Privacy Policy - Carpet Cleaners N1
This Privacy Policy explains how Carpet Cleaners N1 collects, uses, stores, shares, and protects personal data when providing carpet cleaning and related services. It applies to all Carpet Cleaners N1 customers in the area, including individuals who request a quote, make an enquiry, book a service, or receive cleaning services at a residential or commercial address.
1. Who We Are
Carpet Cleaners N1 is a service provider operating in the local area and handling customer information for the purpose of delivering carpet cleaning services. We act as a data controller for the personal data we collect from customers, prospects, and website or service users, where applicable. This means we decide why and how personal data is processed, in line with the UK GDPR and the Data Protection Act 2018.
2. Personal Data We Collect
We only collect personal data that is necessary for operating our business, responding to enquiries, and delivering our services effectively. The types of data we may collect include:
- Identity details: name, title, and any business or household identifier provided by you.
- Contact details: address, email address, telephone number, and preferred contact method.
- Service details: property location, carpet or upholstery cleaning requirements, appointment preferences, and service history.
- Billing and payment information: invoice details, transaction status, and limited payment records. We do not store full card details where payment is handled by a secure payment provider.
- Communication data: messages, call notes, complaints, feedback, and records of any correspondence with us.
- Technical data: IP address, browser type, and basic device information if collected through digital systems used to manage enquiries or bookings.
- Special instructions: access notes, parking instructions, or service preferences necessary to perform the job safely and effectively.
We do not intentionally collect special category data unless you choose to provide it and it is strictly necessary for a service request or complaint handling. Where such data is received, we handle it carefully and only where a lawful basis applies.
3. How We Use Personal Data
We use personal data for the following purposes:
- To respond to enquiries and provide quotations.
- To manage bookings, schedule appointments, and deliver cleaning services.
- To issue invoices, process payments, and maintain financial records.
- To communicate about service updates, access arrangements, or changes to appointments.
- To handle customer service requests, feedback, and complaints.
- To improve service quality, operational efficiency, and customer experience.
- To meet legal, accounting, tax, and regulatory obligations.
- To prevent fraud, misuse, or unauthorised access to our systems or services.
We will only use your data for the purposes for which it was collected, unless we reasonably determine that we need to use it for a compatible purpose allowed by law.
4. Lawful Basis for Processing
Under data protection law, we must have a lawful basis to process personal data. Carpet Cleaners N1 relies on the following legal bases:
- Contract: processing is necessary to provide a quote, confirm a booking, deliver cleaning services, and manage related customer service.
- Legal obligation: processing is required to comply with accounting, tax, record-keeping, and other legal responsibilities.
- Legitimate interests: processing is necessary for our legitimate business interests, such as improving our services, managing enquiries, maintaining security, and handling basic business administration, provided these interests do not override your rights and freedoms.
- Consent: where required, for example if we wish to use your data for certain optional communications or where the law specifically requires consent.
Where we rely on legitimate interests, we assess whether processing is necessary and whether your privacy rights are affected. If consent is used, you may withdraw it at any time, and this will not affect processing that occurred before withdrawal.
5. Data Sharing and Processors
We may share personal data with trusted third parties where necessary to run our business and provide services. These third parties act as processors or, in some cases, independent controllers. They are only given the data needed for their role and are required to protect it appropriately.
Examples of processors may include:
- Booking and scheduling providers: systems used to manage appointments, reminders, and customer records.
- Payment service providers: organisations that process transactions securely on our behalf.
- Accounting and invoicing providers: software or professionals that help manage financial records and tax compliance.
- IT and cloud storage providers: services used to host, back up, secure, or maintain our data systems.
- Communication providers: email, telephone, or messaging platforms used to contact customers.
We may also disclose data if required by law, to comply with a legal request, to protect our rights, or to prevent fraud or security incidents. We do not sell your personal data.
6. International Transfers
Where a processor stores or accesses data outside the United Kingdom, we ensure appropriate safeguards are in place. These safeguards may include adequacy regulations, standard contractual clauses, or equivalent protections recognised under data protection law.
7. Data Retention
We keep personal data only for as long as necessary for the purposes for which it was collected, including to meet legal, accounting, and operational requirements. Retention periods depend on the type of record and the reason it is held.
- Customer and service records: retained for the duration of the business relationship and for a reasonable period afterwards for administration, dispute handling, and service history.
- Invoices and tax records: retained for the period required by law, typically in line with accounting and tax rules.
- Complaints or legal claims: retained for as long as needed to resolve the issue and defend or pursue legal rights.
- Enquiry data: retained for a limited period if no service is booked, unless further retention is necessary for legitimate business reasons or legal compliance.
When data is no longer needed, we will securely delete, anonymise, or archive it in accordance with our retention procedures.
8. Security of Personal Data
We use appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration, or disclosure. These measures may include restricted access, secure storage, password controls, and staff confidentiality obligations. Although we take reasonable steps to safeguard information, no system can be guaranteed to be completely secure.
9. Your Rights
Under data protection law, you have several rights in relation to your personal data. These rights may be subject to legal conditions and exemptions.
- Right of access: request a copy of the personal data we hold about you.
- Right to rectification: ask us to correct inaccurate or incomplete information.
- Right to erasure: request deletion of your data where there is no valid reason for us to keep it.
- Right to restriction: ask us to limit how we use your data in certain circumstances.
- Right to object: object to processing based on legitimate interests or direct marketing, where applicable.
- Right to data portability: request transfer of certain data to you or another provider, where legally available.
- Right to withdraw consent: where consent is the basis for processing, you may withdraw it at any time.
You also have the right to raise a concern with the relevant data protection authority if you believe your rights have been infringed. We encourage you to raise concerns with us first so we can try to resolve the issue promptly and fairly.
10. Children’s Data
Our services are not directed at children, and we do not knowingly collect personal data from children except where it is incidentally provided by an adult customer as part of a service arrangement. If we become aware that we have collected children’s data without a lawful basis, we will take appropriate steps to delete it.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in law, business practices, or the way we handle personal data. Any updates will take effect when published or otherwise communicated. We encourage customers to review this policy periodically so they remain informed about how their information is handled.
12. Summary of Core Principles
We are committed to processing personal data lawfully, fairly, and transparently. In practice, this means we only collect what we need, use it for clear purposes, keep it secure, limit access to trusted processors, and retain it only as long as necessary. We aim to respect your privacy while delivering reliable carpet cleaning services across the local area.
Effective for all Carpet Cleaners N1 customers in the area. This policy is designed to support GDPR compliance and to explain your rights in a clear and practical way.