Privacy Policy
2. What information do we collect?
Personal information
How we obtain personal data
The information we process about you includes information:
-
You have directly provided to us
We collect personal information that you voluntarily provide to us when you register on the services, express an interest in obtaining information about us or our services, when you participate in activities on the services, or when you contact us.
Personal information that we collect
The personal information that we collect is dependent on the features of our services that you use. The personal information that we collect may include the following:
-
Names
-
Phone Numbers
-
Email Addresses
-
Addresses
-
Job Titles
-
Passwords
-
Debit or Credit Card Numbers
-
Billing Addresses
-
Bank Account Details
-
Copies of Passports
-
Copies of GNIB Cards or Visa information or Work Status
-
Copies of PPS Numbers or other Government ID Numbers or Identifiers
-
Images that you provide to us through our services
-
Audio Recordings that may be uploaded through the use of the features in our services
Other information we collect
-
Employee count
-
Premises details
-
PAYE numbers
-
Business Emails
Payment Data
We may collect data necessary to process payments of your choosing, such as payment card numbers, payment card expiry dates and payment card security codes. All payment data is handled and stored by Stripe. You may find their privacy policy here:
Application Data
If you use our application(s), we also may need to collect the following information if you choose to allow access or permission.
-
Mobile Device Access – We may need to have access to your devices camera, microphone and other features. If you wish to change our access to these features and permissions, you may do so in your devices settings.
-
Push Notifications – We may request to send you push notifications regarding your account or certain features of the application(s). If you wish to opt out of receiving these, you may turn them off in your device settings.
This information is primarily needed to maintain the security and operation of features of our services, for troubleshooting and for our internal analytics and reporting purposes.
Automatically Collected Information
We automatically collect certain information when you visit, use, or navigate through our services. This information does not reveal your Personally Identifiable Information (PII) such as your contact information but may include device and usage information, like IP addresses, browser details, operating system, device name, country, language and other technical information.
This information is needed primarily to maintain security and operations of the service, but we may use for our internal analytics and reporting purposes.
Like most other businesses, we also collect information through Cookies
Cookies we use:
Name | Purpose | Provider | Service | Type | Expires in (Days) |
|---|---|---|---|---|---|
rc::a (Essential) | Used to Track and analyse user behaviour to distinguish humans from bot or other automated software. | www.google.com | reCAPTCHA | html_local_storage | Never |
XSRF -TOKEN (Performance &Functionality) | This cookie is written to help with the sit security. It prevents cross site request forgery attacks | synergyup.com | Website Domain | server_cookie | 15 |
s7 (Analytical & Customisation) | Gathers data regarding site usage and user behaviour on the website. | synergyup.com | Adobe Analytics | server_cookie | 15 |
The ways in which you can refuse cookies varies by browser. The most popular browser instructions on how to manage cookies is listed here:
You have the right to refuse all non-essential cookies and more information can be found here:
Through these cookies, the information includes:
-
Log and usage data – this may include your ip address, device information, browser type and settings and information about your activity in the services, such as pages and files viewed, searches and other actions like the features of our services used. This includes device event information, error reporting and hardware settings
-
Device data – we collect information on your device (Computer, phone, tablet or other device used to access our service). This depends on the device but may include information such as device and application ID numbers, browser type, hardware model, operating system and system configuration information.
3. How we process your information
How we process your information
We fully respect your right to privacy in relation to your interactions with our services and be transparent as to what personal data we will collect and how we will use your personal data. We only collect and use personal data where we are legally entitled to do so. Information in relation to Personal Data collected by Irish entities is available on www.dataprotection.ie, the website of the Irish Data Protection Commission (DPC)
We process your information for a variety of reasons depending on how you interact with our services. This may include:
-
To facilitate account creation and authentication. We may process your information to create and account for you and so you can log into your account as well as to keep your account in working order.
-
To deliver and facilitate our services for the user. We may need to process your information to provide you with a requested service.
-
To respond to user enquiries
-
To respond to user in order to offer support and resolve any issues they may have with our services
-
To send any changes to our policies or services such as changes to terms of service and other similar information
-
To enable user to user communications. This allows us to provide our services to allow communication between users
-
To administer and protect our business and improve our Website, mobile application and services (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data).
-
To provide and improve our Website and mobile application, including auditing and monitoring its use, providing and improving our service to you and managing and administering our relationship with you.
-
To provide our service to you
-
We may contact you for administrative reasons related to the service (for example, to provide you with password reminders
-
To notify you that a particular service has been suspended
-
To respond to an enquiry regarding a demonstration of the product.
-
To contact prospective customers via direct mail
-
To generate an invoice to register as a customer of our service
-
To gather customers employee data to create account
We will only keep your personal information for as long as it is necessary for the purposes set out in this policy, unless a longer retention period is required or permitted by law, for example tax, accounting or other legal requirements. No purpose in this notice will require us keeping your personal information longer than the period of time a user may have an account with us.
We will not be held responsible for any data which is deleted by the user themselves and cannot be recovered.
4. How long do we keep your information
5. Your Rights
As a user providing data, you have the following rights under Data Protection Laws and we will comply with such rights as far as we are legally obliged to do so. These rights are explained in more detail below, but if you have any comments, concerns or complaints about our use of your personal data, please contact us
-
Access - You have the right to request a copy of your personal data. Requests for your personal data must be made to us specifying what personal data you need access to, and a copy of such request may be kept by us for our legitimate purposes in managing the service. To help us find the information easily, please give us as much information as possible about the type of information you would like to see. If, to comply with your request, we would have to disclose information relating to or identifying another person, we may need to obtain the consent of that person, if possible. If we cannot obtain consent, we may need to withhold that information or edit the data to remove the identity of that person, if possible. We are also entitled to refuse a data access request from you where such request is manifestly unfounded or excessive. If we decide to provide you with the personal data requested, we may charge you a reasonable fee to account for administrative costs of doing so. We are entitled to do so pursuant to data protection laws. For security reasons, we will take reasonable steps to confirm your identity before providing you with any personal data we may hold about you.
-
Rectification – You have the right to amend any inaccurate or incomplete data that we may have about you.
-
Object – You have the right to ask us to stop processing your data and we will comply with this request unless there is a legal basis to continue.
-
Erasure – you have the right to request the erasure of your data where we have to comply with the law, where we do not need your data to process it for purposes set out in other elements of this policy, where you withdraw your consent to process your personal data or where your data has been unlawfully processed or where it has not been erased when it should have been.
-
Restriction of Processing - you shall have the right to obtain from the us restriction of processing where one of the following applies:
-
(A) the accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data;
-
(B) the processing is unlawful and the data subject opposes the erasure of the personal data and requests the restriction of their use instead;
-
(C) the controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise or defense of legal claims;
-
(D) the data subject has objected to processing pursuant to Article 21(1) pending the verification whether the legitimate grounds of the controller override those of the data subject.
-
Where processing has been restricted, such personal data shall, with the exception of storage, only be processed with the data subject’s consent or for the establishment, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State. If you have obtained restriction of processing pursuant, then you shall be informed by the controller before the restriction of processing is lifted.
-
Data Portability - You have the right to receive a copy of your personal data, which you has provided to us, in a structured, commonly used and machine-readable format and for us to provide such data to another party. This will be done by electronic means. Also, this only applies to data you have provided to us, not data generated by us.
-
To be Informed – We use this policy to be as clear and transparent as possible using easily understandable information about your rights.
-
Withdraw Consent – Where processing is based on consent, you have the right to withdraw this consent in the future by contacting us.
-
Contact with regards to marketing – We have a legitimate business interest to send by means of electronic communication information in connection with our services, announcements and newsletters. You can ask us to stop these communications by contacting us directly.
-
Complaint – You have a right to complain if you do not think we have processed your personal data in accordance with this policy. Please contact us firstly by directly using the means to contact us below. If you do not get a satisfactory response, then pursuant to data protection laws, you may contact the DPC for which further information can be found at https://www.dataprotection.ie
6. How do we keep your information safe?
We do as much as possible to protect user privacy through the appropriate use of security technology. We implement appropriate technical and organisational measures to ensure a level of security appropriate to the risks that are presented by the processing of your personal data. In particular, we consider the risks presented by accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to your personal data transmitted, stored or otherwise processed.
We restrict access to your personal data to employees, contractors and agents who need to know your personal data in order to operate, develop or improve the services. We ensure that we have appropriate physical and technological security measures to protect your information and we ensure that when we outsource any processes that the service provider has appropriate security measures in place. However, our Website or mobile application may contain hyperlinks to websites owned and operated by third parties. These third party websites have their own privacy policies, including cookies. We do not accept any responsibility or liability for the privacy practices of such third party websites and your use of such websites is at your own risk.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of any data transmitted to us and any such transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access. To the extent permitted by law, we are not responsible for any delays, delivery failures, or any other loss or damage resulting from the transfer of data over communications networks and facilities, including the internet, or any delay or delivery failure on the part of any other service provider not contracted by us, and you acknowledge that our service may be subject to limitations, delays and other problems inherent in the use of such communications facilities. You will appreciate that we cannot guarantee the absolute prevention of cyber-attacks such as hacking, spyware and viruses. Accordingly, we will not be liable for any unauthorized disclosure, loss or destruction of your personal data arising from such risks.
All information you provide to us is stored on our secure servers and third party servers, currently AWS servers. Where you have chosen a password which enables you to access any part of our service, you are responsible for keeping this password confidential. We ask you not to share a password with any person not authorised to use the service.
7. Who we share your information with
We will not share any data without your consent or unless required by law (except as set out in this policy). If our Business is acquired or merged with another company, your data may be transferred to the new owners so that we/they may continue to utilize our services to you.
We restrict access of data to employees, contractors, and agents who need such access in order to operate, develop, or improve our service. We may also share your personal data with our third party service providers, who assist us in the provision of the service. Such third party service providers include but are not limited to subscription APIs (Application Programming Interfaces) which support and enable us to provide the service to you.
Your personal data may be disclosed to a third party if we are required to do so because of an applicable law, court order or governmental regulation, or if such disclosure is otherwise necessary in support of any criminal or other legal investigation or proceeding in Ireland or abroad.
8. Non EEA personal data transfers
Your personal data may be transferred to, stored at, or accessed from a destination outside the EEA (a ‘third country’) for the purposes of us providing the service. It may also be processed by staff operating outside the EEA who work for us, another corporate entity within our group, or any of our suppliers. We will take all steps reasonably necessary to ensure that your personal data is treated securely and to an acceptable EU standard. The safeguards in place with regard to the transfer of your personal data to third countries shall include (but shall not be limited to) reliance by us on a decision of the European Commission confirming an adequate level of data protection in the respective third country, the entry by us into appropriate contracts with third parties incorporating standard contractual clauses approved by the European Commission where required or reliance other appropriate safeguards and the carrying out of risk assessments and adoption of supplementary and/or mitigating measures to ensure compliance with Data Protection Laws.
9. Third Party Websites
This Policy applies to websites, mobile applications and services that are owned and operated by us. We do not exercise control over the sites/applications that may be linked from the service. You may see logos and links to other websites such as Bizimply. These websites have their own cookies and privacy practices, which are controlled by them. These other sites/applications may place their own cookies or other files on your computer, collect data or solicit personal information from you. You acknowledge that the service may enable or assist you to access the website content of, correspond with, and purchase goods and services from, third parties via third-party websites and that you do so solely at your own risk.
We make no representation or commitment and shall have no liability or obligation whatsoever in relation to the content or use of, or correspondence with, any such third-party website, or any transactions completed, and any contract entered into by you, with any such third party and the use by any such third-party of your personal data. We do not endorse or approve any third-party website nor the content of any of the third-party websites made available via the service. We encourage you to carefully familiarize yourself with the terms of use and privacy policies applicable to any websites and/or services operated by third parties. Please be aware that we are not responsible for the privacy practices of any third parties.
When you leave our website, we encourage you to read the privacy notice of every website you visit.
10. Personal Data Breach Reporting
This Policy applies to websites, mobile applications and services that are owned and operated by us. We do not exercise control over the sites/applications that may be linked from the service. You may see logos and links to other websites such as Bizimply. These websites have their own cookies and privacy practices, which are controlled by them. These other sites/applications may place their own cookies or other files on your computer, collect data or solicit personal information from you. You acknowledge that the service may enable or assist you to access the website content of, correspond with, and purchase goods and services from, third parties via third-party websites and that you do so solely at your own risk.
We make no representation or commitment and shall have no liability or obligation whatsoever in relation to the content or use of, or correspondence with, any such third-party website, or any transactions completed, and any contract entered into by you, with any such third party and the use by any such third-party of your personal data. We do not endorse or approve any third-party website nor the content of any of the third-party websites made available via the service. We encourage you to carefully familiarize yourself with the terms of use and privacy policies applicable to any websites and/or services operated by third parties. Please be aware that we are not responsible for the privacy practices of any third parties.
When you leave our website, we encourage you to read the privacy notice of every website you visit.
11. Amendments
At our discretion, we may change part or all of this policy. The date of the most recent revision will appear at the top of the policy. If you do not agree with any changes, then please cease using the site, service or mobile application(s).
12. How to contact us
If you need to make contact about any or all of this policy, please do so in writing by email to gdpr@synergyup.com
This Privacy Notice for ABS Synergy Ltd trading as Synergy Up, hereinafter referred to as ‘we’, ‘us’ or ‘our’, describes how and why we may access, collect, store, use, and/or share (Process) your personal information when you use our services (services), when you:
-
Visit our website at https://synergyup.com/, or any website of ours that links to this privacy notice. These include but are not limited to https://www.synergystocktaking.ie/ & https://www.synergybookkeeping.ie/
-
Download and use our mobile application (Synergy Up)
-
Use Synergy Up
-
Engage with us in other ways through the website or mobile application, including any sales, marketing or events.
Queries – We are responsible for making decisions about how your personal information is processed. If you don’t agree with our policies or practices, please leave the website immediately and cease the use of our services. If you have any questions or concerns, then please contact us at