Privacy Policy - Carpet Cleaners W6
This Privacy Policy explains how Carpet Cleaners W6 collects, uses, stores, shares, and protects personal data relating to its customers in the W6 area. It applies to all Carpet Cleaners W6 customers in the area, including individuals who enquire about, book, receive, or pay for carpet cleaning and related services. We are committed to handling personal information in a lawful, fair, and transparent manner in line with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
1. Data We Collect
We only collect personal data that is necessary to provide our services, manage customer relationships, and meet legal obligations. The type of data collected may include:
- Identity details such as name and title.
- Contact details such as address, email address, and telephone number.
- Service information such as the type of cleaning requested, property access details, service dates, and notes relevant to the job.
- Payment information such as records of payments made and billing details. We do not retain unnecessary financial data beyond what is needed for processing and accounting.
- Communication records such as enquiries, complaints, feedback, and correspondence.
- Technical data if you interact with our digital systems, such as basic device or browser information, where this is required for security or system administration.
We do not intentionally collect special category data unless it is strictly necessary and you have provided it voluntarily, or where required by law. Special category data may include information about health, religion, ethnicity, or other sensitive characteristics. If such information is ever provided to us, we will handle it with extra care and only where there is a lawful reason to do so.
2. How We Use Personal Data
We use personal data for the following purposes:
- To provide carpet cleaning and related services.
- To arrange appointments and manage service delivery.
- To communicate with customers about enquiries, bookings, or service changes.
- To process payments and maintain financial records.
- To handle complaints, disputes, and service issues.
- To improve service quality and maintain accurate records.
- To comply with legal, tax, accounting, and regulatory obligations.
- To protect against fraud, misuse, or unauthorised access.
We will only use your data for the reasons explained in this policy or for purposes that are compatible with them. Where we need to use your data for a new purpose, we will ensure there is a lawful basis for doing so.
3. Lawful Basis for Processing
Under GDPR, we must have a lawful basis to process personal data. Carpet Cleaners W6 relies on the following bases:
Contract
We process personal data when it is necessary to enter into or perform a contract with you. This includes taking bookings, providing cleaning services, arranging access to property, and handling payment-related matters.
Legal Obligation
We may process data where necessary to comply with legal requirements, including accounting, tax, and record-keeping duties.
Legitimate Interests
We may process personal data where it is necessary for our legitimate business interests, provided those interests are not overridden by your rights and freedoms. Examples include improving our services, maintaining internal records, preventing fraud, and managing business operations.
Consent
In limited situations, we may rely on your consent, for example if we need to use optional data or send certain types of communications not required for service delivery. Where consent is used, you have the right to withdraw it at any time.
4. Data Sharing and Processors
We may share personal data with trusted third parties who act as data processors or, in some cases, independent controllers. We only share data where it is necessary and proportionate to the purpose. Processors may include:
- Payment service providers that help process transactions securely.
- Accounting and bookkeeping providers that assist with financial administration.
- IT and system support providers that maintain secure data storage, software, or communication systems.
- Scheduling or administrative service providers that support booking and job management.
- Professional advisers such as accountants, insurers, or legal advisers where required.
All processors are required to protect personal data, act only on our instructions, and implement appropriate technical and organisational security measures. We do not sell personal data.
We may also disclose personal information where required by law, court order, or other legal process, or where necessary to protect our rights, customers, staff, or property.
5. Data Retention
We keep personal data only for as long as necessary for the purposes for which it was collected, including to meet legal, accounting, and reporting requirements. Retention periods depend on the type of data and the reason for holding it.
- Customer and service records are retained for as long as needed to manage the customer relationship and address any follow-up issues.
- Financial and transaction records are kept for the period required by tax and accounting law.
- Communication records may be kept for a reasonable period to deal with complaints, disputes, or service history.
- Consent-based data is retained only until consent is withdrawn or the purpose ends.
When data is no longer required, it will be securely deleted or anonymised so that it can no longer identify you.
6. Data Security
We use appropriate security measures to protect personal data from loss, misuse, unauthorised access, disclosure, alteration, or destruction. These measures may include access controls, secure storage, staff confidentiality obligations, and limited access to records on a need-to-know basis. While no system can be guaranteed completely secure, we take reasonable steps to safeguard the information we hold.
7. Your Rights
As a data subject under GDPR, you have a number of rights in relation to your personal data. These include:
- Right of access – you can request a copy of the personal data we hold about you.
- Right to rectification – you can ask us to correct inaccurate or incomplete information.
- Right to erasure – in certain circumstances, you can ask us to delete your data.
- Right to restriction – you can ask us to limit how we use your data in certain situations.
- Right to object – you can object to processing based on legitimate interests or direct marketing.
- Right to data portability – where applicable, you can request a copy of your data in a structured format.
- Right to withdraw consent – where processing is based on consent, you may withdraw it at any time.
Important: Some rights may not apply in every situation. For example, we may need to keep certain data to comply with legal obligations or to establish, exercise, or defend legal claims.
You also have the right to lodge a complaint with the Information Commissioner’s Office if you believe your data protection rights have been breached.
8. International Transfers
Where personal data is transferred outside the United Kingdom, we will ensure appropriate safeguards are in place in accordance with data protection law. This may include the use of adequacy regulations, standard contractual clauses, or other lawful transfer mechanisms designed to protect your information.
9. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, services, or legal obligations. Any revised version will apply from the date it is published. We encourage customers to review this policy periodically to stay informed about how their data is handled.
10. Our Commitment to Customers in W6
Carpet Cleaners W6 respects the privacy of every customer in the W6 area. Whether you contact us for a one-off carpet cleaning appointment or use our services on an ongoing basis, we will process your personal data with care, confidentiality, and accountability. We aim to collect only what we need, use it responsibly, retain it for no longer than necessary, and provide you with meaningful control over your information.
This policy is intended to reflect GDPR principles including lawfulness, fairness, transparency, data minimisation, purpose limitation, storage limitation, integrity, and accountability.