Privacy Policy

Last updated: November 30, 2025

Dorset Smartphone Repairs (“we”, “our”, “us”) is operated by Steven Lanes, a sole trader based in the United Kingdom. We respect your privacy and are committed to protecting your personal data. This Privacy Policy sets out how we collect, use, and safeguard information when you use our website or contact us.

1. Who is the Data Controller?

The data controller is:
Steven Lanes, trading as Dorset Smartphone Repairs (United Kingdom)
Email: steve@dorsetsmartphonerepairs.com
Phone/WhatsApp: +44 7745 666102

2. Information We Collect

We collect information in the following ways:

• Direct communication — when you call, email, or message via WhatsApp/Messenger.
• Website contact form — when you submit an enquiry.
• Online booking system — when you schedule a repair appointment.
• Manage-booking portal — when you update or cancel a booking using your secure link.
• Cookies & analytics — when you accept non-essential cookies.

The personal data we may collect includes:

• Name
• Email address
• Mobile phone number
• Preferred contact method (email, SMS, WhatsApp, call)
• Device details: platform (iOS/Android), device type, brand, model
• Issue or fault description
• Booking date & time
• Customer notes provided during booking
• Notes or updates added by us during the repair
• IP address and basic browser information (server logs only)
• Calendar link (ICS file) generated for your appointment
• QR code generated to add your booking to your calendar
• Unique manage-booking token used to access your booking page

3. How We Use Your Information

We use your personal data to:

• Respond to enquiries and provide quotes.
• Record and manage repair bookings.
• Send booking confirmation emails and appointment reminders.
• Generate secure links for managing your appointment.
• Create downloadable .ics calendar files and related QR codes.
• Communicate repair updates, follow-up information or questions.
• Process payments for parts and repair work.
• Meet tax, accounting, and legal obligations (HMRC).
• Improve website performance and detect errors (analytics where consented).

4. Online Booking System

When you use our booking system, we collect the personal and device details required for arranging your repair. This information is securely stored in our booking database.

The booking system also uses:

• A temporary session cookie — to remember your progress during booking.
• A secure manage-token — to access your booking management page. This token is unique, time-limited, and not stored in a cookie.
• A generated calendar link (.ics) — created specifically for your appointment.
• A generated QR code — provided by api.qrserver.com to add your appointment to your calendar.

No payment is taken automatically on the website. You only pay once parts availability is confirmed and we send payment instructions.

5. Website Contact Form

When you use the contact form, the details you enter (name, email, phone number, device information, and your message) are securely emailed to us. Form submissions are not stored in a database; they remain only in our email system to allow us to respond to your enquiry.

6. Lawful Bases for Processing

• Contract — to process your enquiry, booking, and repair.
• Legitimate interests — to operate and protect the business, prevent abuse, and communicate essential updates.
• Legal obligation — to comply with accounting and tax requirements.
• Consent — for analytics cookies and optional marketing (when applicable).

7. Data Retention

We retain repair-related information, invoices, booking details and email communications for up to 6 years to meet UK tax and business record requirements.

Technical logs (IP, browser info) are kept automatically by our hosting provider for security and troubleshooting.

8. Data Security

Your data is stored on secure, password-protected systems with appropriate safeguards in place.

9. Cookies & Analytics

Our website uses essential cookies required for security and booking functionality. Non-essential analytics cookies (Google Analytics / Meta Pixel) only run with your explicit consent.

Full details are available in our Cookies Policy.

10. Data Sharing

We never sell your personal data. Limited sharing may occur with:

• Hosting provider — for website and database operations.
• QR code provider — api.qrserver.com (calendar QR generation only).
• Email service providers — to send booking confirmations.
• Payment processors — when you pay for parts.
• Accountants / HMRC — for financial compliance.
• Regulators or law enforcement — if legally required.

11. International Transfers

Some service providers (such as Google and Meta) may process data outside the UK/EEA. Where this occurs, we rely on recognised legal safeguards such as Standard Contractual Clauses.

12. Your Rights (UK GDPR)

You have the right to:

• Access the data we hold about you
• Correct inaccurate or incomplete data
• Request deletion (where legally allowed)
• Restrict or object to certain processing
• Request a copy of your data (portability)
• Withdraw consent for cookies or marketing

To exercise your rights, contact:
steve@dorsetsmartphonerepairs.com

You can also raise concerns with the UK Information Commissioner’s Office (ICO):
https://ico.org.uk/make-a-complaint/

13. Contact

For privacy-related queries, contact:
Steven Lanes, Dorset Smartphone Repairs
Email: steve@dorsetsmartphonerepairs.com
Phone: +44 7745 666102
United Kingdom