This policy is set to explain how and why we collect any personal data about you. As of May 25th, 2018, the Data Protection Act as we all know it, is changing its rules to the General Data Protection Regulation. This is to protect ourselves and our customers’ information and how all information is stored so it doesn’t fall into the wrong hands.
WHAT INFORMATION ABOUT YOU DO WE NEED FOR OUR RECORDS?
- Contact Details
- Full Name
- Phone Numbers
- Full Address including town, county and postcode
- Email Address
We will also keep information such as your application form which includes what jobs you want doing, the frequency of these and price(s) quoted. If any information changes at a later date we will update as needed and require you to agree to this. We also keep copies of invoices, services, contracts, comments and feedback. All the physical information we hold is kept in a safe and secure way in our lockable safe, the digital information is kept on a private secure server.
WHY DO WE NEED ALL THOSE DETAILS?
We require the above information to ensure that it is safe and agreed by you for us to carry out the service(s) you require and to also ensure that we are working in adherence to our insurance policies. Our lawful basis for processing this personal information is ‘contract’, this means that we have a legal reason to ask you for your data because we need it for contractual reasons. In order for us to fulfil our part of the contract (carry out services). You must fulfil your part of the contract (share your personal information).
You do not have to share your personal data with us, but if you do not, we cannot, unfortunately, offer you any services from Guru Cleaning Properties Ltd. You have the right at any time to ask for access to any personal information that the Cleaning Gurus Website holds, and a copy of all information will be given to you within one month of your request either by email, phone or post.
HOW LONG DO WE KEEP YOUR INFORMATION?
Your information will be kept on our database/stored for indefinitely after the date of your last service. When the time comes to delete the information, we hold about you we will dispose of these details in a permanent way by deleting from our servers and destroying any physical documentation with your information by shredding.
Marketing: With the information, you have given, we would like to send you details on any offers, cards, competitions or services that we provide. Please be aware you do NOT need to agree to this, for your services to commence.
If you do agree to have contact with us for marketing purposes, then please tick all of the relevant boxes in the compliance form to verify your consent.
WE WILL NOT SHARE YOUR INFORMATION WITH ANYONE OUTSIDE OF THE BUSINESS UNLESS YOU GIVE YOUR PERMISSION TO DO SO.
INTERNATIONAL TRANSFERS OF PERSONAL DATA
We are an international company with offices in UK and Macedonia. By using our services you also authorise us to process your data wherever we do business.
All information is stored in a server locally in London UK and the data is shared between our offices within London and Macedonia via a secured protocol. We have in place a level of security which is appropriate and the possibility of harm as a result of a breach of security has been minimized.
All payments made through our website are processed by our handpicked third-party payment processors. PayPal and GoCardless. These payments are encrypted secured by using Secure Sockets Layer technology. We do not personally store any of your credit or debit card information in connection with your payments.
It is our policy to be fair and open regarding the actions taken in informing the affected parties when it comes to breaches of personal data. In compliance with GDPR, if there is a breach of personal data which is known to have occurred which could result in breaking the rights and freedoms of clients or individuals, the relevant authority will be informed within 72 hours. This will be a part of our Information Security Incident Response Procedure that covers the overall process of handling any information security incidents.
THE RIGHT TO ACCESS, CHANGE, DELETE, RESTRICT, OBJECT, REQUEST A COPY
You have rights regarding the personal data we store on your behalf. These are:
- access to a copy of your personal data;
- object to processing that you object to;
- stop receiving direct marketing material;
- object to decisions being taken by automated means;
- have inaccurate personal data rectified, blocked, erased or destroyed;
- lodge a complaint with the Information Commissioner’s Office;
Should you ever wish to exercise any of these rights, please fill in this contact form.
WHO CAN I COMPLAIN TO IF I FEEL MY DATA IS NOT HANDLED CORRECTLY?
You have a right to complain if you do not feel we are handling your data correctly, please contact us by the contact details above. If you are unhappy with our response you should then contact the ICO (independent commissioner’s office) by contacting them or using the following web page https://ico.org.uk/concerns/