Stockwell Carpet Cleaners Privacy Policy
This Privacy Policy explains how Stockwell Carpet Cleaners collects, uses, stores, and protects your personal data when you use our carpet and upholstery cleaning services. It applies to all Stockwell Carpet Cleaners customers in our service area and to anyone who contacts us to inquire about or book our services.
We are committed to complying with the UK General Data Protection Regulation and the Data Protection Act, and to handling your personal data lawfully, fairly, and transparently.
Who we are
Stockwell Carpet Cleaners is a carpet and upholstery cleaning service provider. In the context of applicable data protection laws, we act as the data controller for the personal data we collect about our customers and prospective customers. This means we determine the purposes and means of processing your personal data.
Personal data we collect
We may collect and process the following categories of personal data about you when you contact us, request a quote, or use our services.
Identification and contact details: name, postal address, service address, and any other contact details you choose to provide, such as messaging IDs or communication preferences. We do not require you to share more information than is necessary to arrange and carry out our services.
Service and booking information: details of the services you request, date and time of appointments, access instructions for your property, information about the type of property and floor coverings, and notes relevant to providing the service safely and effectively.
Billing and payment data: records of invoices issued, amounts charged, payment status, and basic transaction details. We do not store full payment card details on our own systems. Where card or electronic payment is used, this is normally processed through secure third-party payment providers acting as data processors.
Communication records: information contained in your messages or conversations with us, for example when you contact us to request a quote, make a booking, ask a question, or provide feedback or a complaint.
Technical and usage information: limited technical data that may be generated when you visit our online pages, such as the date and time of your visit, basic device or browser information, and pages you view. We use this information to help maintain the security and performance of our online services and to understand how they are used.
How and why we use your personal data
We process your personal data only where we have a lawful basis to do so, as required by GDPR. The main purposes and lawful bases are set out below.
To provide our services and manage our relationship with you: We use your identification, contact, and booking details to give you quotes, confirm appointments, carry out cleaning services, issue invoices, and manage any follow-up queries. Our lawful basis for this is performance of a contract or taking steps at your request before entering into a contract.
To communicate with you: We respond to your enquiries, send booking confirmations, update you about changes to appointments, and answer any questions about our services. Our lawful basis is performance of a contract and our legitimate interests in running our business and providing customer service.
To manage payments and accounting: We use billing and transaction data to process payments, keep accurate financial records, and comply with legal and tax obligations. Our lawful basis is performance of a contract and compliance with legal obligations.
To improve our services and handle feedback: We may use information about how you use our services and any feedback you provide to improve our operations and resolve issues. Our lawful basis is our legitimate interests in developing and improving our services.
To send relevant service-related information: We may occasionally contact you with information about important updates relating to services you have previously used, such as changes to terms or essential information about your booking. Our lawful basis is our legitimate interests and, where required, your consent.
To comply with legal and regulatory requirements: We may need to process and retain certain data to respond to lawful requests from authorities or to exercise or defend legal claims. Our lawful basis is compliance with legal obligations and our legitimate interests in protecting our legal rights.
Data retention
We keep your personal data only for as long as necessary to fulfil the purposes for which it was collected, including any legal, accounting, or reporting requirements.
Customer and booking records: We generally retain records of services provided, including contact details and booking information, for a period that allows us to respond to queries and demonstrate our service history if needed. This period may vary depending on the type of service and legal requirements but will not be longer than is necessary.
Financial and invoicing data: We keep invoices, payment records, and related financial information for the period required by applicable tax and accounting laws.
Communication records: Messages and correspondence may be retained for a reasonable period to handle follow-up queries, complaints, or service history checks. After these periods expire, data will be securely deleted or anonymised.
Data sharing and processors
We do not sell your personal data. We may share your data with carefully selected third parties where necessary for the operation of our business and the provision of our services.
Service providers and data processors: We may use third-party companies to support our operations, such as payment processors, accounting or bookkeeping services, IT support, and providers of scheduling or customer management tools. These third parties only process your data on our instructions, are bound by confidentiality obligations, and must implement appropriate technical and organisational measures to protect your data.
Professional advisers: We may share necessary information with accountants, legal advisers, or similar professionals where required for legitimate business or legal reasons.
Authorities and legal obligations: We may disclose personal data where we are required to do so by law or where such disclosure is necessary to protect our rights, respond to legal claims, or cooperate with regulatory or law enforcement authorities.
Where we use data processors located outside the United Kingdom or European Economic Area, we will ensure that appropriate safeguards are in place, such as approved standard contractual clauses or an adequacy decision, to protect your personal data in line with GDPR requirements.
Security of your personal data
We take the security of your personal data seriously and implement appropriate technical and organisational measures to protect it against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access. These measures include limiting access to personal data to those who have a business need to know it and ensuring that our staff and processors are aware of and respect data protection obligations.
Your data protection rights
Under GDPR, you have a number of rights in relation to your personal data. These rights apply to all Stockwell Carpet Cleaners customers in our service area, subject to certain legal limitations and conditions.
Right of access: You have the right to request confirmation as to whether we process your personal data and to obtain a copy of that data, along with information about how we use it.
Right to rectification: You have the right to ask us to correct inaccurate or incomplete personal data that we hold about you.
Right to erasure: In certain circumstances, you have the right to request that we delete your personal data, for example where it is no longer needed for the purposes for which it was collected or where you withdraw consent and there is no other lawful basis for processing.
Right to restriction of processing: You may ask us to restrict the processing of your personal data in certain situations, such as where you contest the accuracy of the data or object to our use of it.
Right to data portability: Where our processing is based on your consent or on a contract and is carried out by automated means, you may have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another controller.
Right to object: You have the right to object to processing based on our legitimate interests, including any direct marketing activities, in which case we will stop processing your data unless we can demonstrate compelling legitimate grounds to continue.
Right to withdraw consent: Where we rely on your consent to process your personal data, you have the right to withdraw that consent at any time. This will not affect the lawfulness of processing that took place before withdrawal.
You also have the right to lodge a complaint with a supervisory authority if you are concerned about how we handle your personal data. In the United Kingdom, this is typically the Information Commissioner.
Changes to this Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, or data protection practices. Any updates will be made available to you, and the revised version will apply from the date it is published. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your personal data.