Privacy Policy - New Cross Carpet Cleaners

This Privacy Policy explains how New Cross Carpet Cleaners collects, uses, stores, shares, and protects personal data. It applies to all New Cross Carpet Cleaners customers in the area, including individuals who request quotes, book services, receive services, or otherwise interact with us in connection with carpet cleaning and related services. We are committed to handling personal data in a lawful, fair, and transparent way in accordance with the UK GDPR and the Data Protection Act 2018.

1. Who This Policy Applies To

This policy applies to any person whose personal data we process in connection with our services. This includes residential and commercial customers, property occupants, account holders, authorised representatives, and individuals who communicate with us about a booking, enquiry, complaint, or service issue. By using our services or providing us with personal data, you acknowledge that this policy explains how we handle your information.

2. Information We Collect

We may collect and process the following categories of personal data:

  • Identity data: name, title, and any details needed to identify you or confirm your booking.
  • Contact data: address, email address, telephone number, and other communication details.
  • Service and booking data: service type, booking date, property access information, cleaning preferences, and notes related to your appointment.
  • Payment data: payment method details and transaction records. We do not intentionally store full card details where avoidable, and payment processing may be handled by a third-party provider.
  • Correspondence data: messages, complaints, feedback, and records of communication with you.
  • Technical and usage data: limited information such as device, browser, and session data when you interact with our digital systems, where applicable.
  • Special category data: we do not generally seek to collect special category data. However, it may be incidentally disclosed to us if you provide information that reveals health, access, or vulnerability-related needs connected to service delivery. Where this occurs, we process it only when lawful and necessary.

3. How We Use Your Data

We use personal data for the following purposes:

  • to respond to enquiries and provide quotations;
  • to schedule, confirm, and deliver carpet cleaning and related services;
  • to manage payments, invoices, and account administration;
  • to contact you about bookings, access arrangements, or service updates;
  • to maintain records of work carried out and customer preferences;
  • to handle complaints, disputes, and service-related issues;
  • to improve our services, training, and internal processes;
  • to meet legal, accounting, tax, and regulatory obligations;
  • to protect our business, staff, customers, and property from fraud or misuse.

We only process personal data where it is necessary for these purposes and where our use is compatible with applicable law.

4. Lawful Basis for Processing

Under data protection law, we must have a lawful basis to process personal data. Depending on the circumstances, New Cross Carpet Cleaners relies on one or more of the following bases:

  • Contract: we process data to provide a quote, make a booking, deliver services, take payment, and fulfil our obligations to you.
  • Legitimate interests: we process data to run and improve our business, keep accurate records, communicate with customers, manage service quality, and prevent fraud or misuse. We balance these interests against your rights and freedoms.
  • Legal obligation: we process data to comply with tax, accounting, consumer protection, and other legal requirements.
  • Consent: where required by law, we will ask for your consent before processing your data for a specific purpose. You may withdraw consent at any time, without affecting processing already carried out lawfully.
  • Vital interests: in rare situations, we may process information to protect someone’s life or physical safety.

We do not rely on one lawful basis for all processing. The basis used depends on the context and purpose of the processing activity.

5. Sharing Your Data and Processors

We may share personal data with trusted third parties where necessary to operate our business and provide services. These parties act as processors or independent controllers, depending on the service they provide.

Processors may include:

  • payment service providers;
  • booking, scheduling, and customer management software providers;
  • IT, cloud storage, and data backup providers;
  • accounting, invoicing, and tax software providers;
  • email, messaging, and communication service providers;
  • professional advisers such as lawyers, insurers, or accountants where needed.

We require processors to handle personal data securely, only on our instructions, and only for the specific service they provide. Where a third party acts as an independent controller, they are responsible for their own compliance with data protection law.

We may also share data where necessary to comply with legal obligations, respond to lawful requests, protect our rights, or prevent harm, fraud, or criminal activity.

6. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including any legal, accounting, tax, or reporting requirements. Retention periods depend on the type of data and the reason for processing.

In general:

  • enquiry and quotation records may be kept for a limited period after the enquiry ends;
  • customer service and booking records may be kept for as long as needed to manage the relationship and service history;
  • invoicing, payment, and tax records are retained for the period required by law;
  • complaints, disputes, and legal correspondence may be retained longer where necessary to defend legal claims or meet obligations;
  • data no longer required is securely deleted or anonymised.

When deciding how long to keep data, we consider the amount, nature, sensitivity, potential risk of harm, and applicable legal requirements. We do not keep personal data longer than necessary.

7. Data Security

We take appropriate technical and organisational measures to protect personal data against loss, misuse, unauthorised access, disclosure, alteration, or destruction. These measures may include access controls, secure storage, staff confidentiality obligations, and regular review of our data handling practices. While no system can be guaranteed completely secure, we work to protect your information using proportionate safeguards.

8. Your Rights

Subject to legal limitations, you have the following rights in relation to your personal data:

  • Right of access: you may request a copy of the personal data we hold about you.
  • Right to rectification: you may ask us to correct inaccurate or incomplete data.
  • Right to erasure: you may request deletion of your data where there is no lawful reason for us to keep it.
  • Right to restriction: you may ask us to limit processing in certain circumstances.
  • Right to data portability: you may request certain data in a structured, commonly used format where applicable.
  • Right to object: you may object to processing based on legitimate interests or direct marketing, where relevant.
  • Right to withdraw consent: if processing is based on consent, you can withdraw it at any time.
  • Right not to be subject to automated decision-making: you have rights in relation to decisions made solely by automated means where applicable.

To exercise your rights, you may make a request using the methods we provide for data protection enquiries. We may need to verify your identity before responding. We will respond within the time limits set by law, usually within one month, unless the request is complex or numerous.

9. International Transfers

If personal data is transferred outside the UK, we will ensure appropriate safeguards are in place, such as adequacy regulations, standard contractual clauses, or other lawful transfer mechanisms. We only transfer data where necessary and where adequate protection is available.

10. Children’s Data

Our services are not directed at children, and we do not knowingly collect personal data from children unless it is provided by a parent, guardian, or authorised adult in connection with a service arrangement. If we become aware that we have collected data from a child without appropriate authority, we will take reasonable steps to delete it.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in law, our services, or our data handling practices. Any updated version will apply from the date it is published or otherwise communicated. We encourage customers to review this policy periodically to stay informed about how we protect personal data.

12. Summary of Your Privacy Rights

Key Points

  • We collect only the data needed to provide and manage our services.
  • We process data on lawful bases such as contract, legitimate interests, legal obligation, or consent.
  • We retain data only as long as necessary and then securely delete or anonymise it.
  • We use processors only where needed and require them to protect your data.
  • You have rights to access, correct, delete, restrict, object, and withdraw consent where applicable.

This Privacy Policy is intended to provide clear and transparent information about how New Cross Carpet Cleaners handles personal data. We are committed to respecting your privacy and processing your information responsibly, lawfully, and securely.

New Cross Carpet Cleaners

GDPR-compliant Privacy Policy for New Cross Carpet Cleaners covering data collection, lawful basis, retention, processors, user rights, and service-area applicability.

Get a Quote

Get In Touch With Us.

Please fill out the form below to send us an email and we will get back to you as soon as possible.