Privacy Policy - Ruislip Cleaner
This Privacy Policy explains how Ruislip Cleaner collects, uses, stores, shares, and protects personal data in connection with the services we provide. It applies to all Ruislip Cleaner customers in the area, including individuals who enquire about our services, receive a quote, book a service, or otherwise interact with us as a customer, prospective customer, or service recipient.
We are committed to handling personal data in a lawful, fair, and transparent manner in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This policy is designed to help you understand what information we collect, why we collect it, how long we keep it, who may process it on our behalf, and what rights you have in relation to your data.
1. Personal Data We Collect
We may collect and process different categories of personal data depending on how you use our services. The information we collect may include:
- Identity data, such as your name and, where relevant, the name of your business or organisation.
- Contact data, such as your address, telephone number, and email address.
- Service-related data, such as cleaning preferences, booking details, property access instructions, service history, and feedback.
- Billing and payment data, where needed to manage invoices, payments, refunds, or account records.
- Communication data, including correspondence with us by phone, email, text message, or other means.
- Technical or usage data, if you visit any digital service connected with our business, such as device information, browser details, and basic usage logs.
We do not intentionally collect special category data unless it is necessary and you have provided it voluntarily, or unless we are required to do so for a lawful reason. If you choose to share any sensitive information with us, we will only process it where permitted by law and only to the extent needed to provide our services safely and properly.
2. How We Use Your Data
We use personal data for the following purposes:
- To provide quotes, manage bookings, and deliver cleaning services.
- To communicate with you about appointments, changes, or service-related matters.
- To process payments, issue invoices, and maintain financial records.
- To respond to queries, complaints, or requests.
- To improve our services, customer experience, and operational efficiency.
- To maintain records and comply with legal, tax, accounting, and regulatory obligations.
- To protect our business, staff, and customers from fraud, misuse, or security incidents.
We only use your personal data for the purposes for which it was collected, unless we reasonably believe we need to use it for a compatible purpose or another lawful reason.
3. Lawful Basis for Processing
Under UK GDPR, we must have a lawful basis for each processing activity. The lawful bases we rely on may include:
Contract
We process personal data when it is necessary to enter into or perform a contract with you. This includes handling your contact details, booking information, service instructions, and payment-related information so we can provide the cleaning service you requested.
Legitimate Interests
We may process data where it is necessary for our legitimate business interests, provided those interests are not overridden by your rights and freedoms. Examples include managing customer relationships, improving service quality, preventing fraud, maintaining internal records, and ensuring effective business administration.
Legal Obligation
We may process and retain certain data where required to comply with legal obligations, including tax, accounting, employment, insurance, and regulatory requirements.
Consent
In limited situations, we may rely on your consent, for example where you voluntarily provide optional information or agree to certain communications. If consent is used as the lawful basis, you may withdraw it at any time, without affecting the lawfulness of processing carried out before withdrawal.
4. Data Sharing and Processors
We do not sell your personal data. However, we may share data with trusted third parties who act as processors or independent controllers, where necessary for service delivery, administration, or legal compliance. These may include:
- IT and cloud service providers who store or support our business systems.
- Payment service providers who process transactions securely.
- Accounting or bookkeeping providers who help manage our financial records.
- Communication providers who assist with email, telephone, or messaging systems.
- Professional advisers such as legal, insurance, or tax advisers where necessary.
- Public authorities or regulators where disclosure is required by law.
Where we use processors, we ensure that appropriate data processing agreements are in place and that they only process personal data on our instructions, with suitable security and confidentiality safeguards.
If personal data is transferred outside the United Kingdom, we will ensure appropriate safeguards are in place, such as an adequacy decision, standard contractual clauses, or another lawful transfer mechanism permitted under data protection law.
5. Data Retention
We keep personal data only for as long as necessary for the purposes for which it was collected, including to meet legal, accounting, tax, or reporting requirements. The retention period may vary depending on the type of information and the reason it is held.
In general:
- Customer and booking records are kept for as long as needed to manage the service relationship and related queries.
- Financial and invoice records are retained for the period required by law and standard accounting practice.
- Correspondence may be kept for a reasonable time to deal with ongoing service issues or legal claims.
- When data is no longer needed, it will be securely deleted, anonymised, or otherwise disposed of in a safe manner.
We may retain data longer where necessary to establish, exercise, or defend legal claims, or where legislation requires a longer retention period.
6. Data Security
We take appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration, or disclosure. These measures may include access controls, secure storage, staff confidentiality obligations, and careful selection of service providers.
While we work hard to protect your data, no system can be guaranteed to be completely secure. If a personal data breach occurs and we are legally required to do so, we will notify the relevant authority and, where appropriate, affected individuals.
7. Your Rights
Depending on the circumstances, you may have the following rights under data protection law:
- Right of access – to request a copy of the personal data we hold about you.
- Right to rectification – to ask us to correct inaccurate or incomplete data.
- Right to erasure – to ask us to delete your data in certain situations.
- Right to restriction – to ask us to limit how we use your data in certain circumstances.
- Right to data portability – to receive certain data in a structured, commonly used format and have it transferred where applicable.
- Right to object – to object to processing based on legitimate interests, including direct marketing where relevant.
- Right to withdraw consent – where processing is based on consent, you may withdraw it at any time.
We may need to verify your identity before responding to a rights request. We aim to respond within the time limits required by law. In some cases, legal exceptions may apply, meaning we may not be able to fully comply with every request.
8. Marketing and Communications
We may send service-related communications where necessary to perform our services or manage our customer relationship. If we send marketing communications, we will do so only where permitted by law. You may opt out of marketing at any time, and this will not affect essential service communications.
9. Children’s Data
Our services are intended for adults. We do not knowingly collect personal data from children except where it is necessary in a service context and provided by an adult responsible for the arrangement. If we become aware that we have collected children’s data unlawfully, we will take appropriate steps to delete it.
10. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in law, our services, or how we process personal data. Any updated version will apply from the date it is made available. We encourage you to review this policy periodically so that you remain informed about how your information is handled.
11. How to Raise a Concern
If you have a concern about how your personal data has been handled, you should raise it with us first so we can try to resolve the issue. You also have the right to lodge a complaint with the UK data protection supervisory authority if you believe your data protection rights have been infringed.
Summary: This policy explains how Ruislip Cleaner processes customer data, including lawful basis, retention, processors, and user rights, for all customers in the area.