top of page

Privacy Policy

Last Updated: July 28, 2025

​

Skye Serve ("we", "us", "our") is committed to protecting the privacy and security of your personal data. This Privacy Policy explains how we collect, use, disclose, and protect your personal data when you use our IT services, interact with our website, or otherwise communicate with us.

As an Irish company operating within the European Union, we process your personal data in compliance with the General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) and the Data Protection Acts 1988-2018.

 

1. Who We Are (Data Controller)

Skye Serve is the data controller responsible for processing your personal data under this Privacy Policy. 

Our Contact Details: Chambers House, Shanco,, Ireland. 

Email: info@skyeserve.com 

Phone: +353 (0)87 991 0111

 

2. Personal Data We Collect

We may collect and process various types of personal data about you, including:

  • Contact Information: Name, job title, company name, postal address, email address, phone number (landline and mobile).

  • Account Information: Usernames, passwords (hashed), and other credentials necessary for accessing our services or client systems (where applicable and with proper authorization).

  • Service-Related Information: Details about the IT services you request or receive, including service tickets, support requests, project details, system configurations, and performance data.

  • Technical Information (Client Systems): In the course of providing IT support and management, we may access and process technical data from your systems, devices, and networks. This may include IP addresses, device IDs, operating system information, software configurations, error logs, and performance metrics. We only access such data as necessary for the provision of our contracted services.

  • Financial Information: Bank account details for payments, payment status, invoice details. We do not store full credit card details on our systems.

  • Communication Data: Records of your communications with us (e.g., emails, phone calls which may be recorded for quality and training purposes, live chat transcripts, support ticket conversations).

  • Website and Usage Data: Information collected automatically when you visit our website, such as your IP address, browser type, operating system, pages viewed, referring URL, dates and times of visits, and interactions with our website. This is often collected through cookies and similar technologies (please see our separate Cookie Policy for more details).

  • Marketing Preferences: Your preferences regarding receiving marketing communications from us.

 

3. How We Collect Your Personal Data

We collect personal data from various sources:

  • Directly from You: When you request a quote, make a service inquiry, complete forms on our website, communicate with us by phone, email, or in person, or sign up for our newsletters.

  • From Your Organisation/Employer: Your employer or the company you represent may provide us with your contact details and other necessary information to facilitate our IT services to them.

  • From Third Parties:

    • Software Vendors & Service Partners: Information from partners or vendors whose products or services we integrate or support as part of our IT solutions.

    • Publicly Available Sources: In some cases, we may collect publicly available business information.

    • Analytics Providers: Data about your website usage from analytics services.

 

4. Purposes and Legal Basis for Processing Your Personal Data

We process your personal data for the following purposes and rely on the following legal bases under GDPR:

Purpose of Processing

Legal Basis for Processing

To provide IT services (e.g., managed IT support, cybersecurity, cloud services, network management, software development)

Performance of a contract: Necessary for us to fulfil our contractual obligations to you or your company. This includes accessing, processing, and storing data on your systems where explicitly required for service delivery.

To communicate with you (e.g., regarding service requests, updates, project progress, inquiries)

Performance of a contract: Necessary for service delivery. Legitimate interests: To respond to your queries and manage our relationship efficiently.

To manage our business relationship (e.g., account management, invoicing, debt collection, contract renewal)

Performance of a contract: Necessary for managing our contractual relationship. Legal obligation: For financial record-keeping and tax compliance. Legitimate interests: For efficient business operations and debt recovery.

To comply with legal and regulatory obligations (e.g., tax laws, cybersecurity regulations, data protection laws)

Legal obligation: Necessary to comply with laws binding on us.

To improve our services and website (e.g., analysing service performance, website usage, gathering feedback)

Legitimate interests: To enhance our service offerings, improve user experience, optimize our website, and ensure our business remains competitive and innovative.

For marketing purposes (e.g., sending newsletters, promotional offers, updates on services and industry insights)

Legitimate interests: To promote our services to existing customers (where permissible under "soft opt-in" rules) or Consent: where required (e.g., for new marketing subscriptions). You have the right to withdraw consent at any time.

For security and fraud prevention (e.g., protecting our systems and client systems, detecting unauthorized access)

Legitimate interests: To protect our business, IT infrastructure, and client data from security threats, unauthorized access, and fraudulent activities. This may involve monitoring system logs and access patterns. Legal obligation: Where required by law enforcement or regulatory bodies for security incident reporting or investigation.

To handle complaints and disputes

Legitimate interests: To resolve issues, manage client relationships, and defend our legal rights. Legal obligation: Where required by law (e.g., consumer protection laws, dispute resolution mechanisms).

 

 

5. Sharing Your Personal Data

We may share your personal data with the following categories of recipients:

  • Third-Party Service Providers:

    • Cloud Hosting & Infrastructure Providers: For hosting our systems and client data where managed by us.

    • Software Vendors: Providers of software solutions and platforms that we utilize or integrate as part of our services (e.g., CRM, project management, remote monitoring and management (RMM) tools).

    • IT Support Tools Providers: For remote access, ticketing systems, and other tools necessary for service delivery.

    • Payment Processors: To process your payments securely.

    • Professional Advisors: Such as lawyers, accountants, auditors, and consultants, when necessary for their services to us.

  • Governmental and Regulatory Authorities: Tax authorities, cybersecurity agencies, law enforcement agencies, and other regulatory bodies when required by law or a legitimate request (e.g., in response to a data breach notification).

  • Group Companies: If Skye Serve is part of a larger group of companies, we may share data within the group for internal administrative purposes, service delivery, and business development.

  • Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your personal data may be transferred to the acquiring entity.

We ensure that all third parties processing personal data on our behalf are bound by contractual obligations to protect your data and comply with data protection laws.

 

6. International Data Transfers

As an IT services company, it may be necessary to transfer personal data outside the European Economic Area (EEA) to countries where our service providers, software vendors, or data centers are located, or where support personnel for specific technologies are based.

When we transfer personal data outside the EEA, we ensure that appropriate safeguards are in place, such as:

  • Transferring to countries deemed to provide an adequate level of data protection by the European Commission.

  • Implementing Standard Contractual Clauses (SCCs) approved by the European Commission, which provide contractual obligations for data protection.

  • Relying on Binding Corporate Rules (BCRs) for transfers within corporate groups, where applicable.

By engaging our services, you acknowledge and agree to such transfers as necessary for the performance of the contract, particularly for services that inherently involve global infrastructure or support.

 

7. Data Retention

We will retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

The retention periods for personal data vary depending on the type of data and the purpose of processing:

  • Contractual & Financial Data: Generally retained for the duration of our contractual relationship plus a period to comply with legal obligations (e.g., tax, accounting, statute of limitations for claims), typically 7 years from the end of the financial year in which the transaction occurred.

  • Service Logs & Technical Data: Retained for a period necessary for troubleshooting, security auditing, and performance analysis, typically [e.g., 90 days to 1 year], unless a longer period is required by contract or law.

  • Website Usage Data: Typically retained for a shorter period, unless needed for security or analytical purposes over a longer term.

  • Marketing Data: Retained until you withdraw your consent or opt-out of marketing communications.

Once personal data is no longer required, we will securely delete or anonymize it.

 

8. Your Data Protection Rights

Under GDPR, you have the following rights regarding your personal data:

  • Right to be Informed: You have the right to receive clear, transparent, and easily understandable information about how we use your personal data and your rights. This Privacy Policy serves that purpose.

  • Right of Access: You have the right to request a copy of the personal data we hold about you.

  • Right to Rectification: You have the right to request that we correct any inaccurate or incomplete personal data we hold about you.

  • Right to Erasure (Right to be Forgotten): In certain circumstances, you have the right to request the deletion of your personal data.

  • Right to Restrict Processing: You have the right to request that we limit the way we use your personal data in certain situations.

  • Right to Data Portability: You have the right to receive the personal data you have provided to us in a structured, commonly used, and machine-readable format and to transmit that data to another controller where technically feasible.

  • Right to Object: You have the right to object to the processing of your personal data where we are relying on legitimate interests as the legal basis, or for direct marketing purposes.

  • Rights in Relation to Automated Decision-Making and Profiling: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you, unless certain conditions apply.

To exercise any of these rights, please contact us using the details provided in Section 1. We will respond to your request within one month, as required by GDPR.

 

9. Security of Your Personal Data

We implement appropriate technical and organisational measures to protect your personal data from unauthorised access, disclosure, alteration, loss, or destruction. These measures include:

  • Data Encryption: Encrypting data both at rest and in transit where appropriate.

  • Access Controls: Limiting access to personal data (including client system access) to authorised personnel on a need-to-know basis, utilizing robust authentication methods.

  • Regular Security Audits & Vulnerability Assessments: Conducting regular assessments of our systems, networks, and processes to identify and mitigate security risks.

  • Employee Training: Ensuring our staff are regularly trained on data protection, cybersecurity best practices, and incident response procedures.

  • Data Minimisation: Collecting and processing only the personal data that is strictly necessary for our purposes.

  • Incident Response Plan: Maintaining a plan for responding to suspected data breaches or security incidents.

Despite our efforts, no method of transmission over the internet or electronic storage is 100% secure. Therefore, while we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security.

 

10. Cookies and Other Tracking Technologies

Our website uses cookies and similar technologies to enhance your browse experience, analyse website traffic, and understand user behaviour. For detailed information about the cookies we use and how to manage your preferences, please refer to our separate Cookie Policy.

 

11. Links to Other Websites

Our website may contain links to other websites that are not operated by us. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services. We encourage you to review the privacy policies of any third-party websites you visit.

 

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any significant changes by posting the updated policy on our website with a new "Last Updated" date. We encourage you to review this Privacy Policy periodically.

 

13. How to Contact Us

If you have any questions about this Privacy Policy, our data processing practices, or if you wish to exercise any of your data protection rights, please contact us at:

Chambers House, Shanco, Ireland. 

Email: info@skyeserve.com 

Phone: +353 (0)87 991 0111

 

 

14. Right to Complain to the Supervisory Authority

If you are not satisfied with our response or believe that we are processing your personal data unlawfully, you have the right to lodge a complaint with the Data Protection Commission (DPC), the supervisory authority for data protection in Ireland.

Data Protection Commission: 21 Fitzwilliam Square South, Dublin 2, D02 RD28 Phone: +353 1 765 0100 Email: info@dataprotection.ie Website: www.dataprotection.ie

bottom of page