Privacy Policy - Cleaners Enfield
This Privacy Policy explains how Cleaners Enfield collects, uses, stores, shares, and protects personal data. It applies to all Cleaners Enfield customers in the area, including current, former, and prospective customers who use our domestic or commercial cleaning services. We are committed to handling personal data in a lawful, fair, and transparent manner in line with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
We encourage you to read this Policy carefully so you understand what information we collect, why we collect it, and the rights you have over your personal data. This Policy applies where we act as a data controller, meaning we determine the purposes and means of processing your personal data.
1. Data We Collect
We may collect and process different categories of personal data depending on how you interact with us and the services you request. The data we collect may include:
- Identity information such as your name, title, and any account or booking reference.
- Contact information such as your address, email address, and phone number.
- Service details including the type of cleaning requested, preferred dates and times, access instructions, and service notes.
- Payment information such as payment status, billing records, and transaction details. We do not store full card details where payment is processed by a third-party payment provider.
- Communication records including emails, messages, call notes, complaints, and feedback.
- Technical information where relevant, such as device or browser information if you use our digital booking forms or online services.
- Special category data only where strictly necessary and provided by you, for example health or access information needed to carry out cleaning safely and appropriately. This type of data is handled with additional care.
We collect personal data directly from you when you make an enquiry, request a quote, book a service, communicate with us, or provide feedback. In some cases, we may receive information from third parties, such as property managers, tenants, landlords, or payment processors, where this is necessary to deliver the service or manage the relationship.
2. How We Use Personal Data
We use personal data only where we have a lawful reason to do so. The main purposes for processing include:
- providing quotes and managing bookings;
- delivering cleaning services at your property or premises;
- communicating about appointments, changes, and service updates;
- processing payments, invoices, and refunds;
- responding to queries, complaints, and customer support requests;
- maintaining records for business administration and service quality;
- improving our services, training staff, and managing operations;
- meeting legal, regulatory, tax, and accounting obligations;
- protecting against fraud, misuse, or unlawful activity.
We will not use your personal data in ways that are incompatible with the purposes explained in this Policy unless we have a valid legal basis for doing so.
3. Lawful Basis for Processing
Under data protection law, we must have a lawful basis for each processing activity. Cleaners Enfield relies on the following lawful bases:
Contract
We process personal data when it is necessary to enter into or perform a contract with you. This includes handling your booking, providing services, managing changes to appointments, and processing payments.
Legitimate Interests
We may process personal data where it is necessary for our legitimate interests, provided these interests are not overridden by your rights and freedoms. This may include improving our services, managing customer relationships, preventing fraud, maintaining service records, and handling operational matters.
Legal Obligation
We may process personal data where we are required to do so by law, such as keeping tax records, accounting records, or information needed to comply with legal claims, safety rules, or regulatory duties.
Consent
In limited situations, we may rely on your consent, for example where we process special category data that you voluntarily provide and there is no other suitable lawful basis. Where consent is used, you may withdraw it at any time. Withdrawing consent will not affect the lawfulness of processing carried out before withdrawal.
4. Data Sharing and Processors
We may share personal data with trusted third parties who assist us in operating our business. These third parties act as processors or, in some cases, independent controllers. We ensure appropriate contracts and safeguards are in place where required.
- Payment processors who handle card payments or other transactions on our behalf.
- IT and cloud service providers who store or support booking systems, email services, or data backups.
- Accounting and bookkeeping providers who help with invoicing, financial records, and tax compliance.
- Customer service or communication tools used to manage messages, service updates, and administrative tasks.
- Legal, insurance, or professional advisers where disclosure is required for advice, claims, or compliance.
- Subcontractors or cleaning staff where necessary to deliver a booked service and only to the extent needed to perform their duties.
We do not sell personal data. We only share the minimum information necessary for a specific purpose. Where a processor acts on our behalf, they are required to process data only according to our instructions and to maintain appropriate security measures.
5. International Transfers
If personal data is transferred outside the UK, we will take steps to ensure that an adequate level of protection is in place. This may include using approved contractual safeguards or relying on a recognised adequacy decision. We aim to keep personal data within secure environments and use suppliers that meet appropriate data protection standards.
6. Data Retention
We keep personal data only for as long as necessary for the purposes for which it was collected, including for legal, accounting, or reporting requirements. Retention periods may vary depending on the type of record and the reason for keeping it.
- Booking and service records are typically retained for the period needed to manage the customer relationship and address any follow-up issues.
- Financial and tax records are retained for the period required by law.
- Communication records may be retained for a reasonable period to manage queries, complaints, or service history.
- Health or access-related information is kept only as long as necessary for safe service delivery and then deleted or anonymised.
When personal data is no longer required, we will securely delete, anonymise, or archive it in accordance with our retention procedures.
7. Data Security
We use appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration, or disclosure. These measures may include access controls, secure storage, staff confidentiality obligations, and regular review of our data handling practices. Although no method of transmission or storage can be guaranteed to be completely secure, we work to maintain a level of security appropriate to the risk.
8. Your Rights
Depending on the circumstances and the legal basis for processing, you may have the following rights under data protection law:
- Right of access – you can request a copy of the personal data we hold about you.
- Right to rectification – you can ask us to correct inaccurate or incomplete information.
- Right to erasure – you can ask us to delete your data in certain situations.
- Right to restrict processing – you can ask us to limit how we use your data in certain cases.
- Right to data portability – you can request that we provide certain data in a structured, commonly used format.
- Right to object – you can object to processing based on legitimate interests or direct marketing.
- Right to withdraw consent – where we rely on consent, you can withdraw it at any time.
These rights are not absolute and may be subject to legal exceptions. If you make a request, we may need to verify your identity before responding. We will aim to respond within the time limits set by law.
9. Children’s Data
Our services are intended for adults. We do not knowingly collect personal data from children except where it is necessary in connection with a service arrangement and where appropriate authority has been provided by a parent, guardian, or responsible adult. If we learn that we have collected data from a child without a lawful basis, we will take steps to delete it.
10. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in law, services, or operational practices. Any updated version will apply from the date it is published. We encourage customers to review this Policy periodically so they remain informed about how personal data is handled.
11. Summary of Our Commitment
Cleaners Enfield respects your privacy and is committed to protecting your personal data. We collect only what we need, use it for clear and lawful purposes, store it securely, share it only with trusted processors when necessary, and retain it only for as long as required. All Cleaners Enfield customers in the area are covered by this Policy, and we aim to ensure that every stage of processing is carried out in a transparent and responsible way.
This Policy is designed to support privacy compliance and customer trust while ensuring that our cleaning services can be delivered efficiently and safely.