Privacy Policy - Oven Cleaning Kennington
This Privacy Policy explains how Oven Cleaning Kennington collects, uses, stores, and protects personal data when providing oven cleaning and related services. It applies to all Oven Cleaning Kennington customers in the area, including prospective customers, current customers, and individuals who enquire about our services. We are committed to handling personal data in a lawful, fair, and transparent manner in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
1. Who We Are
For the purposes of data protection law, Oven Cleaning Kennington acts as the data controller for the personal data we collect and use in connection with our services. This means we determine how and why your personal data is processed. We take our responsibilities seriously and aim to ensure that all personal data is treated securely, respectfully, and only for legitimate business purposes.
2. Personal Data We Collect
We may collect and process several types of personal data, depending on how you interact with us and the services you request. This may include:
- Identity information such as your name and title.
- Contact information such as your telephone number, email address, and service address.
- Service information such as details about the oven cleaning service requested, property access notes, appointment preferences, and special instructions.
- Payment information such as transaction details and billing records, where applicable. We do not store card details unless a secure payment service requires temporary processing.
- Communication records such as emails, messages, feedback, complaints, and service notes.
- Technical data where relevant, such as basic device or browser information collected through our administrative systems.
We do not intentionally collect special category data unless it is necessary and you have provided it voluntarily, for example when sharing access or safety information relevant to the service. If such data is received, it is processed only where lawful and necessary.
3. How We Use Personal Data
We use personal data for the following purposes:
- To respond to enquiries and provide quotations.
- To schedule, manage, and deliver oven cleaning services.
- To communicate with you about appointments, service updates, and operational matters.
- To process payments, issue receipts, and maintain financial records.
- To handle complaints, disputes, and customer support requests.
- To maintain internal records and improve service quality.
- To comply with legal, tax, accounting, and regulatory obligations.
We only collect data that is relevant and necessary for these purposes. We do not sell personal data, and we do not use your data for unrelated purposes without informing you where required.
4. Lawful Basis for Processing
Under UK GDPR, we must have a lawful basis for every use of personal data. Oven Cleaning Kennington relies on the following lawful bases:
Contract
We process personal data where it is necessary to perform a contract with you or to take steps at your request before entering into a contract. This includes arranging appointments, completing the service, and handling payments.
Legitimate Interests
We may process personal data where it is necessary for our legitimate business interests, provided that your rights and freedoms do not override those interests. This may include managing customer relationships, improving service standards, keeping records, and protecting our business from fraud or misuse.
Legal Obligation
We may process personal data when required to comply with legal obligations, including tax rules, accounting requirements, insurance obligations, and lawful requests from authorities.
Consent
In limited cases, we may rely on your consent, for example where consent is the most appropriate basis for a particular type of optional communication or data use. Where we rely on consent, you may withdraw it at any time.
5. How We Share Personal Data
We may share personal data with trusted third parties who help us deliver and manage our services. These parties act as processors or independent controllers, depending on the service provided. We only share the minimum information necessary and require appropriate safeguards.
Processors We May Use
- Payment processors to handle secure payment transactions.
- Booking and administration systems used to manage appointments and customer records.
- Email and communication providers to send service-related messages.
- IT and cloud hosting providers that store or support our business systems.
- Accountants or professional advisers where necessary for tax, legal, or business compliance.
These processors are required to process personal data only on our instructions, keep it secure, and use it only for the agreed purpose. We may also disclose personal data if required by law, court order, or other lawful request from a public authority.
6. Data Retention
We keep personal data only for as long as necessary to fulfil the purposes described in this policy, and to meet legal, accounting, or reporting requirements. Retention periods depend on the type of data and the reason it is held.
- Customer service and booking records are generally retained for a period needed to manage the relationship and resolve any follow-up issues.
- Financial and invoice records are retained in line with tax and accounting obligations.
- Complaint or dispute records may be kept longer where needed to defend legal claims or handle ongoing issues.
When personal data is no longer required, it is securely deleted or anonymised. We do not keep data indefinitely unless there is a valid legal or operational reason.
7. Data Security
We use appropriate technical and organisational measures to protect personal data from loss, misuse, unauthorised access, alteration, or disclosure. These measures may include restricted access, secure storage, password protection, and staff awareness procedures. Although no system is completely secure, we work to maintain a high level of protection for all data we handle.
8. International Transfers
Where personal data is transferred outside the United Kingdom, we will ensure that suitable safeguards are in place, such as an adequacy decision or approved contractual protections. We only transfer data where necessary and where the receiving organisation can provide an appropriate level of protection.
9. Your Rights
Under data protection law, you have a number of rights in relation to your personal data. These rights may apply depending on the circumstances and the lawful basis for processing.
- Right of access – you can request a copy of the personal data we hold about you.
- Right to rectification – you can ask us to correct inaccurate or incomplete data.
- Right to erasure – you can request deletion of your data in certain cases.
- Right to restrict processing – you can ask us to limit how we use your data in certain situations.
- Right to data portability – you may request your data in a structured, commonly used format where applicable.
- Right to object – you can object to processing based on legitimate interests and to direct marketing, where relevant.
- Right to withdraw consent – if we rely on consent, you can withdraw it at any time.
Important: exercising these rights may be subject to legal exceptions. For example, we may need to retain certain records to comply with tax or contractual obligations.
10. Children’s Data
Our services are intended for adults arranging domestic or property-related cleaning services. We do not knowingly collect personal data from children. If we become aware that we have inadvertently collected a child’s personal data, we will take appropriate steps to delete it unless retention is legally required.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our services, legal obligations, or data handling practices. Any updates will be effective when published in the revised version. We encourage customers to review this policy periodically so they remain informed about how their data is used.
12. How We Meet GDPR Principles
We aim to follow the core principles of data protection law:
- Lawfulness, fairness, and transparency in how we collect and use data.
- Purpose limitation so data is used only for clear and legitimate reasons.
- Data minimisation so we only collect what we need.
- Accuracy so records are kept up to date where possible.
- Storage limitation so data is not retained longer than necessary.
- Integrity and confidentiality through secure handling and access controls.
This approach helps ensure that customers can trust Oven Cleaning Kennington to handle their information responsibly and in line with the law.
13. Summary of Our Commitment
Oven Cleaning Kennington is committed to protecting your personal data and respecting your privacy. We collect only the information needed to provide our services, use it on a lawful basis, retain it only for as long as necessary, and share it only with trusted processors or where legally required. If you are a customer in the area, this policy applies to you and explains how your information is handled whenever you use our services.
This policy is intended to provide clear, accessible information about our data practices and to support compliance with applicable UK data protection laws.