Privacy Policy - Cleaners Bayswater
This Privacy Policy explains how Cleaners Bayswater collects, uses, stores, shares, and protects personal data when providing cleaning services. It applies to all Cleaners Bayswater customers in the Bayswater area, including prospective customers, active customers, former customers, and anyone who communicates with us in connection with our services. We are committed to handling personal data in a lawful, fair, and transparent manner in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
By using our services or providing personal information to us, you acknowledge that your data will be processed as described in this Privacy Policy. We only process personal data where we have a valid legal basis and only for purposes that are necessary, relevant, and proportionate to the services we provide.
1. Data We Collect
We collect only the information needed to arrange, deliver, manage, and improve our cleaning services. The type of data we may collect includes the following:
- Identity information: name, title, and similar identifying details.
- Contact information: address, email address, telephone number, and service location details.
- Service information: booking preferences, cleaning instructions, property access details, service history, and communication records related to appointments.
- Payment information: payment status, transaction references, and invoicing details. We do not store more payment data than is necessary for processing and accounting purposes.
- Communication data: messages, feedback, complaints, and other correspondence related to our services.
- Technical and usage data: information such as website interaction data or device-related information if you interact with our digital systems, where applicable.
We may also collect limited information from third parties where it is necessary to provide our services, such as property managers, tenants, landlords, or authorised representatives. In such cases, we only collect data that is relevant to the agreed cleaning work.
2. How We Use Personal Data
We use personal data for legitimate business and service-related purposes, including:
- to set up and manage bookings;
- to provide cleaning services at the correct property and time;
- to communicate about appointments, changes, or service issues;
- to issue invoices, process payments, and maintain accounting records;
- to respond to enquiries, complaints, and requests;
- to improve the quality and efficiency of our services;
- to maintain internal records and fulfil legal or regulatory obligations;
- to protect our business, staff, customers, and property from fraud, misuse, or security risks.
We will not use your personal data for purposes that are incompatible with the original reason for collection unless we have a lawful basis to do so and, where required, have informed you.
3. Lawful Basis for Processing
Under the UK GDPR, we must identify a lawful basis for each type of processing. Cleaners Bayswater relies on the following lawful bases where appropriate:
Performance of a Contract
We process personal data when it is necessary to enter into or perform a contract with you. This includes managing bookings, carrying out cleaning services, handling service changes, and providing invoices or confirmations.
Legitimate Interests
We may process personal data where it is necessary for our legitimate interests, provided those interests are not overridden by your rights and freedoms. This may include maintaining business records, improving our services, preventing fraud, protecting our staff, and managing customer relationships. When we rely on legitimate interests, we ensure that the processing is proportionate and respects your privacy.
Legal Obligation
We may process and retain certain information where we are required to do so by law, including tax, accounting, employment, health and safety, or regulatory obligations.
Consent
In limited situations, we may rely on your consent, for example where you choose to receive optional marketing communications or agree to specific forms of processing not covered by another lawful basis. Where consent is used, you may withdraw it at any time, and this will not affect the lawfulness of processing carried out before withdrawal.
4. Data Sharing and Processors
We may share personal data only where necessary and with appropriate safeguards. We do not sell personal data. Data may be shared with trusted third parties that help us deliver and support our services. These third parties act as processors or, in some cases, independent controllers.
Examples of processors and service providers may include:
- Payment processors that handle transactions securely.
- Accounting and bookkeeping providers that assist with invoicing, tax records, and financial administration.
- Scheduling, booking, or customer management systems used to organise service appointments and records.
- IT and cloud service providers that store or secure business data.
- Communication service providers that support email, text, or administrative messages.
Where we use processors, we require them to process personal data only on our instructions, to keep it secure, and to comply with applicable data protection law. We may also disclose personal data if required by law, a court order, or a lawful request from a public authority.
5. International Transfers
If personal data is transferred outside the UK, we take appropriate steps to ensure that it remains protected to the standard required by data protection law. This may include the use of approved safeguards such as adequacy regulations or standard contractual clauses, where applicable.
6. Data Retention
We keep personal data only for as long as necessary for the purposes for which it was collected, including satisfying legal, accounting, or reporting requirements. Retention periods depend on the type of information and the reason it was collected.
In general:
- customer service and booking records are retained for the duration of the customer relationship and for a reasonable period afterward;
- invoicing and payment-related records are retained for the time required by tax and accounting law;
- complaints, correspondence, and service history are retained only as long as needed to manage the relationship and resolve issues;
- data collected on the basis of consent is retained until consent is withdrawn or the data is no longer needed.
When personal data is no longer required, we will delete it securely or anonymise it so that it can no longer identify you. Retention decisions are reviewed regularly to ensure they remain appropriate.
7. Security of Personal Data
We take appropriate technical and organisational measures to protect personal data from unauthorised access, accidental loss, alteration, disclosure, or destruction. These measures may include restricted access controls, secure storage, staff confidentiality obligations, and reasonable safeguards within our systems and procedures.
While we work hard to protect data, no system can be guaranteed to be completely secure. If we become aware of a data breach that affects your personal data and poses a risk to your rights and freedoms, we will act in accordance with applicable legal requirements.
8. Your Rights
As a data subject under the UK GDPR, you have several rights in relation to your personal data. These rights may apply depending on the circumstances and any legal exemptions. Your rights include:
- Right of access: you can request confirmation of whether we process your personal data and request a copy of that data.
- Right to rectification: you can ask us to correct inaccurate or incomplete personal data.
- Right to erasure: you can request deletion of your personal data in certain circumstances.
- Right to restrict processing: you can ask us to limit the way we use your data in certain cases.
- Right to data portability: you can request that certain data be provided to you or another controller in a structured, commonly used format.
- Right to object: you can object to processing based on legitimate interests or direct marketing.
- Right to withdraw consent: where processing is based on consent, you may withdraw that consent at any time.
You may also have rights relating to automated decision-making, although we do not ordinarily use automated decisions that produce legal or similarly significant effects.
To exercise your rights, you may make a request using the usual communication channels for our business. We may need to verify your identity before responding. We aim to respond without undue delay and within the time limits required by law.
9. Marketing Communications
If we send optional marketing communications, we will do so only where permitted by law. You may opt out of marketing at any time. Even if you opt out, we may still send essential service-related messages, such as booking confirmations, schedule updates, invoices, or important service notices.
10. Children’s Data
Our services are aimed at adult customers and property-related service arrangements. We do not knowingly collect personal data from children unless it is incidental and necessary in a household context or required for access or safety reasons. If we become aware that we have collected child-related personal data without a valid basis, we will take appropriate steps to delete it or minimise processing.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, or data protection practices. Any updated version will apply from the date it is published or otherwise communicated. We encourage customers to review this policy periodically so they remain informed about how their personal data is handled.
12. Summary of Our Commitment
Cleaners Bayswater is committed to handling personal data with care, transparency, and respect. We collect only what is needed, use data for clear and lawful purposes, share it only with trusted processors where necessary, retain it only for as long as required, and uphold your privacy rights. This policy applies to all Cleaners Bayswater customers in the area and reflects our ongoing commitment to GDPR-compliant data protection practices.