Privacy Policy - Carpetcleaning SE18
This Privacy Policy explains how Carpetcleaning SE18 collects, uses, stores, shares, and protects personal data. It applies to all Carpetcleaning SE18 customers in the area and describes your rights under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We are committed to handling personal information fairly, lawfully, and transparently.
1. Scope of this Policy
This policy applies when you enquire about, book, receive, or manage any carpet cleaning service provided by Carpetcleaning SE18. It also applies when you communicate with us by phone, email, online form, message, or any other method used to arrange services, request quotations, or raise concerns. By using our services, you acknowledge that some personal data may be collected and processed for legitimate business and legal purposes.
2. Personal Data We Collect
We only collect personal data that is necessary for delivering our services, managing our business, and meeting our legal obligations. The types of information we may collect include:
- Identity information: name, title, and any details needed to identify you as a customer or authorised representative.
- Contact information: address, telephone number, email address, and service location details.
- Service information: details about the cleaning service requested, carpet type, stain concerns, appointment preferences, and relevant instructions.
- Payment and billing information: payment status, invoices, transaction references, and records required for accounting.
- Communication records: correspondence relating to bookings, service updates, feedback, complaints, or aftercare.
- Technical information: limited device or usage data if you interact with us through digital systems, such as time of access or message logs.
We do not intentionally collect special category data unless it is strictly necessary and you have provided it voluntarily, or unless another lawful condition applies. If such information is ever needed, it will be handled with extra care and only for a clear lawful purpose.
3. How We Use Your Data
We use personal data for the following purposes:
- to provide carpet cleaning services and manage bookings;
- to prepare quotations, confirmations, and service records;
- to communicate about appointments, changes, or follow-up matters;
- to process payments and maintain accurate accounts;
- to handle complaints, disputes, and customer support requests;
- to improve our services, quality standards, and operational efficiency;
- to comply with legal, tax, insurance, and regulatory requirements.
We only use your data in ways that are compatible with the purpose for which it was collected, unless a new lawful basis applies. We never sell personal data.
4. Lawful Basis for Processing
Under UK GDPR, we must have a lawful basis to process personal data. Carpetcleaning SE18 relies on the following lawful bases:
Contract
We process data where it is necessary to enter into or perform a contract with you. This includes managing bookings, providing services, confirming addresses, and billing for completed work.
Legitimate Interests
We may process data where it is necessary for our legitimate business interests, provided those interests are not overridden by your rights and freedoms. Examples include service administration, record keeping, customer support, service improvement, fraud prevention, and protecting our business operations.
Legal Obligation
We process some data to comply with legal obligations, including tax, accounting, consumer protection, insurance, and record-retention requirements.
Consent
Where required by law, we will rely on your consent. If consent is used, you may withdraw it at any time. Withdrawal will not affect processing that took place before consent was withdrawn.
Vital Interests and Public Interest
These bases are unlikely to be used in ordinary service delivery, but they may apply in exceptional circumstances where necessary to protect someone’s life or where required by law.
5. Sharing Your Data and Processors
We may share personal data only where necessary and only with trusted parties who assist us in running our services. These parties act as data processors or, in some cases, independent data controllers.
- Payment processors that handle card or bank transactions securely.
- Accounting and bookkeeping providers that support financial record keeping and tax compliance.
- IT and hosting providers that store or process business data, including secure backup services.
- Communication service providers that help us send messages, booking notices, or service updates.
- Professional advisers such as insurers, legal advisers, or auditors when necessary.
- Public authorities where disclosure is required by law or to defend legal claims.
All processors are required to protect data, process it only on our instructions, and use appropriate technical and organisational security measures. When data is transferred outside the UK, we will ensure that suitable safeguards are in place.
6. Data Retention
We keep personal data only for as long as necessary for the purposes described in this policy. Retention periods depend on the type of information and why it is held. Typical retention practices include:
- booking and service records: kept for as long as needed to manage the customer relationship and address any disputes;
- invoice and payment records: retained in line with accounting and tax requirements;
- communication records: retained for a reasonable period to support service quality and issue resolution;
- consent-based records: kept until consent is withdrawn or the purpose no longer applies.
When data is no longer needed, it is securely deleted, anonymised, or archived in a way that prevents unnecessary access. We review retention needs regularly to avoid keeping data longer than necessary.
7. Data Security
We take reasonable and appropriate steps to keep your personal data secure. These measures may include access controls, password protection, secure storage, staff confidentiality obligations, and limited access on a need-to-know basis. While no system can be guaranteed completely secure, we work to reduce the risk of loss, misuse, unauthorised access, or accidental disclosure.
Our staff and processors are expected to treat personal data with strict confidentiality and to report any suspected data incident promptly so it can be investigated and addressed.
8. Your Rights
Under data protection law, you have several rights over your personal data. These rights may be subject to legal limits or exceptions, but we will always assess requests carefully and respond appropriately. Your rights include:
- Right of access: you may request a copy of the personal data we hold about you.
- Right to rectification: you may ask us to correct inaccurate or incomplete information.
- Right to erasure: in some cases, you may request deletion of your data.
- Right to restriction: you may ask us to limit the use of your data in certain circumstances.
- Right to data portability: where applicable, you may request your data in a structured, commonly used format.
- Right to object: you may object to processing based on legitimate interests or direct marketing.
- Right to withdraw consent: if processing is based on consent, you may withdraw that consent at any time.
You also have the right to raise a complaint with the UK Information Commissioner’s Office if you are unhappy with how your data has been handled. We encourage you to raise concerns directly first so we can try to resolve them quickly and fairly.
9. Marketing Communications
We do not send unsolicited marketing messages without a lawful basis. If we ever contact you about offers or updates, we will ensure the communication rules are respected and that you can opt out easily. You may object to marketing at any time, and your request will be honoured promptly.
10. Children’s Data
Our services are intended for adult customers and property-related service arrangements. We do not knowingly collect personal data from children unless it is incidentally provided by an adult customer and is necessary for service delivery. Where children’s data is involved, we will treat it carefully and only process it where lawful and appropriate.
11. Changes to This Policy
We may update this Privacy Policy from time to time to reflect legal, operational, or service changes. Any revised version will apply from the date it is published or otherwise communicated. We recommend reviewing this policy periodically to stay informed about how we protect your personal data.
12. Summary of Our Commitment
Carpetcleaning SE18 is committed to processing personal data responsibly, transparently, and securely. We collect only what we need, use it for clear purposes, retain it for appropriate periods, and protect it with suitable safeguards. Your privacy matters, and we aim to uphold your rights at every stage of our customer relationship.