Queens Park Carpet Cleaners Privacy Policy

This Privacy Policy explains how Queens Park Carpet Cleaners collects, uses, stores, and protects personal data relating to our carpet cleaning and related services. It applies to all Queens Park Carpet Cleaners customers in our service area, including individuals, households, landlords, tenants, and business clients.

Scope and Data Controller

Queens Park Carpet Cleaners is the data controller responsible for determining how and why your personal data is processed. This Privacy Policy covers all personal data we handle in the context of providing our services, whether collected online, by telephone, or in person.

Personal Data We Collect

We only collect personal data that is relevant and necessary for providing our services. The categories of personal data we may collect include:

Identification and contact details: name, address, service location, and other basic contact information you choose to provide.

Booking and service information: details of the services you request, appointment dates and times, access instructions, property type and size, and job notes.

Communication records: information contained in emails, messages, or telephone conversations with us, including enquiries, quotes, feedback, and complaints.

Billing and payment information: records of invoices, amounts due and paid, payment method details that are necessary for processing transactions and accounting. If payments are processed by external payment providers, we receive limited data necessary to confirm and reconcile payments.

Technical and usage information: when you visit our website, certain technical information such as IP address, device type, browser type, and basic usage data may be collected through standard logging or cookies where applicable. This is used for security, performance, and service improvement.

Lawful Bases for Processing

We process personal data only where we have a valid legal basis under the UK GDPR and related data protection laws. Depending on the context, the lawful bases we rely on include:

Performance of a contract: when you request a quote, make a booking, or receive services from us, we process your personal data to enter into and fulfil our agreement with you, including managing bookings, providing services, and handling payments.

Legitimate interests: we may process personal data where necessary for our legitimate business interests, provided these interests are not overridden by your rights and interests. This includes improving our services, managing our relationship with you, responding to enquiries, ensuring security of our systems and premises, and maintaining business records.

Legal obligations: we process certain data to comply with legal and regulatory requirements, such as tax, accounting, and record keeping obligations, as well as responding to lawful requests from public authorities.

Consent: where required by law, for example for certain types of marketing communications or optional cookies, we rely on your consent. You may withdraw your consent at any time, without affecting the lawfulness of processing carried out before withdrawal.

How We Use Your Personal Data

We use the personal data we collect for the following purposes:

To provide and manage services: scheduling and delivering carpet cleaning and related services, communicating about appointments, and tailoring our work to your requirements.

To manage customer relationships: responding to enquiries and requests, providing quotes, managing repeat bookings, handling complaints, and delivering customer support.

To process payments and accounts: issuing invoices, recording payments, managing refunds where applicable, and maintaining accurate financial records.

To operate and improve our business: analysing service performance, monitoring quality, training staff, and improving our processes, systems, and customer experience.

To ensure safety and security: protecting our staff, customers, equipment, and systems, preventing and detecting fraud or misuse, and securing our information and premises.

To comply with legal duties: meeting our obligations under tax, accounting, health and safety, and other applicable laws.

Data Sharing and Processors

We do not sell your personal data. We may share your personal data with trusted third parties only where necessary and lawful. These recipients may include:

Service providers and processors: third parties that provide services to us, such as IT and cloud hosting providers, booking or scheduling tools, accounting and invoicing systems, payment processors, email or communication platforms, and document storage services. These organisations act as data processors and are bound by contractual obligations to protect your data, act only on our instructions, and implement appropriate security measures.

Professional advisers: accountants, legal advisers, and other professional service providers who assist us in running our business in compliance with the law.

Public authorities: regulators, law enforcement bodies, or other authorities where we are legally required or permitted to share data, or where disclosure is necessary to protect our rights, your safety, or the safety of others.

In each case, we only share the minimum personal data necessary for the relevant purpose and ensure that any third party receiving data has appropriate safeguards in place.

Data Retention

We retain personal data only for as long as necessary for the purposes for which it was collected, or as required by law. The specific retention period depends on the type of data and the context of our interactions with you.

Customer and service records: information relating to bookings, services performed, and communications with you is typically stored for a period that allows us to manage ongoing relationships, handle queries, and comply with legal and tax obligations.

Financial and accounting records: invoicing information and payment records are retained for the period required by applicable tax and accounting laws.

Technical and usage data: data collected through website logs or similar means is retained for a period necessary for security, maintenance, analytics, and improvement of our services, after which it may be deleted or anonymised.

Once data is no longer required, we securely delete it or irreversibly anonymise it so it can no longer be linked to an identifiable individual.

International Transfers

Where our use of service providers involves the transfer of personal data outside the United Kingdom or European Economic Area, we take steps to ensure that appropriate safeguards are in place. These may include relying on adequacy regulations or entering into contracts containing standard data protection clauses recognised under data protection law, ensuring that your rights and protections travel with your data.

Data Security

We take reasonable and appropriate technical and organisational measures to protect your personal data against unauthorised or unlawful processing and against accidental loss, destruction, or damage. These measures include access controls, secure storage, restricted access to personal data, staff training, and the use of reputable service providers that implement robust security standards.

Your Data Protection Rights

Under data protection law, including the UK GDPR, you have certain rights regarding your personal data. Subject to legal limitations, these rights may include:

Right of access: you can request confirmation of whether we process your personal data and obtain a copy of that data, together with information about how it is used.

Right to rectification: you can request that inaccurate or incomplete personal data be corrected or updated.

Right to erasure: in certain circumstances, you can request that we delete your personal data, for example where it is no longer needed for the purposes for which it was collected, or where you withdraw consent and no other legal basis applies.

Right to restriction: you can ask us to restrict the processing of your data in specific situations, such as while we are assessing a request for correction or objection.

Right to object: you can object to processing based on our legitimate interests, on grounds relating to your particular situation. We will stop processing unless we can demonstrate compelling legitimate grounds or the processing is needed for legal claims.

Right to data portability: for certain data processed by automated means on the basis of consent or contract, you can request a copy in a structured, commonly used, machine readable format and ask us to transfer it to another controller where technically feasible.

Right to withdraw consent: where we rely on your consent, you may withdraw it at any time. This will not affect any processing carried out before withdrawal but may affect our ability to continue providing certain optional services.

You also have the right to lodge a complaint with a supervisory authority if you believe your data protection rights have been infringed. In the United Kingdom, this is typically the Information Commissioner's Office.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, or data protection practices. Any significant changes will be highlighted in an updated version of this policy. We encourage you to review this Privacy Policy periodically so that you remain informed about how we use and protect your personal data.

Contact and Further Information

If you have any questions about this Privacy Policy or how Queens Park Carpet Cleaners handles your personal data, or if you wish to exercise any of your data protection rights, you can contact us using the contact details provided on our usual customer communication channels.