Greenwich Cleaners Privacy Policy
This Privacy Policy explains how Greenwich Cleaners collects, uses, stores and protects personal data relating to customers in our service area. It is intended to provide clear information about your rights under applicable data protection laws, including the UK General Data Protection Regulation and related legislation.
This Privacy Policy applies to all Greenwich Cleaners customers in our local service area, including walk-in customers, collection and delivery customers, and any customers who contact us by other means in relation to our cleaning services.
Who We Are
Greenwich Cleaners is a cleaning services provider operating in the Greenwich area. For the purposes of data protection law, Greenwich Cleaners is the controller of the personal data described in this Privacy Policy. This means that we decide how and why your personal data is processed.
Personal Data We Collect
We may collect and process the following categories of personal data about you when you use our services or interact with us:
Identity and contact details, such as your name, address, and any other contact information you choose to provide to us in the course of placing or managing an order.
Service and order information, such as details of items you ask us to clean, your service preferences, delivery or collection instructions, order history, and information about payments you make to us.
Payment-related information, which may include partial card details or transaction references, processed in conjunction with our payment processing providers. We do not store full card details when not necessary for our legitimate business purposes.
Communications data, such as details of enquiries, complaints, feedback, and other correspondence you send to us, as well as information we may reasonably record in order to respond to and manage those communications.
Technical and usage data, where applicable, such as information about how you interact with any online services we operate, including basic device and log information that may be generated by your use of those services.
How We Collect Your Data
We collect personal data directly from you when you provide it to us, for example when you place an order, request a quote, visit our premises, arrange a collection or delivery, contact us with an enquiry, or provide feedback on our services.
We may also receive limited personal data from third parties acting on your behalf or in connection with your order, for example where a corporate client provides your details for the purpose of arranging cleaning services, or where a payment services provider shares transaction confirmation data with us.
Lawful Basis for Processing
We only process your personal data where we have a lawful basis to do so, as required by the UK GDPR and related laws. The main lawful bases we rely on are:
Performance of a contract: We process your personal data to provide our cleaning services, including accepting and fulfilling orders, collecting and delivering items, handling payments, and managing customer accounts.
Compliance with legal obligations: We process certain data to meet our legal and regulatory obligations, such as record-keeping, tax and accounting requirements, and responding to lawful requests from public authorities.
Legitimate interests: We process personal data where it is necessary for our legitimate business interests, provided that those interests are not overridden by your rights and freedoms. This includes managing our operations, improving our services, safeguarding our premises and staff, preventing fraud, handling customer queries, and keeping basic records of past orders.
Consent: In limited cases, we may rely on your consent, for example where we send you certain types of optional marketing information. Where we rely on consent, you can withdraw it at any time by contacting us.
How We Use Your Personal Data
We use the personal data we collect for the following purposes:
To provide and manage our cleaning services, including booking, collecting, cleaning, and delivering items, and maintaining records of your orders.
To process payments and manage billing, including issuing receipts and resolving payment queries.
To communicate with you about your orders, respond to your enquiries, notify you about changes to our services, and handle complaints or disputes.
To manage our business operations, including internal administration, quality control, staff training, and service improvement.
To comply with legal and regulatory requirements, including tax and accounting rules, and to cooperate with law enforcement where required by law.
To protect our rights, property, and safety, and those of our customers, staff, and the public, including preventing and detecting misuse of our services or fraudulent activity.
Data Retention
We keep your personal data only for as long as it is reasonably necessary to fulfil the purposes for which it was collected, including for the purposes of satisfying any legal, regulatory, accounting, or reporting requirements.
Order and service records are typically retained for a period that allows us to respond to queries and comply with tax and accounting obligations. Once data is no longer required for these purposes, we will take reasonable steps to delete it or anonymise it so that it no longer identifies you.
The specific retention period may vary depending on the type of data, the nature of our relationship with you, and applicable legal requirements. We regularly review the personal data we hold and securely dispose of data that is no longer needed.
Data Processors and Third Parties
In order to provide our services and operate our business, we may share personal data with carefully selected third parties who act as processors on our behalf. These may include payment processing providers, information technology and system support providers, secure document storage or archiving services, and professional advisers such as accountants.
Where we use processors, we require them to handle your personal data only in accordance with our documented instructions, to keep it secure, and to comply with applicable data protection laws. They are not permitted to use your data for their own independent purposes.
We may also share personal data with other third parties where required by law, where necessary to protect our legal rights, or where you have expressly requested or consented to such sharing.
International Transfers
Where we transfer personal data outside the United Kingdom, we will ensure that appropriate safeguards are in place to protect it, in accordance with applicable data protection laws. This may include using standard contractual clauses approved by relevant authorities or ensuring that the recipient is located in a jurisdiction with adequate data protection standards.
How We Protect Your Data
We take appropriate technical and organisational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access. These measures are designed to provide a level of security appropriate to the risks presented by the processing of your personal data.
Access to personal data is limited to staff and service providers who need it for legitimate business purposes and who are subject to confidentiality obligations.
Your Data Protection Rights
Under data protection law, you have a number of rights in relation to the personal data we hold about you. These rights may be subject to certain conditions and legal limitations, but generally include:
Right of access: You have the right to obtain confirmation of whether we process your personal data and, if so, to receive a copy of that data and certain related information.
Right to rectification: You have the right to request that inaccurate or incomplete personal data we hold about you is corrected or updated.
Right to erasure: In some circumstances, you have the right to request that we delete your personal data, for example where it is no longer necessary for the purposes for which it was collected or where you have withdrawn consent.
Right to restriction of processing: You have the right to request that we restrict the processing of your personal data in certain situations, such as while we are considering a request for rectification or where you object to our processing.
Right to object: You have the right to object to the processing of your personal data where we rely on legitimate interests as our lawful basis, including profiling based on those interests. We will stop processing your data unless we can demonstrate compelling legitimate grounds to continue.
Right to data portability: In some cases, you have the right to receive the personal data you have provided to us in a structured, commonly used and machine-readable format, and to transmit that data to another controller where technically feasible.
Where we rely on your consent to process your personal data, you have the right to withdraw that consent at any time. Withdrawal will not affect the lawfulness of processing carried out before consent was withdrawn.
Exercising Your Rights and Complaints
If you wish to exercise any of your data protection rights, or if you have questions or concerns about how we handle your personal data, you can contact us using the contact details provided in our customer materials or at our premises.
You also have the right to lodge a complaint with the relevant data protection supervisory authority if you believe that your rights have been infringed. We would, however, appreciate the opportunity to address your concerns directly before you approach the supervisory authority.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or other factors. Any changes will be posted in an updated version of this Privacy Policy, and the revised policy will apply from the date it is made available. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your personal data.