Privacy Policy

This Privacy Policy explains how personal data is collected, used, disclosed, stored, and protected in connection with our services. It applies to all customers in the area where our services are offered and used. By engaging with our services, you acknowledge that your personal data may be processed in accordance with this Policy and applicable data protection laws, including the General Data Protection Regulation (GDPR).

1. Scope of this Policy

This Policy applies to personal data relating to identifiable individuals who use, request, or otherwise interact with our services. It covers information collected directly from customers, information generated through service use, and information obtained from third parties where permitted by law. This Policy does not apply to anonymized data that can no longer identify an individual.

2. Data We Collect

We collect only the personal data necessary to provide and improve our services, meet legal obligations, and support legitimate business operations. The categories of data may include:

  • Identity data such as name, title, and account identifiers.
  • Contact data such as email address, telephone number, and mailing address.
  • Transaction data such as service requests, purchases, billing details, and payment status.
  • Technical data such as device type, browser type, language settings, log data, and usage timestamps.
  • Communication data such as messages, feedback, complaints, and service-related correspondence.
  • Preference data such as service choices, consent settings, and communication preferences.

We do not intentionally collect special category data unless it is strictly necessary and lawful to do so. Where such processing is required, we will apply additional safeguards in accordance with GDPR.

3. How We Use Personal Data

Personal data is used for the following purposes:

  • To deliver and manage services requested by customers.
  • To process transactions, payments, and account-related activities.
  • To communicate service information, notices, and updates.
  • To improve service quality, functionality, and user experience.
  • To maintain security, prevent fraud, and detect unauthorized activity.
  • To comply with legal and regulatory obligations.
  • To establish, exercise, or defend legal claims.

We only process personal data for specified, explicit, and legitimate purposes and do not use it in ways that are incompatible with those purposes.

4. Lawful Basis for Processing

Under GDPR, we rely on one or more lawful bases for each processing activity. These may include:

  • Performance of a contract where processing is necessary to provide services, manage customer accounts, or fulfill requested actions.
  • Legal obligation where processing is required to meet tax, accounting, consumer protection, or other regulatory requirements.
  • Legitimate interests where processing is necessary for our operational, security, or business interests, provided those interests are not overridden by the rights and freedoms of individuals.
  • Consent where we rely on your freely given, specific, informed, and unambiguous consent for certain optional processing activities.

Where consent is the lawful basis, you may withdraw it at any time. Withdrawal will not affect the lawfulness of processing carried out before consent was withdrawn.

5. Data Sharing and Processors

We may share personal data with trusted third parties that act as data processors or, in some cases, as independent controllers. Processors are engaged only where necessary and are subject to written contracts that require them to process personal data in accordance with GDPR and our instructions.

Examples of processor categories may include:

  • IT and hosting providers that store or support technical infrastructure.
  • Payment service providers that handle payment-related processing.
  • Customer support providers that assist with service inquiries.
  • Analytics or diagnostics providers that help us understand service performance and usage.
  • Professional advisers such as auditors, accountants, or legal advisers where necessary.

We require processors to implement appropriate technical and organizational security measures, maintain confidentiality, and assist us in meeting our GDPR obligations. Personal data may also be disclosed where required by law, court order, or competent authority.

6. International Transfers

If personal data is transferred outside the European Economic Area or to a jurisdiction without an adequacy decision, we ensure appropriate safeguards are in place, such as standard contractual clauses or equivalent protection measures. These safeguards are designed to protect your data to a standard consistent with GDPR requirements.

7. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including service delivery, compliance with legal obligations, dispute resolution, and enforcement of agreements. Retention periods are determined by factors such as the type of data, the nature of the relationship, legal requirements, and the need to establish or defend claims.

When personal data is no longer needed, we will delete it or irreversibly anonymize it, unless retention is required by law. In some cases, limited records may be retained for accounting, audit, or compliance purposes even after the main service relationship ends.

8. Security Measures

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, accidental loss, destruction, alteration, or disclosure. These measures may include access controls, encryption where appropriate, secure storage, staff confidentiality obligations, and regular review of security practices. While no system can be guaranteed to be completely secure, we take reasonable steps to reduce risk and maintain the integrity of personal data.

9. Your Rights Under GDPR

Subject to applicable law, individuals whose personal data is processed by us have the following rights:

  • Right of access to obtain confirmation and a copy of personal data we hold about you.
  • Right to rectification to correct inaccurate or incomplete data.
  • Right to erasure to request deletion in certain circumstances.
  • Right to restriction to limit processing in specific situations.
  • Right to data portability to receive data in a structured, commonly used, machine-readable format where applicable.
  • Right to object to processing based on legitimate interests or direct marketing.
  • Right not to be subject to automated decision-making where such decisions have legal or similarly significant effects, subject to lawful exceptions.

To exercise any of these rights, individuals may submit a request through the channels made available by us. We may need to verify identity before responding to protect privacy and security. Requests will be handled without undue delay and within the time limits required by GDPR.

10. Children’s Data

Our services are not intended for children unless expressly stated otherwise. We do not knowingly collect personal data from children in circumstances where such collection would be unlawful. If we become aware that personal data has been collected in breach of this Policy, we will take appropriate steps to delete it or secure valid authorization where required.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in legal requirements, service operations, or data processing practices. When updates are made, we will provide the revised version through appropriate means. Continued use of our services after an update indicates acknowledgment of the revised Policy to the extent permitted by law.

Summary of Key Principles

We process personal data lawfully, fairly, and transparently. We collect only what is necessary, use it for clear purposes, retain it for limited periods, and share it only with authorized processors or where legally required. Individuals in the area covered by our services may exercise GDPR rights over their personal data, subject to applicable conditions and exceptions.

Call Now!
Call Now Get a Quote
Elephantandcastle Cleaners

GDPR-compliant privacy policy covering data collection, lawful basis, retention, processors, and user rights for all customers in the area.

Get a Quote

What Our Customers Say

Excellent on Google
4.9 (10)

The guys were both helpful and meticulous--really went above and beyond! Highly recommended.

Google Logo
L

Top-notch service! On-time arrival, incredible attention to detail in my bathroom and ensuite. Highly recommend and would use again.

Google Logo
C

Professional, reliable, and always responsive. Customer service is fantastic.

Google Logo
M

Thorough and professional team--amazing service. We're happy and would recommend them to anyone.

Google Logo
B

Cleaner did a stellar job. The carpet looks much better and a difficult mark was completely removed. Friendly, professional--will definitely rebook.

Google Logo
K

The professional from Cleaning Services Elephant and Castle that helps us clean our home is trustworthy, efficient, and always pleasant. I value how she remembers any details I mention and goes above and beyond. I give Cleaning Services Elephant and Castle my highest recommendation.

Google Logo
T

I'm truly impressed by Cleaners Elephant and Castle. The whole service, from booking to cleaning, was efficient and enjoyable. The staff was very attentive to detail and so friendly.

Google Logo
A

Very punctual and the entire cleaning was completed in just four hours. They were attentive and meticulous. The flat looked excellent.

Google Logo
E

Such a great experience--the home looks and smells fantastic! Immaculate floors, shiny windows, and even the out-of-the-way spots were cleaned. Would definitely recommend.

Google Logo
D

The team at ElephantandCastle-Cleaners was easy to coordinate with, turned up on time, and tackled a difficult and unpleasant job very well.

Google Logo
A

Get In Touch With Us.

Please fill out the form below to send us an email and we will get back to you as soon as possible.