Barnet Carpet Cleaners Privacy Policy

This Privacy Policy explains how Barnet Carpet Cleaners collects, uses, stores and protects personal data relating to customers and prospective customers within our service area. We are committed to complying with the UK General Data Protection Regulation and the Data Protection Act 2018, and to handling your personal information in a lawful, fair and transparent way.

By using our services or contacting us about our services, you acknowledge that you have read and understood this Privacy Policy and how it applies to your personal data.

Scope of this Privacy Policy

This Privacy Policy applies to all customers and prospective customers of Barnet Carpet Cleaners within our operating area, including individuals who make enquiries, request quotations, book services or otherwise interact with us in relation to domestic or commercial carpet and upholstery cleaning services.

This Policy covers personal data collected through any communication channel, including telephone, text-based messaging services, online forms, and in-person interactions.

Data Controller

The data controller is Barnet Carpet Cleaners. This means that we determine the purposes and means of processing your personal data. Where we use third party service providers to process data on our behalf, they act as data processors and are bound by contractual obligations to protect your information and use it only according to our instructions.

Personal Data We Collect

We may collect and process the following categories of personal data when you interact with us or use our services:

Identification data such as your name and, where relevant, the name of your business.

Contact data such as your billing and service address, and other contact information you provide to us.

Service and booking data such as details of the services you request or purchase, property access instructions that you choose to provide, preferred dates and times, and job notes related to the cleaning service.

Payment-related data such as payment status, amounts, and method of payment. We do not store full payment card numbers or security codes when third party payment processors are used.

Communication data such as the content of enquiries, feedback, complaints and any other communications you send to us, including call notes where applicable.

Technical and usage data such as information about how you found us and how you use our services, where this is provided to us by our service providers in an anonymised or aggregated form. We do not seek to identify you from this data unless it is strictly necessary for fraud prevention, security or legal purposes.

How We Collect Your Data

We collect personal data directly from you when you contact us by telephone, text-based messaging services, online contact forms, or in person, and when you provide details for a quotation or booking.

We may also receive certain information from third party service providers who assist us with payment processing, booking management, marketing or analytics, but only where this is necessary to provide or improve our services and in accordance with data protection laws.

Lawful Bases for Processing

We process your personal data only where we have a lawful basis to do so under the UK GDPR. Depending on the context, we may rely on the following lawful bases:

Performance of a contract: To take steps at your request before entering into a contract, and to perform our contract with you. This includes providing quotations, managing bookings, delivering cleaning services, communicating about your service, handling payments and dealing with post-service issues.

Legitimate interests: To pursue our legitimate business interests, provided that your interests and fundamental rights do not override those interests. This includes managing and improving our services, keeping appropriate business records, obtaining feedback, and sending limited service-related updates to existing customers.

Legal obligation: To comply with legal and regulatory obligations, such as accounting, tax and record-keeping requirements.

Consent: In limited circumstances, where the law requires us to obtain your consent, for example for certain types of marketing communications. Where we rely on consent, you may withdraw it at any time.

How We Use Your Personal Data

We use the personal data we collect for the following purposes:

To provide quotations, arrange site visits and confirm bookings.

To deliver carpet, rug, upholstery and related cleaning services at your property or premises.

To communicate with you about your enquiries, bookings, changes to appointments, access instructions and aftercare information.

To manage our relationship with you, including handling feedback, complaints and service queries.

To process payments, issue invoices and receipts, and maintain financial records.

To improve our services, including monitoring performance, training staff and reviewing customer feedback.

To ensure security, prevent fraud and protect our business and customers.

To comply with legal and regulatory obligations and respond to lawful requests from authorities.

Data Retention

We retain your personal data only for as long as is necessary for the purposes for which it was collected, and to meet any legal, accounting or reporting requirements.

In general, we keep customer and booking records for as long as you remain a customer and for a reasonable period afterwards, typically up to seven years from the date of your last transaction, in line with tax and accounting rules. Communication records and operational notes may be retained for a shorter or longer period depending on the nature of the information and any legal obligations.

When personal data is no longer required, we will securely delete it or anonymise it so that it can no longer be associated with you.

Data Processors and Third Parties

We may share your personal data with carefully selected third party service providers who act as data processors on our behalf. These may include:

IT and cloud service providers who host our systems, databases or communication tools.

Payment processing companies that handle card or electronic payments.

Booking, scheduling or customer management platforms used to organise our work and communicate with you.

Professional advisers such as accountants or legal advisers where necessary.

These processors are only permitted to use your personal data according to our instructions and are required to maintain appropriate security measures. We do not sell your personal data to third parties.

We may also disclose personal data where required by law, in connection with legal proceedings, or to protect our rights, property or safety, or that of our customers or others.

International Transfers

Some of our service providers may store or process data outside the United Kingdom or the European Economic Area. Where this occurs, we will ensure that appropriate safeguards are in place to protect your personal data, such as using service providers in countries with adequate data protection laws or implementing standard contractual clauses approved by relevant authorities.

How We Protect Your Data

We take appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure or destruction. These measures include access controls, secure storage, staff training and regular review of our data protection practices.

While no system can be guaranteed to be completely secure, we work to ensure that your data is protected in line with industry standards and legal requirements.

Your Data Protection Rights

Under the UK GDPR, you have certain rights in relation to your personal data, subject to legal limitations and exemptions. These rights include:

Right of access: You can request confirmation that we process your personal data and obtain a copy of that data.

Right to rectification: You can ask us to correct inaccurate or incomplete personal data we hold about you.

Right to erasure: In certain circumstances, you can request that we delete your personal data.

Right to restriction: You can ask us to restrict the processing of your personal data in specific situations.

Right to data portability: Where processing is based on consent or contract and carried out by automated means, you may request that we provide your personal data in a structured, commonly used and machine-readable format or transmit it to another controller where technically feasible.

Right to object: You can object to processing based on our legitimate interests, including profiling, and to direct marketing at any time.

Right to withdraw consent: Where we rely on your consent, you may withdraw it at any time, without affecting the lawfulness of processing before withdrawal.

If you wish to exercise any of your rights, please contact us using the details provided in our usual customer communications or on our website. We may need to verify your identity before responding to your request.

Complaints

If you have concerns about how we handle your personal data, we encourage you to contact us first so that we can try to resolve the issue directly. You also have the right to lodge a complaint with the UK supervisory authority for data protection.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements or data protection practices. The updated version will be made available through our usual communication channels and will take effect from the date of publication. We encourage you to review this Policy periodically to stay informed about how we protect your personal data.