Privacy Policy - Church End Carpet Cleaners
This Privacy Policy explains how Church End Carpet Cleaners collects, uses, stores, shares, and protects personal data relating to customers and prospective customers in the Church End area. It applies to all Church End Carpet Cleaners customers in the area, including individuals who request a quote, book a service, make an enquiry, or otherwise engage with us for carpet cleaning, upholstery cleaning, stain removal, and related services.
We are committed to handling personal information in a fair, transparent, and lawful manner in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This policy is intended to help you understand what data we collect, why we collect it, how long we keep it, who may process it on our behalf, and what rights you have in relation to your personal information.
1. Personal Data We Collect
We collect only the personal data necessary to provide our services, manage our business, and meet legal obligations. The information we collect may include the following:
- Identity details: name, title, and any relevant business or property name.
- Contact details: address, email address, and phone number.
- Service details: information about the type of cleaning requested, room or item descriptions, stain concerns, access requirements, and preferred appointment times.
- Billing and payment details: payment status, transaction references, and invoice records. We do not retain full card details where a third-party payment processor is used.
- Communication records: messages, notes from calls, complaints, feedback, and booking correspondence.
- Technical data: limited website or device information if you interact with our online services, such as IP address or browser type, where applicable.
We do not intentionally collect special category data unless you provide it voluntarily and it is strictly necessary for the service, for example if you mention an allergy, medical sensitivity, or access issue. In such cases, we handle this information with extra care and only where a lawful basis exists.
2. How We Use Your Data
We use personal data for the following purposes:
- to respond to enquiries and provide quotations;
- to schedule and carry out cleaning services;
- to process payments and issue invoices;
- to maintain service records and handle customer support;
- to manage complaints, disputes, and insurance matters;
- to comply with legal, accounting, and regulatory obligations;
- to improve our services, internal procedures, and customer experience;
- to prevent fraud, misuse, or unlawful activity.
We only use your data where we have a valid reason under data protection law and where the use is proportionate to the purpose.
3. Lawful Basis for Processing
Under the UK GDPR, we must have a lawful basis to process personal data. We rely on the following bases depending on the situation:
Contract
We process data where it is necessary to enter into or perform a contract with you. This includes arranging appointments, providing cleaning services, processing payments, and managing service-related communications.
Legal Obligation
We may process and retain certain data to comply with tax laws, accounting requirements, record-keeping duties, and other legal obligations.
Legitimate Interests
We may process data for our legitimate business interests, such as managing customer records, improving our services, defending legal claims, or preventing fraud, provided that these interests are not overridden by your rights and freedoms.
Consent
Where required, we rely on your consent. For example, if you voluntarily provide certain optional information or agree to receive specific marketing communications, we will process that data on the basis of consent. You may withdraw consent at any time.
4. Sharing Your Data and Processors
We may share personal data with trusted third parties who act as processors on our behalf. These parties are only permitted to use your data according to our instructions and are required to protect it appropriately.
Examples of processors may include:
- IT and cloud service providers that store booking records, emails, or business files;
- payment service providers that process transactions securely;
- accounting or bookkeeping providers that assist with invoicing and financial records;
- customer management or scheduling software providers used to organise appointments;
- professional advisers such as accountants, insurers, or legal advisers, where necessary;
- regulatory, tax, or law enforcement bodies where disclosure is required by law.
We do not sell personal data. We will not share your information with unrelated third parties for their own marketing purposes unless you have given clear permission or we are otherwise lawfully allowed to do so.
5. International Transfers
If any of our processors store or access data outside the United Kingdom, we will ensure that appropriate safeguards are in place. These may include adequacy regulations, standard contractual clauses, or other lawful transfer mechanisms designed to protect your data to UK GDPR standards.
6. Data Retention
We keep personal data only for as long as necessary for the purpose it was collected and to satisfy legal or business requirements. Retention periods may vary depending on the type of information and the nature of the service.
- Customer and service records: typically retained for up to 6 years after the end of the service relationship for accounting, warranty, and legal purposes.
- Invoices and financial records: retained in line with tax and accounting obligations.
- Enquiry records: usually kept for a shorter period if no service is booked, unless further retention is needed for legitimate reasons.
- Consent-based marketing records: kept until you withdraw consent or we no longer have a lawful reason to keep them.
When personal data is no longer required, we will securely delete it, anonymise it, or otherwise dispose of it in a safe manner.
7. Data Security
We take appropriate technical and organisational measures to protect personal data against loss, misuse, unauthorised access, alteration, or disclosure. These measures may include access controls, secure storage, staff awareness, and limiting data access to those who need it for legitimate business purposes.
Although we work hard to protect your information, no system can be guaranteed to be completely secure. If a personal data incident occurs, we will take prompt action in accordance with applicable law.
8. Your Rights Under Data Protection Law
You have important rights concerning your personal data. Depending on the circumstances, these may include:
- Right of access: to request a copy of the personal data we hold about you.
- Right to rectification: to ask us to correct inaccurate or incomplete data.
- Right to erasure: to request deletion of your data in certain situations.
- Right to restrict processing: to ask us to limit how we use your data in some cases.
- Right to data portability: to receive certain data in a structured, commonly used format.
- Right to object: to object to processing based on legitimate interests or direct marketing.
- Right to withdraw consent: where processing is based on consent, you may withdraw it at any time.
We may need to verify your identity before responding to a request. Some rights may not apply in every situation, as data protection law includes specific exemptions and conditions.
9. Marketing Communications
If we send you any optional marketing communications, these will only be sent where permitted by law. You can opt out at any time. We will respect your choice and update our records accordingly. We will never pressure you to receive marketing messages, and service-related communications will still be sent where necessary to complete or manage your booking.
10. Third-Party Websites and Services
Where you interact with third-party services connected to our business, those services operate under their own privacy terms. We encourage you to review their policies before providing personal information. We are not responsible for the privacy practices of third parties acting independently of us.
11. Children’s Data
Our services are not directed at children. We do not knowingly collect personal data from children except where it is unavoidably provided by an adult customer in connection with a service request. If we become aware that we have collected such data without a lawful basis, we will take appropriate steps to delete it.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, legal obligations, or operational needs. The latest version will apply from the date it is issued. We encourage customers in the Church End area to review this policy periodically to stay informed about how personal data is handled.
13. Summary of Key Points
Church End Carpet Cleaners collects only the information needed to provide cleaning services, manage customer relationships, and comply with law. We rely on lawful bases such as contract, legal obligation, legitimate interests, and consent where appropriate. We may use trusted processors for payment, IT, accounting, and scheduling services. We keep data only as long as necessary and respect your rights to access, correct, delete, restrict, object to, and transfer your information.
This policy is designed to be clear, fair, and compliant while supporting our business and protecting your privacy. By using our services, you acknowledge that your personal information may be processed in line with this Privacy Policy and applicable data protection law.