Privacy Policy - Carpetcleaning E5
This Privacy Policy explains how Carpetcleaning E5 collects, uses, stores, and protects personal data when providing services to customers in the E5 area. It applies to all Carpetcleaning E5 customers in area, including individuals who request quotations, make bookings, receive cleaning services, or otherwise interact with our business. We are committed to handling personal data in a fair, lawful, transparent, and secure manner in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
1. Personal Data We Collect
We only collect personal data that is relevant and necessary for delivering our services, managing customer relationships, and meeting our legal obligations. The types of information we may collect include:
- Identity details, such as your name and title.
- Contact details, such as your address, email address, and telephone number.
- Service information, such as property details, carpet type, stain concerns, cleaning preferences, and booking history.
- Payment-related information, such as transaction records and invoicing details.
- Communications, including enquiries, complaints, feedback, and messages exchanged with us.
- Technical data, where applicable, such as basic website usage or device information if you interact with us online.
In most cases, we collect personal data directly from you when you request a quote, make an appointment, confirm a service, or communicate with us. We may also receive information from third parties where this is necessary to provide the service, such as referral partners, property managers, or payment service providers. We do not collect more data than is reasonably required.
2. How We Use Your Data
We use personal data only for specified, explicit, and legitimate purposes. These include:
- Providing carpet cleaning and related services.
- Managing bookings, quotations, scheduling, and customer records.
- Processing payments and maintaining financial records.
- Responding to enquiries, complaints, and service requests.
- Improving our service quality and customer experience.
- Meeting legal, accounting, and regulatory obligations.
- Preventing fraud, misuse, and unauthorised access.
We do not use personal data for unrelated purposes unless the law allows us to do so or we have obtained your consent where required. If we ever wish to use your information for a new purpose that is incompatible with the original reason for collection, we will explain this clearly.
3. Lawful Basis for Processing
Under data protection law, we must have a lawful basis for each use of personal data. Depending on the situation, Carpetcleaning E5 may process your data on one or more of the following bases:
Contract
We process personal data when it is necessary to enter into or perform a contract with you. This includes preparing quotes, confirming bookings, carrying out cleaning services, and handling payment arrangements.
Legal Obligation
We may need to process and retain certain data to comply with tax, accounting, consumer protection, and other legal requirements.
Legitimate Interests
We may process data for our legitimate business interests where those interests are not overridden by your rights and freedoms. This may include responding to customer enquiries, improving operations, maintaining records, and protecting our business from fraud or misuse. We always assess whether our interests are appropriate and proportionate.
Consent
In limited cases, we may rely on your consent, for example where it is required for a specific optional communication or activity. If we rely on consent, you may withdraw it at any time, and this will not affect the lawfulness of processing carried out before withdrawal.
4. Data Retention
We keep personal data only for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting, and reporting requirements. Retention periods vary depending on the type of data and why it was collected.
- Customer service and booking records are generally retained for as long as needed to manage the relationship and handle follow-up matters.
- Financial and invoicing records are retained for the periods required by law.
- Enquiry or correspondence records may be retained for a reasonable period to support customer service and dispute resolution.
- Consent-based information is kept only until you withdraw consent or it is no longer needed.
When data is no longer needed, we will securely delete, anonymise, or archive it where appropriate. We review retention on a regular basis to ensure data is not held longer than necessary.
5. Processors and Data Sharing
We may share personal data with trusted third parties who help us operate our business. These organisations act as data processors or independent controllers depending on the service they provide. Where required, we put appropriate contracts and safeguards in place to protect your data.
Examples of processors and service providers may include:
- Payment processors used to complete transactions.
- Booking, invoicing, or administrative software providers.
- IT and cloud storage providers that help us store or manage records securely.
- Professional advisers such as accountants, auditors, or legal advisers.
- Subcontractors or specialist service partners, where needed to complete a job.
We may also disclose data where required by law, court order, or to protect our rights, property, staff, customers, or the public. We do not sell personal data.
6. Security of Your Information
We take appropriate technical and organisational measures to protect personal data against accidental loss, unauthorised access, alteration, disclosure, or destruction. These measures may include access controls, secure storage, encryption where suitable, staff confidentiality expectations, and careful management of third-party access.
Although we do our best to protect your data, no system is completely secure. If a personal data breach occurs that is likely to result in a risk to your rights and freedoms, we will act in line with applicable law, which may include notifying the relevant supervisory authority and affected individuals where necessary.
7. Your Rights Under GDPR
You have a number of rights in relation to your personal data. These rights may be subject to legal limits and exemptions, but we will always respond carefully and lawfully. Your rights include:
- Right of access: you may request a copy of the personal data we hold about you.
- Right to rectification: you may ask us to correct inaccurate or incomplete information.
- Right to erasure: you may request deletion of your data in certain circumstances.
- Right to restrict processing: you may ask us to limit how we use your data in some situations.
- Right to data portability: you may ask for certain data in a structured, commonly used format.
- Right to object: you may object to processing based on legitimate interests or direct marketing.
- Right to withdraw consent: where processing relies on consent, you may withdraw it at any time.
If you exercise any of these rights, we may need to verify your identity before responding. We will normally respond within the legal timeframe. You also have the right to complain to your local data protection authority if you believe your data has been handled unlawfully or unfairly.
8. Children’s Data
Our services are intended for adults or for individuals acting on behalf of a property. We do not knowingly collect children’s personal data except where it is incidental and necessary for a service arrangement. If we become aware that we have collected such information without a lawful basis, we will take steps to delete it or otherwise handle it appropriately.
9. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, legal obligations, or operational needs. Any updated version will apply from the date it is published. We encourage customers to review this policy periodically so they remain informed about how their information is used.
10. Summary of Our Commitment
Carpetcleaning E5 is committed to protecting personal data and respecting privacy. We collect only the information we need, use it for legitimate business purposes, retain it for no longer than necessary, and share it only with trusted processors or where required by law. We also recognise and support your GDPR rights, and we aim to handle every request in a fair, transparent, and timely manner.
Last updated: this policy should be reviewed and maintained regularly to ensure continuing compliance.