Privacy Policy - Carpetcleaning E1
This Privacy Policy explains how Carpetcleaning E1 collects, uses, stores, shares, and protects personal data in connection with its services. It applies to all Carpetcleaning E1 customers in area, including individuals who enquire about, book, receive, or pay for our carpet cleaning services. We are committed to handling personal data in a lawful, fair, and transparent manner in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
By using our services, you acknowledge that your personal data may be processed as described in this Privacy Policy. We only collect data that is necessary for legitimate business purposes and we take appropriate measures to keep it secure.
1. Data We Collect
We collect different types of personal data depending on your relationship with us and the services requested. This may include:
- Identity details such as your name and title.
- Contact details such as address, telephone number, and email address.
- Service information such as property access details, cleaning requirements, preferred dates, and service history.
- Payment information such as transaction records and billing details. We do not intentionally store full card details where payment providers process them directly.
- Communication records including messages, enquiries, complaints, and feedback.
- Technical data such as basic website or device information if you interact with digital services, including IP address, browser type, and usage patterns.
- Special instructions you provide regarding stains, materials, allergies, pets, access arrangements, or other service-related preferences.
We do not intentionally collect more information than is needed. If you choose to provide additional personal information, we will only use it for the purpose for which it was shared, unless another lawful basis applies.
2. How We Use Your Data
We use personal data to deliver our services effectively and to manage our business operations. This includes:
- Responding to enquiries and providing quotations.
- Scheduling, carrying out, and managing cleaning appointments.
- Processing payments and maintaining accounting records.
- Communicating about bookings, changes, follow-ups, or service issues.
- Maintaining service quality, training, and internal administration.
- Handling complaints, claims, or disputes.
- Meeting legal, tax, insurance, and regulatory obligations.
- Protecting against fraud, misuse, or unlawful activity.
We may also use aggregated or anonymised information for reporting and service improvement. Where information has been anonymised so that it no longer identifies you, it is no longer personal data under data protection law.
3. Lawful Basis for Processing
We process personal data only where we have a valid lawful basis under GDPR. The main lawful bases we rely on are:
Contract
We process data where it is necessary to enter into or perform a contract with you. This includes arranging services, confirming bookings, providing cleaning work, and handling payment.
Legitimate Interests
We may process data where it is necessary for our legitimate business interests and where those interests are not overridden by your rights and freedoms. This may include managing customer relationships, maintaining records, improving services, preventing fraud, and ensuring business security. We always consider the impact on your privacy before relying on this basis.
Legal Obligation
We may process data where it is necessary to comply with legal obligations, such as tax, accounting, insurance, or record-keeping requirements.
Consent
In limited situations, we may rely on your consent, for example if we send certain optional marketing communications or process data in a way that requires permission. Where consent is used, you may withdraw it at any time. Withdrawal does not affect the lawfulness of processing carried out before consent was withdrawn.
4. Sharing and Processors
We may share personal data with trusted third parties where necessary for service delivery, business administration, or legal compliance. These parties may act as data processors or independent controllers depending on the circumstances.
Processors are third parties that process personal data on our behalf and under our instructions. Examples may include:
- Payment service providers.
- Scheduling, booking, or administrative software providers.
- Accounting and invoicing providers.
- IT support, hosting, and data storage providers.
- Professional advisers such as accountants, insurers, or legal advisers.
We require processors to use appropriate security measures and to process personal data only in accordance with our instructions and applicable law. We do not sell your personal data.
We may also disclose information if required by law, court order, regulatory authority, or to protect the rights, property, or safety of our business, customers, or others. If a business transfer or restructuring occurs, personal data may be transferred as part of that process subject to appropriate safeguards.
5. Data Retention
We retain personal data only for as long as necessary to fulfil the purpose for which it was collected, including legal, accounting, insurance, and reporting requirements. Retention periods depend on the type of information and the context in which it was obtained.
In general, customer records, invoices, and transaction data may be kept for several years to meet tax and audit obligations. Communication records and service notes may be retained for a reasonable period to manage follow-up work, resolve disputes, and support service continuity. When personal data is no longer required, it will be securely deleted, anonymised, or destroyed.
Where we rely on consent for processing, we will stop processing covered by that consent once it is withdrawn, unless another lawful basis applies or retention is required by law.
6. Data Security
We take appropriate technical and organisational measures to protect personal data from unauthorised access, accidental loss, misuse, alteration, or disclosure. These may include restricted access controls, secure storage, staff confidentiality obligations, and regular review of our data handling practices.
While we do our best to protect your information, no system can be guaranteed as completely secure. If a personal data breach occurs, we will assess the risk and, where required by law, notify the relevant supervisory authority and affected individuals.
7. Your Rights
Under data protection law, you have a number of rights in relation to your personal data. These may include:
- Right of access – to request a copy of the personal data we hold about you.
- Right to rectification – to request correction of inaccurate or incomplete data.
- Right to erasure – to request deletion of your data in certain circumstances.
- Right to restriction – to request that we limit how we use your data in certain situations.
- Right to object – to object to processing based on legitimate interests or direct marketing.
- Right to data portability – to receive certain information in a structured, commonly used format where applicable.
- Right to withdraw consent – where processing is based on consent, you may withdraw it at any time.
These rights are not absolute and may be subject to legal exceptions. We may ask for proof of identity before responding to a request. We aim to respond within the time limits required by law.
8. Children’s Data
Our services are intended for adults and business customers arranging cleaning services. We do not knowingly collect personal data from children except where it is incidentally provided by an adult customer in connection with service arrangements. If we become aware that we have collected children’s data improperly, we will take appropriate steps to delete it.
9. International Transfers
If any of our service providers store or access personal data outside the United Kingdom, we will ensure that appropriate safeguards are in place to protect that data as required by applicable law. These safeguards may include adequacy regulations, standard contractual clauses, or equivalent lawful transfer mechanisms.
10. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in legal requirements, business practices, or service arrangements. Any updates will take effect when the revised policy is made available. We encourage customers to review this policy periodically to stay informed about how personal data is handled.
11. Summary of Key Points
This Privacy Policy explains how Carpetcleaning E1 handles personal data for all customers in area. We collect only the information needed to provide and manage our services, relying on lawful bases such as contract, legitimate interests, legal obligation, and consent where appropriate. We may use trusted processors to support operations, retain data only as long as necessary, and respect your data protection rights.
We are committed to using personal data responsibly and securely, and to maintaining trust through transparent and lawful processing practices.