 22. Telephone: (01) 459 1308 | Fax: (01) 459 1012 | E-mail us via our contact form. Personal Data is processed at our base, registered address or at other locations where we may be called to collect a damaged vehicle on occasion.
What personal data do we process? How do we process data?
We process the following data: Customer Name, telephone number(s), email addresses and vehicle details such as vehicle make / model / year of manufacture. We process information relating to vehicles to assess and repair or perform any upgrades as may be required or requested by the vehicle owner. We also process text submitted via forms on our website (which may or may not include names, e-mail addresses and telephone numbers) and IP addresses. Where customers drop into us at our garage / base, we collect information in manual / paper and electronic formats. We do not record telephone calls or conduct audio or video recording.
Our website (https://www.cobyautos.ie) is hosted by LetsHost; you can read more about LetsHost and GDPR compliance here: https://www.letshost.ie/gdpr-statement/ We also use GMail to ensure a quick response time to all queries – you can learn more about Google’s commitments to business data compliance here: https://privacy.google.com/businesses/
Coby Autos LTD do not process credit card information on this website nor do we currently accept payments of any kind via the website.
As well as the cobyautos.ie domain name, we also own dpfdublin.ie (our sister website). DPF Dublin operates from the same premises and you may learn more about this arm of our business at https://www.dpfdublin.ie
How do we store and protect data? Physical / paper-based data is stored at our registered address under lock and key. Electronic data is similarly stored at our registered address and devices storing this information are password protected. All data is accessible only by Coby Autos staff. We do not store client information on cloud servers.
Information provide via this website is secured within HTTPS networks. HTTPS is the protocol over which data is sent between your browser and Coby Autos LTD website. The “S” at the end of HTTPS stands for secure and indicates that these communications are encrypted.
How long do we retain data for?Generally speaking we will store client information only as long as it is needed. In terms of your personal details, any repair or upgrade work we undertake are tied to these details – we need to be able to contact you to advise on costings to respond to work estimates, and we need to update you as to any changes in the work required (for example unforeseen repairs that may be doable at the same time as other work) and as to when your vehicle is ready for collection.
All of the queries sent to us via our website arrive into our mailboxes which we then respond to – either by phone or email (usually by phone as it’s quicker). These emails are backed up as part of our website system purely so as to ensure a response in terms of any email failure – and they are periodically deleted at regular intervals after any particular job is completed or query answered.
Why do we process personal data? We process data as part of the process of providing our services. This includes, but is not limited to booking in vehicles for servicing / repairs, carrying out assessments, / discussing repairs / upgrades with customers and other professionals, invoicing, end-of-year accounting and other day-to-day administration purposes that are within our legitimate interests.
Who do we share data with and why? Coby Autos LTD does not share data with individuals, companies or organisations except under the following circumstances:
1. With your Consent – in very rare circumstances we may share personal information relating to you / your vehicle with other professionals when we have your written permission to do so; this might be where you’ve requested a service we do not provide but can refer you onto a trusted third party company with which we are very familiar and can recommend.
2. For processing by third parties – including LetsHost (website and primary email host), Gmail (email platform), Google Analytics and Google Adwords (for identifying which parts of our website are most popular and for placing adverts for our website on Google) and our Accountants.
3. For legal reasons – Coby Autos LTD will share personal information with outside organisations when legally obliged to do so e.g. at the request of the Gardaí or Revenue Commissioners.
Consent:Prior to initial assessments / repair work being undertaken we provide customers of <16s with a Consent Form which must be signed before assessment / repair or upgrade work commences. Our Consent Form does not contain pre-ticked boxes and does not assume Consent; Consent must be freely given. Once provided, Consent remains valid for the period of the work undertaken, although customers can withdraw their Consent by advising us in writing of their desire to do so.
What is GDPR? The General Data Protection Regulation (GDPR) is a piece of legislation prepared by the European Union that aims to give you more control over how your data is used and protected. The new legislation comes into effect on the 25th May 2018. GDPR affords you the following rights:
1. Right to be Informed: You have the right to be provided with “fair processing information”, which will be completely transparent about how we have gathered and will use your data. You have the right to be notified about any third party processors with whom we share your personal data, along with the reason for doing so.
2. Right of Access: You have the right to confirmation that your personal data are being processed and to access a copy of your personal data.
3. Right of Rectification: You have the right to have your personal data corrected if it is inaccurate or incomplete.
4. Right to Erasure: You have the right to have your personal data deleted from our systems in the following situations:
When you withdraw consent
Data deletion is to comply with a legal obligation
Where the data was unlawfully processed
Where it is no longer necessary
Where you object to the processing
We may have grounds to refuse such deletion requests for the following reasons:
Exercise the right of freedom of expression
To comply with legal obligations
The exercise or defence of legal claims
Archiving purposes in the public interest
5. Right to Restrict Processing: You have the right to request that we no longer process your data, but that we can still store it.
6. Right to Data Portability: You have the right to obtain and reuse your personal data for your own purposes, without hindrance. We will provide the data to you in a structured and widely used machine readable form.
7. Right to Object: You have the right to object to any direct marketing from us. We will immediately cease any such marketing upon request (via an unsubscribe link at the bottom of the direct marketing e-mail). We do not automatically add any customers details to any direct marketing system or outlet. We do run a periodic email marketing campaigns (usually once per calendar month) but these are only sent out to customers whom have requested to join the specific mailing list(s).
8. Rights in relation to Automated Decision Making and Profiling: We do not carry out any automated decision making or profiling activities, so this right does not apply in this circumstance.
To exercise these rights, please send an e-mail to firstname.lastname@example.org. We may ask you to verify your identity as part of processing the requests to exercise your rights. We will endeavour to respond to all requests within 30 days of receiving the initial request. If we are unable to complete the request within the 30 day limit, we will notify you within the required time limit.
Information on stopping unwanted cookies in Chrome, Firefox, Opera, Safari and Internet Explorer browsers is available via your browser’s help/settings menu. Cookies which may be collected include JSESSIONID, PHPSESSID, @@History/@@scroll|#, _ga, _gat, _gid, p.gif, collect, r/collect, crumb, ss_cid, ss_cvisit, ss_cvr, ss_cvt, TrackJS, trustedsite_session and usage.gif.
Technical details in connection with visits to this website are logged by our internet service provider for our statistical purposes. No information is collected that could be used by us to personally identify website visitors. The technical details logged are confined to the following items:
the IP address of the visitor’s web server – this is the identifying details for your computer, or your internet company’s computer, expressed in “internet protocol” code (for example 192.16x.xx.xx). Every computer connected to the web has a unique IP address, although the address may not be the same every time a connection is made.
the top-level domain name used (for example .ie, .com, .org, .net)
the previous website address from which the visitor reached us, including any search terms used
the type of web browser and operating system used by the website visitor.
“Coby Autos LTD” makes no attempt to identify individual visitors, or to associate the technical details listed above with any individual, nor will we disclose such technical information in respect of individual website visitors to any third party (apart from our internet service provider, which records such data on our behalf and which is bound by confidentiality provisions in this regard), unless obliged to disclose such information by law. The technical information will be used only by “Coby Autos LTD” and only for statistical and other administrative purposes. You should note that technical details, which we cannot associate with any identifiable individual, do not constitute “personal data” for the purposes of the GDPR.
Cross-border data transfer: Our use of LetsHost, Gmail, and MailChimp (for our marketing campaigns) means that certain personal data is stored on servers located outside of the EU. We understand that these companies are GDPR compliant and have subscribed to the EU-US and Swiss-US Privacy Shield which is a regulatory implementation designed to guarantee that EU citizens are adequately protected under EU data protection laws as their data passes into and out of the United States. Read more about Privacy Shield here: https://www.privacyshield.gov/welcome
Complaints about how your data is processed: If you are concerned about how personal data is processed by Coby Autos LTD, please contact us via this link: https://www.cobyautos.ie/contact-us/ or by emailing email@example.com