Privacy Policy & GDPR

Last updated: April 2026

1. Data Controller

EPAIRO is the data controller for the processing of your personal data. We ensure that your personal data is processed in accordance with legislation, specifically the General Data Protection Regulation (GDPR).

2. What Data We Collect

We collect and process the following data when you book a repair or create an account:

Contact Information: Name, email address, phone number, and physical address.
Device Information: Make, model, serial number, IMEI (if applicable), and device passcode (solely for post-repair diagnostic testing).
Payment Data: Handled securely via Stripe. We do not store your raw credit card information.

3. Purpose of Processing

Your data is processed strictly for the following purposes:

To fulfill our repair service agreement with you.
To contact you regarding the status of your repair.
To process payments and issue invoices.
To provide warranty support.

4. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, or as required by Danish accounting and tax laws (typically 5 years). Device passcodes are permanently deleted from our systems immediately after the final diagnostic test is completed and the device is returned to you.

5. Your Rights

Under GDPR, you have the right to:

Access the personal data we hold about you.
Request correction of inaccurate data.
Request deletion of your data (Right to be Forgotten), subject to legal obligations.
Restrict or object to our processing of your data.