Privacy Policy - Tree Surgeons Hanwell
This Privacy Policy explains how Tree Surgeons Hanwell collects, uses, stores, shares, and protects personal data when providing tree surgery and related arboricultural services. It applies to all Tree Surgeons Hanwell customers in the area, including current, former, and prospective customers, as well as anyone who contacts us in connection with our services. We are committed to handling personal information in a lawful, fair, and transparent manner in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
By engaging our services, requesting a quotation, making an enquiry, or otherwise interacting with Tree Surgeons Hanwell, you acknowledge that your personal data may be processed as described in this policy. We only collect and use personal data where we have a valid legal reason to do so, and we take reasonable steps to ensure that the information is kept secure and used appropriately.
1. Data We Collect
Tree Surgeons Hanwell may collect different types of personal data depending on how you interact with us and which services you request. The information we process may include:
- Identity information such as your name, title, and where relevant, business name.
- Contact details such as postal address, email address, and telephone number.
- Property and service information relating to the location of the work, access notes, site details, and service requirements.
- Communication records including enquiries, correspondence, appointment details, quotes, complaints, and feedback.
- Transaction data such as invoices, payment status, and service history.
- Technical information if you contact us through electronic systems, including limited device or usage data necessary for security and record-keeping.
- Photographs or site images where required to assess work, document completed services, or support health and safety records.
We generally do not seek to collect special category data. If such information is ever provided to us unintentionally, we will handle it with appropriate care and only where there is a lawful basis to do so.
2. How We Use Personal Data
We use personal data only for specific and legitimate purposes connected to our services. These may include:
- responding to enquiries and providing quotations;
- arranging site visits, surveys, and service appointments;
- delivering tree surgery, pruning, removal, maintenance, and related services;
- managing customer records and service history;
- processing payments and maintaining accounting records;
- handling complaints, claims, and aftercare;
- meeting legal, regulatory, tax, and insurance obligations;
- improving our services, processes, and customer experience;
- protecting the security and integrity of our operations.
We will not use your personal information for purposes that are incompatible with the reasons it was collected, unless we are required or permitted to do so by law.
3. Lawful Basis for Processing
Under data protection law, we must have a lawful basis for processing your personal data. Tree Surgeons Hanwell relies on the following lawful bases where appropriate:
Performance of a Contract
We process personal data when it is necessary to provide a quote, make arrangements, carry out contracted services, issue invoices, or manage related customer administration.
Legal Obligation
We may need to process and retain certain information to comply with legal obligations, including tax, accounting, health and safety, insurance, and record-keeping requirements.
Legitimate Interests
We may process personal data where it is reasonably necessary for our legitimate business interests, provided those interests are not overridden by your rights and freedoms. This may include managing customer enquiries, service planning, security, business administration, and resolving disputes.
Consent
In limited situations, we may rely on your consent, for example where you choose to receive certain optional communications. Where consent is used as the lawful basis, you have the right to withdraw it at any time.
We assess the appropriate legal basis for each type of processing activity and aim to keep our use of personal data proportionate and limited to what is necessary.
4. Data Sharing and Processors
We do not sell personal data. However, we may share information with trusted third parties who help us provide services or meet legal and business obligations. These third parties act as processors or independent controllers depending on the nature of the service they provide.
Examples of processors and service providers may include:
- Accounting and bookkeeping providers that support invoicing, payment records, and financial administration.
- IT and cloud storage providers that host data, maintain systems, or provide backup and security services.
- Communication service providers that assist with email, messaging, or telephone administration.
- Professional advisers such as insurers, legal advisers, and tax professionals where necessary.
- Subcontractors or specialist service providers where required to complete a project safely and effectively.
Where processors handle personal data on our behalf, we ensure that they are subject to appropriate contractual obligations, including confidentiality, security, and data protection requirements. We only share the minimum data needed for the relevant purpose.
We may also disclose personal data if required to do so by law, court order, regulatory authority, or where necessary to protect our rights, property, safety, or the rights and safety of others.
5. Data Retention
Tree Surgeons Hanwell retains personal data only for as long as necessary to fulfil the purposes for which it was collected, including meeting legal, accounting, tax, and insurance obligations. Retention periods may vary depending on the type of record and the reason for processing.
In general, we may keep:
- quotation and enquiry records for a reasonable period to manage follow-up, disputes, or future requests;
- customer service and project records for the duration of the service relationship and a period afterwards for administrative or legal purposes;
- financial and tax records for the period required by law;
- health and safety records for as long as necessary to demonstrate compliance and manage risk;
- general correspondence for a limited time unless it forms part of an active matter or legal requirement.
When personal data is no longer needed, it will be securely deleted, anonymised, or archived in accordance with our retention procedures.
6. Data Security
We use appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration, or disclosure. These measures are designed to reflect the nature of the data and the risks involved in processing it.
While we work hard to protect your information, no system can be guaranteed to be completely secure. If a personal data incident occurs, we will respond in line with our legal obligations and take steps to reduce any risk to affected individuals.
7. Your Rights
As a data subject under UK GDPR, you have a number of rights in relation to your personal data. These may include:
- The right of access to obtain a copy of the personal data we hold about you.
- The right to rectification to correct inaccurate or incomplete information.
- The right to erasure in certain circumstances, sometimes called the right to be forgotten.
- The right to restrict processing in certain situations.
- The right to object to processing based on legitimate interests or direct marketing, where applicable.
- The right to data portability for information processed by automated means and based on consent or contract, where the law applies.
- The right to withdraw consent at any time where we rely on consent.
- The right to complain to the relevant supervisory authority if you believe your data has been handled improperly.
We will respond to valid rights requests in accordance with applicable data protection law. In some cases, we may need to verify your identity or explain why a particular request cannot be fully met, for example where retention is required by law.
8. International Transfers
If any personal data is transferred outside the UK, we will take steps to ensure that it is protected by appropriate safeguards and that any transfer complies with applicable legal requirements. We only use service providers where adequate protections are in place.
9. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our services, legal obligations, or data handling practices. Any revised version will apply from the date it is published or otherwise communicated. We encourage customers to review this policy periodically to stay informed about how personal data is processed.
10. Summary of Our Commitment
Tree Surgeons Hanwell respects the privacy of every customer and handles personal information with care. Our approach is based on lawfulness, transparency, data minimisation, security, and accountability. We only collect what we need, use it for clear business and legal purposes, retain it for no longer than necessary, and safeguard it through appropriate controls. This policy applies to all Tree Surgeons Hanwell customers in area and is intended to explain our practices in plain, accessible language.
By using our services, you confirm that you have read and understood this Privacy Policy.