Privacy Policy - Oven Cleaning Haringey
This Privacy Policy explains how Oven Cleaning Haringey collects, uses, stores, shares, and protects personal data when providing oven cleaning and related services. It applies to all Oven Cleaning Haringey customers in the area, including individuals who request a quote, make a booking, receive a service, or otherwise interact with us in connection with oven cleaning services. We are committed to handling personal data fairly, lawfully, and transparently in line with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
1. Who We Are
Oven Cleaning Haringey provides professional oven cleaning services for homes and businesses in the Haringey area. In the course of delivering our services, we act as a data controller for the personal information we collect and use. This means we decide why and how your personal data is processed. We take privacy seriously and aim to collect only the information needed to deliver our services safely, effectively, and responsibly.
2. Personal Data We Collect
We may collect different types of personal data depending on how you interact with us and the services you request. The information we collect may include:
- Identity information, such as your name.
- Contact details, such as your address, telephone number, and email address.
- Service details, such as your booking preferences, appointment times, and any instructions relating to access or the cleaning job.
- Billing and payment information, such as invoice details, payment status, and transaction records.
- Communication records, including messages, calls, complaints, feedback, and service-related correspondence.
- Property and access information, where necessary to carry out the service safely and efficiently.
- Technical information, such as basic website usage data if you contact us through an online form or digital channel.
We do not intentionally collect special category data unless it is strictly necessary and you have chosen to provide it. Special category data includes information about health, religion, ethnicity, or similar sensitive details. If such information is ever provided incidentally, we will handle it carefully and only use it where permitted by law.
3. How We Use Personal Data
We use personal data only for legitimate service and operational purposes. This may include:
- Providing oven cleaning services and managing bookings.
- Responding to enquiries, requests, and customer communications.
- Sending quotations, appointment confirmations, invoices, and receipts.
- Managing payments and maintaining financial records.
- Ensuring safe access to premises and carrying out services correctly.
- Handling complaints, aftercare, or follow-up service requests.
- Maintaining internal records for business administration, quality assurance, and training.
- Meeting legal, tax, accounting, and regulatory obligations.
We will never use your data for purposes that are incompatible with the reason it was collected unless we have a lawful basis to do so and, where required, your permission.
4. Lawful Basis for Processing
Under data protection law, we must identify a lawful basis before processing personal data. Depending on the situation, we rely on one or more of the following lawful bases:
Contract
We process your personal data when it is necessary to enter into or perform a contract with you. This includes arranging your booking, delivering the cleaning service, issuing invoices, and handling service-related communications.
Legal Obligation
We may process certain personal information to comply with legal requirements, such as tax records, accounting obligations, insurance requirements, or lawful requests from authorities.
Legitimate Interests
We may process data where it is necessary for our legitimate business interests, provided your rights and freedoms do not override those interests. Examples include improving our service, preventing fraud, maintaining accurate records, and managing customer communications.
Consent
In limited cases, we may rely on your consent, for example where you voluntarily agree to certain optional communications or provide additional information that is not otherwise necessary for the service. When consent is used, you may withdraw it at any time.
5. Data Sharing and Processors
We may share personal data only when necessary and only with trusted third parties that help us operate our business. These third parties act as processors when they handle data on our behalf. Examples may include:
- Payment service providers that process card or online payments.
- Accounting or bookkeeping processors that support invoicing and tax compliance.
- IT and cloud storage providers that host email, booking, or record-keeping systems.
- Customer communication tools used to manage messages or appointment reminders.
- Professional advisers, such as accountants, insurers, or legal advisers, where necessary.
We require all processors to take appropriate security measures and to process personal data only in accordance with our instructions and applicable law. We do not sell your personal data.
In rare circumstances, we may also disclose information where we are legally required to do so, for example in response to a court order, regulatory request, or lawful obligation. If business assets are ever transferred or restructured, personal data may be transferred as part of that process in accordance with data protection law.
6. Data Retention
We keep personal data only for as long as it is necessary for the purposes set out in this policy or as required by law. Retention periods can vary depending on the type of data and the nature of the relationship.
- Booking and service records may be retained for a reasonable period to manage service history, disputes, and customer support.
- Financial and accounting records are generally retained for the period required by tax and accounting laws.
- Communication records may be retained for service management, quality assurance, and evidence of instructions or agreements.
- Marketing-related consent records, where applicable, are kept until you withdraw consent or until they are no longer needed.
When personal data is no longer needed, we will delete it securely or anonymise it so that it can no longer identify you. We review retention needs regularly to ensure we do not keep data for longer than necessary.
7. Data Security
We take reasonable and appropriate steps to protect personal data against loss, misuse, unauthorised access, alteration, or disclosure. These measures may include access controls, secure storage, password protection, staff awareness, and limiting access to data on a need-to-know basis. While no system can be guaranteed completely secure, we work to maintain a high standard of protection appropriate to the nature of the information we process.
8. Your Rights
As a data subject under UK GDPR, you have a number of rights in relation to your personal data. These rights are not absolute and may only apply in certain circumstances. Your rights may include:
- The right of access — to request a copy of the personal data we hold about you.
- The right to rectification — to ask us to correct inaccurate or incomplete information.
- The right to erasure — to request deletion of your data in certain situations.
- The right to restrict processing — to ask us to limit how we use your data in certain cases.
- The right to object — to object to processing based on legitimate interests or direct marketing.
- The right to data portability — to request that some information be provided in a structured, commonly used format.
- The right to withdraw consent — where we rely on consent, you may withdraw it at any time.
If you wish to exercise any of these rights, we will review your request and respond within the time limits required by law. We may need to verify your identity before acting on your request to protect your data from unauthorised access. In some cases, we may not be able to fulfil a request if legal exceptions apply.
9. Automated Decision-Making
We do not use personal data for fully automated decision-making that produces legal or similarly significant effects. If this ever changes, we will update this policy and provide the information required by law.
10. International Transfers
Where any third-party processors or service providers store or process data outside the UK, we will ensure appropriate safeguards are in place to protect your personal data. These safeguards may include adequacy regulations or approved contractual protections designed to maintain a similar standard of data protection.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, legal obligations, or service arrangements. Any updates will take effect when published. We encourage customers to review the policy periodically so they remain informed about how personal data is handled.
12. Summary of Our Commitment
We are committed to treating your personal information with care, respect, and accountability. Our goal is to collect only what we need, use it only for clear and lawful purposes, retain it for no longer than necessary, and keep it secure. Whether you are booking a one-off clean or using our services repeatedly, Oven Cleaning Haringey will handle your personal data in a way that is lawful, fair, and transparent.
Important: This Privacy Policy applies to all Oven Cleaning Haringey customers in the area and covers personal data collected in connection with our oven cleaning services.