Privacy Policy - Carpetcleaning NW11
This Privacy Policy explains how Carpetcleaning NW11 collects, uses, stores, shares, and protects personal data belonging to our customers and website users. It applies to all Carpetcleaning NW11 customers in the area, including anyone who requests, books, receives, or enquires about our carpet cleaning services. We are committed to handling personal data in a lawful, fair, and transparent manner in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
1. Who We Are
Carpetcleaning NW11 provides professional carpet cleaning services to residential and commercial customers. In the context of this Privacy Policy, we act as the data controller for the personal information we collect and process. This means we decide how and why your personal data is used when you interact with us for service enquiries, bookings, invoices, service delivery, and customer support.
2. Personal Data We Collect
We collect only the information that is necessary for providing our services, managing our business, and meeting legal obligations. The types of data we may collect include:
- Identity details such as your name
- Contact details such as your address, email address, and telephone number
- Service information such as property access details, cleaning requirements, preferred appointment times, and notes about the condition of carpets or soft furnishings
- Payment and billing details such as invoice records and payment confirmation
- Communication records such as messages, enquiries, complaints, and feedback
- Technical data such as basic website or device information if you submit an online enquiry
- Photographs or notes taken before, during, or after a service where necessary for service quality, damage records, or customer requests
We do not seek to collect special category data unless it is strictly necessary and you choose to provide it, or it is required for a specific legal or service-related reason. If such data is ever processed, we will apply additional safeguards as required by law.
3. How We Use Your Data
We use personal data for the following purposes:
- To respond to enquiries and provide quotations
- To schedule and deliver carpet cleaning services
- To manage customer accounts, bookings, and service records
- To process payments, invoices, and refunds where applicable
- To communicate about appointments, updates, or service issues
- To handle complaints and customer care requests
- To maintain internal records and business administration
- To comply with tax, accounting, and legal obligations
- To improve our services, training, and operational standards
We will only use your personal data for the purposes stated in this policy or for purposes that are compatible with those original reasons.
4. Lawful Basis for Processing
Under UK GDPR, we must have a lawful basis for each type of processing. Carpetcleaning NW11 relies on the following lawful bases:
Contract
We process your data when it is necessary to enter into or perform a contract with you. This includes taking bookings, completing cleaning services, issuing invoices, and managing service-related communications.
Legitimate Interests
We may process data where it is necessary for our legitimate business interests, provided those interests are not overridden by your rights and freedoms. This may include improving our services, keeping service records, preventing fraud, handling disputes, and maintaining business security.
Legal Obligation
We may process and retain certain information because the law requires it, such as for accounting, tax, or record-keeping purposes.
Consent
In limited situations, we may rely on your consent, for example where you voluntarily agree to receive certain optional communications or provide information that is not necessary for service delivery. Where consent is used, you may withdraw it at any time.
5. Data Sharing and Processors
We do not sell your personal data. However, we may share it with trusted third parties that help us operate our business. These parties act as processors or independent controllers, depending on the service they provide.
Examples of processors may include:
- Payment service providers that process card or online payments
- Accountants and bookkeeping providers who assist with financial administration
- IT and cloud storage providers that support data storage, email, and business systems
- Scheduling or customer management software providers used to organise appointments and records
- Professional advisers where needed for legal, financial, or compliance support
We require processors to handle data securely, only on our instructions, and in line with data protection law. Where a third party acts as an independent controller, it will be responsible for its own privacy practices, and we will only share the data necessary for the relevant purpose.
6. International Transfers
Where any processor or service provider stores or accesses data outside the UK, we will take appropriate safeguards to protect your personal data. These safeguards may include adequacy regulations, standard contractual clauses, or other lawful transfer mechanisms permitted under data protection law.
7. Data Retention
We keep personal data only for as long as necessary to fulfil the purposes for which it was collected, including satisfying legal, accounting, and reporting requirements. Retention periods may vary depending on the nature of the data and our legal obligations.
In general, we may retain:
- Customer and booking records for the period needed to manage services and address queries
- Invoice, payment, and accounting records for the period required by tax and financial laws
- Communication records for a reasonable time to support customer service and dispute resolution
- Service notes and photographs only as long as needed for quality control, complaint handling, or evidence of work completed
When data is no longer required, we will delete it securely or anonymise it so that it can no longer identify you.
8. Data Security
We use appropriate technical and organisational measures to protect personal data against unauthorised access, accidental loss, misuse, alteration, or disclosure. These measures may include access controls, secure storage, limited staff access, and careful selection of processors. While no system can be guaranteed completely secure, we work continuously to reduce risk and protect your information.
9. Your Rights
Under data protection law, you have important rights regarding your personal data. Subject to certain exceptions, these rights include:
- Right of access - you can request a copy of the personal data we hold about you
- Right to rectification - you can ask us to correct inaccurate or incomplete data
- Right to erasure - you can ask us to delete your data in certain circumstances
- Right to restriction - you can ask us to limit how we process your data in certain cases
- Right to object - you can object to processing based on legitimate interests
- Right to data portability - you can request certain data in a structured, commonly used format
- Right to withdraw consent - where processing is based on consent, you may withdraw it at any time
You also have the right to raise concerns with the Information Commissioner’s Office (ICO) if you believe your rights have been infringed. We encourage you to contact us first so we can try to resolve any issue promptly and fairly.
10. Children’s Data
Our services are not directed at children, and we do not knowingly collect personal data from children unless it is provided by a parent, guardian, or authorised adult in connection with a service booking or property access arrangement. If we become aware that data has been collected improperly, we will take appropriate steps to delete it.
11. Automated Decision-Making
We do not use personal data for automated decision-making or profiling that produces legal or similarly significant effects. Any decisions relating to service provision are made by people, not solely by automated systems.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in law, services, or our internal practices. Any updated version will apply from the date it is published. We recommend reviewing this policy periodically so you remain informed about how we handle your personal data.
13. Summary of Key Principles
At Carpetcleaning NW11, we aim to keep your information lawful, relevant, limited, accurate, secure, and retained only as long as necessary. We only process personal data where we have a valid reason to do so, and we expect our processors to apply the same high standards. Our approach is designed to respect your privacy while allowing us to deliver reliable carpet cleaning services to all customers in the area.
By using our services, making an enquiry, or otherwise providing your personal data to Carpetcleaning NW11, you acknowledge that your information will be handled in accordance with this Privacy Policy.