Privacy Policy

Effective Date: 01/09/2025
Company Name: Envirobead Ltd.
Address:  IDA Business Park, Quartertown, Mallow, Co. Cork

Contact Emailinfo@envirobead.com
Phone: 00353 022 22 102

  1. Introduction

At Envirobead Ltd. , we are committed to protecting and respecting your privacy. This GDPR Privacy Policy explains how we collect, use, share, and protect personal data in compliance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”), the Data Protection Acts 1988–2018, and any related legislation in the Republic of Ireland.

This policy specifically addresses compliance with personal data processing related to SEAI grant applications and data sharing within our own network of contractors, surveyors, and administrative staff.

  1. What Personal Data We Collect

We may collect and process the following types of personal data:

  • Full name
  • Contact details (address, email, phone number)
  • PPS Number (for SEAI grant application)
  • BER (Building Energy Rating) certificate details
  • Property information (e.g., Eircode, house type, insulation details)
  • Photographic evidence of works (for compliance and verification)
  • Bank details (if required for grant payments or refunds)
  • SEAI-related documentation (e.g., grant applications, declarations)
  1. How and Why We Use Your Data

We use personal data for the following lawful purposes:

Purpose

Legal Basis

To provide insulation services

Contractual necessity

To process SEAI grant applications

Legal obligation and consent

To comply with SEAI inspection/audit requirements

Legal obligation

Internal sharing with subcontractors and staff for project delivery

Legitimate interests

To contact you regarding appointments, surveys, or works

Legitimate interests

To comply with tax and regulatory obligations

Legal obligation
  1. SEAI Grant Compliance

As a registered contractor under the Sustainable Energy Authority of Ireland (SEAI) Home Energy Grants scheme, we are required to:

  • Collect and retain specific personal data for the purpose of grant processing.
  • Share your data with SEAI, their auditors, and appointed inspectors, as part of the grant approval, verification, and auditing process.
  • Retain documents for the mandatory SEAI retention period (typically 7 years).
  • Provide SEAI with access to documentation, photographic evidence, and survey results for quality assurance and grant validation.

All processing under SEAI schemes is done in accordance with SEAI’s data protection policies and GDPR requirements.

  1. Data Sharing Within Our Network

To deliver our services efficiently, we may share your personal data internally within our trusted network. This includes:

  • Surveyors performing pre- and post-works assessments
  • Installation teams who carry out the works
  • Administrative staff handling grant paperwork, scheduling, and compliance
  • Third-party subcontractors (where applicable and under contract)

All internal data sharing is done under strict confidentiality agreements and with access limited to what is necessary for service delivery.

  1. Data Sharing with Third Parties

We may also share your data with:

  • SEAI and their appointed auditors/inspectors
  • Government authorities or tax agencies (where required by law)
  • Insurance providers (in case of claims)
  • IT and document management service providers (for secure storage and backup)

All third parties are bound by GDPR-compliant data processing agreements to protect your information.

  1. Data Retention

We retain personal data for as long as necessary for the purposes outlined, including:

  • 7 years for SEAI-related works (in line with audit requirements)
  • 6 years for contractual and tax-related data (as per Revenue guidelines)
  • Shorter periods for other non-essential communications, unless you consent otherwise
  1. Your Rights Under GDPR

You have the following rights:

  • Access – Request access to the personal data we hold about you
  • Rectification – Request correction of inaccurate or incomplete data
  • Erasure – Request deletion of your data (in certain circumstances)
  • Restriction – Request restriction of processing
  • Portability – Request transfer of your data to another provider
  • Object – Object to certain types of processing
  • Withdraw consent – Where processing is based on consent

To exercise these rights, please contact us at [Insert Email Address].

  1. Security of Your Data

We take appropriate technical and organisational measures to protect your data, including:

  • Secure file storage (physical and digital)
  • Role-based access control within our teams
  • Encryption and secure email for sensitive data
  • Staff training on data protection
  1. Complaints

If you are not satisfied with how we handle your data, you can contact the Data Protection Commission (DPC) in Ireland:

Websitehttps://www.dataprotection.ie
Phone: +353 (0)761 104 800
Emailinfo@dataprotection.ie

  1. Policy Updates

We may update this policy from time to time. The most recent version will always be available on our website or upon request. We encourage you to review it periodically.

Signed:
Brian McHugh
 Brian McHugh Managing Director
01/09/2025