Deep Cleaning Camberwell Privacy Policy

This Privacy Policy explains how Deep Cleaning Camberwell collects, uses, stores and protects personal data relating to our customers and potential customers in the Camberwell area. We are committed to complying with the UK General Data Protection Regulation UK GDPR, the Data Protection Act 2018 and all applicable data protection laws.

This Privacy Policy applies to all Deep Cleaning Camberwell customers, previous customers and individuals who make enquiries about our services within the Camberwell area.

Data Controller

Deep Cleaning Camberwell is the data controller for the personal data described in this Privacy Policy. As data controller, we determine the purposes and means of processing your personal data and are responsible for ensuring that such processing is carried out in accordance with applicable law.

Personal Data We Collect

We collect and process different types of personal data depending on how you interact with us. The personal data we may collect includes:

Identification and contact details such as full name, residential address, service address, and any alternative contact address you provide. We may also collect your preferred contact method.

Booking and service information such as dates and times of cleaning appointments, details about the property or premises, specific cleaning requirements, instructions you provide, and records of services we have completed for you.

Payment and billing information such as billing address and details required to process your payment, which may include partial payment card details or transaction references processed via secure payment providers. We do not intentionally store full payment card details on our own systems.

Communication records such as notes or records of communications by phone, messages, or forms you complete, including any feedback, complaints or queries you submit.

Technical information such as basic device or browser details and interaction data generated when you access our online content, where this is necessary for security, performance or service delivery.

How We Collect Your Personal Data

We collect personal data directly from you when you contact us to make an enquiry, request a quote, book a service, or communicate with us by any channel.

We may also receive personal data from third parties where it is lawful to do so, for example from referral partners who have your permission to share your details with us, or from payment service providers when transactions are processed.

Purposes and Lawful Bases for Processing

We process your personal data only where we have a lawful basis under the UK GDPR. The main purposes and corresponding lawful bases are:

To provide deep cleaning services and manage bookings including confirming appointments, accessing your property as agreed, and carrying out the services you have requested. The lawful basis is performance of a contract or taking steps at your request before entering into a contract.

To manage payments, invoices and accounting including issuing invoices or receipts, handling payments, and maintaining accurate financial records. The lawful basis is performance of a contract and compliance with legal obligations related to accounting and taxation.

To communicate with you regarding your enquiries, bookings, service updates, changes to our terms or this Privacy Policy, and to respond to questions or complaints. The lawful basis is performance of a contract and our legitimate interests in providing responsive customer service.

To improve our services and operate our business including reviewing feedback, monitoring service quality, training our staff and developing new services. The lawful basis is our legitimate interests in running and improving our business.

To send marketing communications about our services where you have given consent or where we can rely on our legitimate interests and you have not objected. You can opt out of marketing at any time.

To comply with legal and regulatory obligations and to establish, exercise or defend legal claims, for example in the event of a dispute or to respond to lawful requests from authorities. The lawful basis is compliance with legal obligations and our legitimate interests in protecting our rights.

Data Retention

We keep your personal data only for as long as it is necessary for the purposes for which it was collected, and to meet any legal, accounting or reporting requirements.

In general, we retain customer and booking records for a period that allows us to respond to queries, manage repeat bookings and demonstrate our service history. Financial and transaction records may be retained for longer periods as required by tax and accounting laws.

When we no longer need your personal data, we will securely delete or anonymise it so that it can no longer be associated with you.

Data Sharing and Processors

We do not sell your personal data. We may share your personal data with trusted third parties where necessary for the purposes described in this Privacy Policy, including:

Service providers acting as data processors who provide services such as payment processing, customer management systems, secure data storage, or IT support. These providers act on our instructions, are bound by confidentiality obligations, and are required to implement appropriate technical and organisational measures to protect your data.

Professional advisers such as accountants, auditors or legal advisers where necessary for legitimate business purposes or to comply with legal obligations.

Public authorities, regulators or law enforcement agencies where we are required to do so by law, or where disclosure is necessary to protect our rights or the rights of others.

Where any of our processors are located outside the UK or European Economic Area, we will ensure that appropriate safeguards are in place to protect your personal data in accordance with data protection law.

Security of Your Personal Data

We take appropriate technical and organisational measures to protect personal data against unauthorised or unlawful processing, accidental loss, destruction or damage. Measures may include access controls, secure storage, staff training and regular review of our procedures.

While we take reasonable steps to protect your data, no system can be guaranteed to be completely secure. You also play an important role by keeping your own information accurate and letting us know if you suspect any misuse of your data.

Your Data Protection Rights

Under the UK GDPR and applicable data protection laws, you have a number of rights in relation to your personal data, subject to certain conditions and exemptions. These rights include:

The right of access to obtain confirmation as to whether we process your personal data and to receive a copy of the personal data we hold about you.

The right to rectification to have inaccurate or incomplete personal data corrected or completed.

The right to erasure in certain circumstances, for example where the data is no longer needed for the purpose for which it was collected or where you withdraw consent and there is no other lawful basis for processing.

The right to restrict processing in certain circumstances, which may mean we store your data but do not otherwise use it.

The right to data portability in certain circumstances, allowing you to receive personal data you have provided to us in a structured, commonly used and machine-readable format and to transmit that data to another controller where technically feasible.

The right to object to processing that is based on our legitimate interests or for direct marketing purposes. Where you object to direct marketing, we will stop processing your personal data for that purpose.

Where we rely on your consent as the legal basis for processing, you have the right to withdraw that consent at any time. Withdrawing consent does not affect the lawfulness of processing carried out before the withdrawal.

How to Exercise Your Rights

If you wish to exercise any of your data protection rights, please contact us and provide sufficient information for us to identify you and understand your request. We will respond without undue delay and in accordance with legal time limits.

We may need to request additional information to confirm your identity before we can act on your request. This is to protect your privacy and security.

Right to Complain

If you have concerns about how we handle your personal data, we encourage you to contact us so that we can try to resolve the issue. You also have the right to lodge a complaint with the UK Information Commissioner’s Office or with your local supervisory authority if you are located outside the UK.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements or for other operational reasons. When we make significant changes, we will take appropriate steps to bring them to your attention, such as updating the date of the policy or providing a prominent notice.

Your continued use of our services after any changes are made will be taken as acceptance of the updated Privacy Policy. We recommend that you review this page periodically to stay informed about how we protect your personal data.