Privacy Policy - Enfield Wash Carpet Cleaners
This Privacy Policy explains how Enfield Wash Carpet Cleaners collects, uses, stores, shares, and protects personal data when providing carpet cleaning and related services. It applies to all Enfield Wash Carpet Cleaners customers in the area, including individuals, households, landlords, tenants, and business clients who request our services. We are committed to handling personal data lawfully, fairly, and transparently in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
By using our services, making an enquiry, or otherwise providing us with your information, you acknowledge that we may process personal data as described in this policy. We only collect information that is necessary for our legitimate business operations, for the performance of our services, and to meet legal and regulatory obligations.
1. Information We Collect
We may collect and process personal data directly from you, from your interactions with us, and in some cases from third parties where lawful and appropriate. The types of data we may collect include:
- Identity information such as your name or the name of your business.
- Contact details such as address, phone number, and email address.
- Service details such as the type of cleaning requested, property access information, preferred appointment times, and instructions relevant to the job.
- Billing and payment data such as invoice details, payment status, and transaction records.
- Communication records including messages, enquiries, complaints, feedback, and service updates.
- Technical data if you interact with us through electronic systems, such as device or browser information, where needed for security or record-keeping.
We do not intentionally collect special category data unless it is necessary and you choose to provide it. Special category data includes information such as health details, racial or ethnic origin, religious beliefs, or political opinions. If such information is incidentally disclosed to us, we will handle it with heightened care and only where a lawful basis exists.
2. How We Use Your Data
We use personal data for the following purposes:
- To provide carpet cleaning and related services.
- To manage bookings, appointments, access arrangements, and service delivery.
- To issue quotes, invoices, and receipts.
- To respond to enquiries, complaints, and requests for information.
- To maintain records of services provided and customer preferences.
- To improve our services, customer care, planning, and operational efficiency.
- To comply with legal obligations such as tax, accounting, and record-keeping requirements.
- To protect our business, staff, customers, and property against fraud, misuse, or security incidents.
We process personal data only to the extent necessary for the relevant purpose. Where possible, we use data in aggregated or anonymised form so that it no longer identifies you personally.
3. Lawful Basis for Processing
Under data protection law, we must have a lawful basis for processing your personal data. Depending on the circumstances, we rely on one or more of the following lawful bases:
Performance of a Contract
We process your personal data when it is necessary to provide requested services, manage bookings, or take steps before entering into a contract. For example, we need your name, address, and service instructions to deliver carpet cleaning services at your property.
Legitimate Interests
We may process data where it is necessary for our legitimate business interests, provided those interests are not overridden by your rights and freedoms. This may include maintaining service records, handling customer communications, preventing fraud, improving service quality, and managing business operations.
Legal Obligation
We process personal data when necessary to comply with legal obligations, including accounting, taxation, insurance, and regulatory record-keeping requirements.
Consent
In limited situations, we may rely on your consent, particularly where the law requires it. If we ask for consent, you may withdraw it at any time. Withdrawal of consent will not affect the lawfulness of processing carried out before the withdrawal.
4. Data Sharing and Processors
We may share personal data with trusted third parties who help us run our business. These parties act as processors or independent controllers depending on the service they provide. We only share information when necessary and we require appropriate safeguards to protect your data.
Examples of processors may include:
- IT and cloud service providers used for storage, email, scheduling, and secure record management.
- Payment service providers who handle transactions and payment processing.
- Accounting or bookkeeping providers who assist with financial record-keeping and compliance.
- Administrative support providers who help manage bookings, communications, or customer records.
- Professional advisers such as insurers, legal advisers, or auditors where required.
We may also disclose data where required by law, court order, or a lawful request from a public authority. We do not sell your personal data.
Where a processor is used, they are only permitted to process your personal data on our instructions and must apply appropriate technical and organisational measures to keep it secure. We select processors carefully and seek to ensure that any transfer of personal data is lawful and properly protected.
5. Data Retention
We keep personal data only for as long as necessary for the purpose for which it was collected, including any legal, accounting, or reporting requirements. The exact retention period will depend on the type of record and the reason for processing.
In general:
- Customer service records are retained for the period needed to manage services, resolve issues, and maintain a business history.
- Financial and transaction records are retained for the period required by tax and accounting law.
- Communication records are retained for as long as necessary to respond to enquiries or evidence prior dealings.
- Security or incident records are retained for a reasonable period to investigate and manage any risk, complaint, or dispute.
When personal data is no longer required, we will delete it, anonymise it, or securely archive it where appropriate. We regularly review the data we hold to ensure it is not kept longer than necessary.
6. Data Security
We take the security of personal data seriously and use reasonable technical and organisational measures to protect it from unauthorised access, accidental loss, destruction, or disclosure. These measures may include restricted access, secure storage, password protection, and staff awareness of data protection responsibilities.
Although we take appropriate precautions, no method of transmission or storage is completely secure. If a data breach occurs that is likely to result in a risk to your rights and freedoms, we will act in accordance with our legal obligations, including notifying the relevant authority and affected individuals where required.
7. Your Rights
You have important rights under data protection law. Subject to legal conditions and exemptions, these rights may include:
- The right of access to obtain a copy of the personal data we hold about you.
- The right to rectification to have inaccurate or incomplete data corrected.
- The right to erasure in certain circumstances, also known as the right to be forgotten.
- The right to restrict processing where you want us to limit the way we use your data.
- The right to object to processing based on legitimate interests or direct marketing, where applicable.
- The right to data portability for certain data processed by automated means and based on consent or contract.
- The right to withdraw consent where processing is based on consent.
If you wish to exercise any of these rights, we will respond in accordance with applicable law. We may need to verify your identity before taking action, especially if the request concerns sensitive records or legal obligations.
8. International Transfers
If any personal data is transferred outside the United Kingdom, we will only do so where appropriate safeguards are in place and the transfer is lawful. This may include the use of approved contractual clauses or transfers to jurisdictions with adequate data protection standards.
9. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in law, our services, or how we process personal data. Any updated version will apply from the date it is published or otherwise communicated. We encourage you to review this policy periodically so that you remain informed about how your information is handled.
10. Our Commitment to You
At Enfield Wash Carpet Cleaners, we value privacy and aim to treat personal data with respect, care, and transparency. We only process information that is needed to provide reliable services, meet our legal obligations, and maintain good customer relationships. Our approach is guided by the principles of lawfulness, fairness, transparency, data minimisation, accuracy, storage limitation, integrity, and confidentiality.
If you are a customer in the area served by Enfield Wash Carpet Cleaners, this Privacy Policy applies to you and any personal data you provide to us in connection with our services. By keeping our practices clear and responsible, we aim to protect your rights while delivering the services you request.