Sligo is home to a thriving business community, and carpenters in the Sligo Town area and beyond are no exception. But many don’t realise the extent of their GDPR obligations — particularly around keeping detailed property measurements and floor plans linked to customer addresses without proper security. This guide breaks down exactly what’s required under Irish and EU data protection law.
Join 2,000+ Irish businesses already protected
Absolutely. Under the GDPR and the Irish Data Protection Act 2018, all carpenters in Sligo that collect, store, or process personal data must be fully compliant. This covers everything from booking details and payment information to CCTV footage and staff records. The DPC can impose fines of up to €20 million for non-compliance, and Irish businesses of all sizes are subject to enforcement.
RISK ASSESSMENT
Keeping detailed property measurements and floor plans linked to customer addresses without proper security
Sharing customer contact details with material suppliers or subcontractors without informing the customer
Storing customer data in unsecured cloud storage or personal Google Drive accounts
Collecting deposits via bank transfer and retaining unnecessary banking details after the job is complete
Using customer project photos on social media or websites without obtaining consent
DATA INVENTORY
FREE ASSESSMENT
See exactly where your Carpenter in Sligo stands on GDPR compliance — no signup required.
REQUIRED DOCUMENTS
Every Carpenter in Ireland needs these documents to demonstrate GDPR compliance.
STEP BY STEP
Issue a privacy notice to customers at the quotation stage explaining what data you collect, why, and how long you will keep it.
Get written consent before using any photos of a customer's property or completed work on your website, social media, or portfolio.
Store quotations, contracts, and customer details in a secure, password-protected system rather than loose files in a van or unprotected laptop.
Review all customer records annually and delete any that are no longer needed for ongoing work, warranties, or legal requirements.
Put data processing agreements in place with suppliers or subcontractors who receive customer details such as delivery addresses.
Ensure all devices used for business — phones, tablets, laptops — are password-protected and ideally encrypted.
Create a simple data breach procedure so you can respond quickly if customer data is lost, stolen, or accidentally shared.
COMMON PITFALLS
Posting before-and-after photos of customer kitchens or renovations on social media without the customer's permission, which can reveal their address and interior.
Keeping years of old quotations and customer details in email inboxes without ever deleting them.
Giving a supplier a customer's home address and phone number for a delivery without telling the customer their data is being shared.
Using a personal phone for business without any security measures, creating a risk if the phone is lost or stolen.
FAQ
Everything you need to know about GDPR compliance for your business.
Contact usOTHER SERVICES
Every day your Carpenter in Sligo operates without proper GDPR compliance is a risk. The DPC is increasing enforcement across Ireland — get ahead of it today.
Join 2,000+ Irish businesses. No credit card required.