Privacy Policy - Oven Cleaning Bermondsey
This Privacy Policy explains how Oven Cleaning Bermondsey collects, uses, stores, shares, and protects personal data for all customers in the Bermondsey area. It applies to every individual who uses our services, makes an enquiry, requests a quote, books an appointment, or communicates with us in connection with oven cleaning services. We are committed to handling personal information lawfully, fairly, and transparently in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
1. Who This Policy Applies To
This policy applies to all Oven Cleaning Bermondsey customers in area, including household customers, landlords, tenants, property managers, and any other person who arranges or receives oven cleaning services from us in Bermondsey and the surrounding locality. By engaging with our services, you acknowledge that your personal data may be processed as described in this policy.
2. Personal Data We Collect
We only collect personal data that is necessary for providing and managing our services. The information we may collect includes:
- Identity details such as your name and, where relevant, the name of the property owner, tenant, or business representative.
- Contact details such as telephone number and email address.
- Service information such as your address in Bermondsey, booking time, access instructions, service preferences, and notes relevant to the cleaning appointment.
- Communication records including messages, enquiries, complaints, and correspondence relating to your booking or service experience.
- Billing and payment information such as invoicing details and payment status. Where applicable, payment processing may be handled by third-party providers and we may not store full card details.
- Technical data if you interact with us electronically, which may include device information, IP address, and basic usage data collected through standard security and analytics tools.
We do not intentionally collect special category data unless it is strictly necessary and you have provided it voluntarily or it is required for a legal reason. If such information is ever provided, it will be treated with additional care and only processed where permitted by law.
3. How We Use Personal Data
We use personal data for the following purposes:
- To respond to enquiries and provide quotes.
- To schedule, confirm, and deliver oven cleaning services.
- To manage customer accounts and service records.
- To process payments, issue invoices, and maintain financial records.
- To communicate service updates, appointment changes, or follow-up information.
- To deal with complaints, disputes, and customer support matters.
- To meet legal, tax, accounting, and regulatory obligations.
- To protect our business, staff, and customers from fraud, misuse, or security incidents.
We will only use your personal data for the purposes for which it was collected unless we reasonably consider that we need to use it for another compatible purpose. If we need to use your data for an unrelated purpose, we will explain the legal basis and, where required, obtain your consent.
4. Lawful Basis for Processing
Under UK GDPR, we must have a lawful basis for processing personal data. The main lawful bases we rely on are:
Contract
We process personal data where it is necessary to enter into or perform a contract with you. This includes arranging appointments, carrying out cleaning services, and handling payment or service-related communications.
Legal Obligation
We may process personal data where required to comply with legal obligations, such as tax recordkeeping, accounting obligations, or responding to lawful requests from authorities.
Legitimate Interests
We may process personal data where it is necessary for our legitimate business interests, provided these interests are not overridden by your rights and freedoms. This may include maintaining service records, improving operations, preventing fraud, and ensuring the security of our systems.
Consent
In limited cases, we may rely on your consent, for example where you agree to optional communications or the use of certain cookies or marketing-related tools. Where consent is used, you may withdraw it at any time.
5. Sharing Personal Data and Processors
We may share personal data with trusted third parties who help us operate our business. These third parties act as data processors or independent controllers depending on the service they provide. We ensure that appropriate safeguards are in place before sharing any personal data.
Processors may include:
- Payment service providers that handle card or electronic payments securely.
- Booking and scheduling tools used to organise appointments and customer records.
- IT and cloud storage providers that support secure data storage, email, and system maintenance.
- Accounting and invoicing providers used for tax and financial administration.
- Communication service providers that help us send service-related messages or manage customer enquiries.
We may also disclose personal data where necessary to comply with the law, enforce our terms, protect our rights, or respond to legitimate requests from public authorities. We do not sell your personal data.
6. Data Retention
We keep personal data only for as long as necessary to fulfil the purposes described in this policy, including satisfying legal, accounting, and reporting requirements. Retention periods may vary depending on the type of data and the reason it is held.
In general:
- Booking and service records are kept for the period needed to manage the customer relationship and resolve any disputes.
- Financial and tax records are retained for the period required by law.
- Communication records are retained for a reasonable time to support customer service and business administration.
When personal data is no longer required, we will securely delete, anonymise, or destroy it. We regularly review the information we hold to make sure it is not kept for longer than necessary.
7. Data Security
We take appropriate technical and organisational measures to protect personal data from unauthorised access, accidental loss, misuse, alteration, or disclosure. These measures may include access controls, secure storage, staff confidentiality obligations, and routine review of systems and procedures. While no method of transmission or storage is completely secure, we work to reduce risks and handle data responsibly.
8. International Transfers
If personal data is transferred outside the United Kingdom, we will ensure that suitable safeguards are in place and that the transfer is lawful. This may include using jurisdictions with adequate protection or approved contractual safeguards. We only transfer data where necessary for the operation of our services.
9. Your Rights
As a data subject under UK GDPR, you have a number of important rights regarding your personal data. These rights may apply in different situations and are subject to certain legal limitations.
- Right of access – you may request a copy of the personal data we hold about you.
- Right to rectification – you may ask us to correct inaccurate or incomplete information.
- Right to erasure – you may request deletion of your data in certain circumstances.
- Right to restrict processing – you may ask us to limit how we use your data in specific situations.
- Right to object – you may object to processing based on legitimate interests or direct marketing.
- Right to data portability – you may request that certain data be provided to you or transferred to another provider.
- Right to withdraw consent – where we rely on consent, you may withdraw it at any time.
If you exercise any of these rights, we may need to verify your identity before responding. We aim to respond within the time limits set by law.
10. Cookies and Similar Technologies
If we use a website or digital booking system, it may use cookies or similar technologies for basic functionality, security, and analytics. These tools help us understand how services are used and improve user experience. Where required, we will ask for your consent before placing non-essential cookies. You can manage cookie preferences through your browser or device settings.
11. Children’s Data
Our services are not intended for children under the age of 16 unless arranged by a parent, guardian, or responsible adult. We do not knowingly collect personal data from children except where it is necessary to provide the service and is supplied by an adult responsible for the booking.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in legal requirements, operational practices, or data protection standards. Any updates will take effect when published or otherwise communicated. We encourage customers to review this policy periodically so they remain informed about how their data is handled.
13. Summary of Our Commitment
Oven Cleaning Bermondsey is committed to treating personal data with care, transparency, and respect. We collect only the information we need, use it for clear and lawful purposes, retain it only as long as necessary, and protect it with appropriate safeguards. We aim to ensure that all customers in the Bermondsey area can use our services with confidence, knowing their privacy is taken seriously.
By using our services, you acknowledge that you have read and understood this Privacy Policy.