Privacy Policy - Landscaping Mottingham
Last updated: This Privacy Policy explains how Landscaping Mottingham collects, uses, stores, and protects personal data when providing landscaping and related services. It applies to all Landscaping Mottingham customers in the area, including prospective customers, current customers, and former customers whose information we retain for business, legal, or compliance purposes.
1. Introduction
Landscaping Mottingham is committed to protecting your privacy and handling personal information in a lawful, fair, and transparent manner. This Privacy Policy has been prepared in line with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. It explains what information we collect, why we collect it, how long we keep it, who we may share it with, and the rights you have in relation to your personal data.
By engaging our services, requesting a quotation, making an enquiry, or otherwise interacting with us, you acknowledge that we may process your personal data as described in this policy.
2. Personal Data We Collect
We collect only the information necessary to provide our services effectively and manage our business. Depending on your interaction with us, the personal data we may collect includes:
- Identity details: your name and, where relevant, the name of your business or property manager.
- Contact details: address, email address, phone number, and service location.
- Service information: details of the landscaping work requested or completed, site notes, preferences, and job history.
- Billing and payment information: invoice details, payment status, and transaction records.
- Communication records: emails, messages, call notes, complaint records, and other correspondence.
- Technical information: limited data collected through our systems, such as basic usage logs, if applicable.
- Photographs and site images: before, during, or after works, where needed for quoting, planning, quality control, or evidence of work completed.
We do not intentionally collect special category data unless it is strictly necessary and you have made such information available to us. If we ever need to process sensitive data, we will ensure a valid lawful basis is in place and apply additional safeguards.
3. How We Use Your Data
We use personal data for the following purposes:
- to respond to enquiries and provide quotations;
- to plan, carry out, and manage landscaping services;
- to communicate about appointments, schedules, updates, and service changes;
- to issue invoices, process payments, and keep accounting records;
- to handle complaints, disputes, warranty matters, and service follow-up;
- to maintain internal records and improve our services;
- to comply with legal, tax, accounting, and regulatory obligations;
- to defend or establish legal claims where necessary.
We aim to ensure that any processing is adequate, relevant, and limited to what is necessary for the stated purpose.
4. Lawful Basis for Processing
Under GDPR, we must have a lawful basis before processing your personal data. Landscaping Mottingham relies on the following lawful bases:
Contract
We process your data when it is necessary to perform a contract with you or to take steps at your request before entering into a contract. This includes preparing quotes, arranging services, and managing active jobs.
Legal Obligation
We may process and retain data where necessary to comply with legal obligations, including tax, accounting, and record-keeping requirements.
Legitimate Interests
We may process data where it is necessary for our legitimate business interests, provided these interests are not overridden by your rights and freedoms. Examples include maintaining customer records, improving service delivery, preventing fraud, and managing business administration.
Consent
In limited cases, we may rely on your consent, for example if we need permission to use certain images for non-essential purposes. Where consent is used, you may withdraw it at any time. This will not affect processing already carried out before withdrawal.
5. Data Sharing and Processors
We do not sell personal data. However, we may share your information with trusted third parties who act as processors or independent controllers where necessary to deliver our services or meet legal obligations.
Processors may include:
- IT and cloud service providers: for secure storage, email, and document management.
- Accounting and bookkeeping providers: for invoicing, financial reporting, and tax compliance.
- Payment service providers: to process card or electronic payments.
- Professional advisers: such as accountants, insurers, or legal advisers where required.
- Subcontractors or suppliers: where necessary to complete a project or coordinate site works.
Where we use processors, we take steps to ensure they provide sufficient guarantees of security and process data only on our documented instructions, as required by data protection law. We may also disclose information where required by law, court order, or regulatory authority.
6. International Transfers
Where personal data is transferred outside the United Kingdom or the European Economic Area, we will ensure appropriate safeguards are in place. These may include adequacy regulations, standard contractual clauses, or other lawful transfer mechanisms. We take reasonable steps to protect your data wherever it is processed.
7. Data Retention
We keep personal data only for as long as necessary for the purposes for which it was collected, or for longer where required by law. Our retention periods are based on the type of information, the nature of our relationship with you, and legal obligations.
- Customer and project records: kept for the duration of the service relationship and for a reasonable period afterwards.
- Financial and tax records: retained for the period required by law, typically six years or longer where necessary.
- Correspondence and complaints: retained as long as needed to manage the matter and any follow-up issues.
- Photographs and site records: kept only as long as needed for project administration, quality control, or evidence of work completed.
When personal data is no longer required, we will delete it securely or anonymise it so that it can no longer identify you.
8. Data Security
We use appropriate technical and organisational measures to protect personal data against unauthorised access, accidental loss, alteration, or disclosure. These measures may include access controls, secure storage, password protection, and staff awareness procedures. While no system can be guaranteed completely secure, we take data security seriously and review our safeguards regularly.
9. Your Rights
Under data protection law, you have a number of rights in relation to your personal data. These rights may be subject to conditions and exemptions.
- Right of access: you may request a copy of the personal data we hold about you.
- Right to rectification: you may ask us to correct inaccurate or incomplete data.
- Right to erasure: you may request deletion of your data in certain circumstances.
- Right to restriction: you may ask us to limit how we use your data in certain situations.
- Right to data portability: you may request that we provide certain data in a structured, commonly used format where applicable.
- Right to object: you may object to processing based on legitimate interests, including direct marketing where applicable.
- Right to withdraw consent: where processing is based on consent, you may withdraw it at any time.
Please note that some rights may not apply where we must retain or process information to comply with legal obligations, establish or defend legal claims, or complete a contract.
10. How to Exercise Your Rights
If you wish to exercise any of your rights, we will review your request and respond within the time limits set by law. We may need to verify your identity before taking action. This is to protect your personal data and prevent unauthorised disclosure.
If you believe any information we hold is inaccurate or that we are not handling your data properly, you should let us know so we can investigate and correct it where appropriate.
11. Children’s Data
Our services are generally intended for adults and property owners, occupiers, or business representatives. We do not knowingly collect personal data from children unless it is necessary in connection with a service and is provided by an adult acting on their behalf. If we become aware that we have collected such information without an appropriate lawful basis, we will take steps to delete it.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our services, legal obligations, or data processing practices. Any updates will take effect when published or otherwise communicated. We encourage you to review this policy periodically so that you remain informed about how we protect your personal data.
13. Complaints
If you have concerns about how your data is handled, please raise them with us so we can address the issue. You also have the right to complain to the relevant data protection authority if you believe your rights have been infringed. In the UK, this is the Information Commissioner’s Office (ICO).
14. Summary of Our Commitment
Landscaping Mottingham is committed to processing personal data responsibly and only for legitimate business and legal purposes. We collect only the information needed to provide landscaping services, we keep it only as long as necessary, and we apply appropriate safeguards when sharing it with trusted processors. We respect your rights and aim to ensure that all personal data is handled with care, transparency, and compliance.
In short: your privacy matters to us, and we will use your information fairly, securely, and in accordance with applicable data protection laws.