Privacy Policy

Gardeners Abbey Wood Privacy Policy

This Privacy Policy explains how Gardeners Abbey Wood collects, uses, stores, and protects your personal data in accordance with the UK General Data Protection Regulation GDPR and related data protection laws. It applies to all Gardeners Abbey Wood customers and prospective customers in the Abbey Wood area and any individual who contacts us about our gardening and related services.

Data Controller

Gardeners Abbey Wood is the data controller for the personal data described in this Privacy Policy. This means we decide how and why your personal information is processed when you engage with our services in the Abbey Wood area.

Personal Data We Collect

We collect and process different categories of personal data depending on how you interact with us and which services you request. The information we may collect includes the following.

Identity and contact details, such as your name, postal address, service address if different, and any other basic contact information you choose to provide so that we can respond to you and deliver our services.

Service and contract information, including details of the gardening or related services you request, property access instructions you choose to share, visit dates and times, estimates, quotes, invoices, payment status, and communications related to your bookings.

Payment and transaction information, such as records of payments made, payment method type, amounts, dates, and invoice references. We do not store full card details when payments are processed by a payment service provider or bank.

Communication data, including the content of emails, online messages, and other correspondence with us. This may include enquiries, feedback, complaints, or other information you choose to provide.

Technical and usage information, where applicable, such as basic information about how you access and use our online presence. This may include your device type and general interaction with any online forms, but we do not seek to identify you directly from this data unless necessary.

Lawful Bases for Processing Your Data

We only process your personal data where we have a lawful basis under GDPR. Depending on the context, we may rely on one or more of the following lawful grounds.

Contract. We process personal data where it is necessary to enter into or perform a contract with you, for example to provide gardening services at your property, manage bookings, issue invoices, and communicate with you about your service.

Legal obligation. We may process certain data to comply with legal and regulatory requirements, for example record keeping for tax and accounting purposes or responding to lawful requests from authorities.

Legitimate interests. We process personal data where it is necessary for our legitimate business interests and where your interests and fundamental rights do not override those interests. This includes managing and improving our services, handling customer enquiries, recovering outstanding payments, and keeping appropriate business records.

Consent. In limited circumstances we may rely on your consent, for example where you specifically agree to receive certain optional updates or marketing communications. Where we rely on consent, you can withdraw it at any time by contacting us.

How We Use Your Personal Data

We use the personal data we collect for the following purposes.

To provide and manage our services, including arranging visits, carrying out gardening work, confirming bookings, rescheduling appointments, and communicating with you about the work to be carried out at your property.

To prepare estimates, quotes, and invoices, and to process payments and refunds as necessary to manage the financial aspects of our relationship with you.

To communicate with you, including responding to your enquiries, sending necessary service updates, seeking clarification about access or specifications, and handling feedback or complaints.

To manage our business operations, including record keeping, financial management, service planning, staff scheduling, and quality control.

To comply with legal and regulatory obligations, such as tax, accounting, and reporting requirements, and to respond to requests from government or regulatory authorities where required by law.

To protect our rights, including the prevention and detection of potential fraud or misuse of our services, and to establish, exercise, or defend legal claims if necessary.

Data Sharing and Processors

We do not sell your personal data. We only share it with third parties where necessary, where required by law, or where you have given your consent. The main categories of recipients are set out below.

Service providers and processors. We may use third party companies to help us operate our business and deliver our services. These may include providers of payment processing services, accounting and bookkeeping support, administrative support, and information technology services such as data storage and document management. These third parties act as data processors and are only permitted to process your personal data according to our instructions and for specified purposes. They are required to keep your data secure and confidential.

Professional advisers. We may share data with professional advisers, such as accountants or legal advisers, where this is necessary for our legitimate interests and to comply with our legal obligations.

Authorities and law enforcement. We may disclose personal data where we are required to do so by law or where disclosure is necessary to protect our rights or those of others, for example in connection with legal proceedings or regulatory investigations.

Other parties in connection with business changes. If we decide to restructure or transfer parts of our business, your personal data may be shared with potential buyers or other parties as part of that process, but only where appropriate safeguards are in place.

International Data Transfers

Our primary data storage and processing activities are carried out within the United Kingdom or European Economic Area. If we use any service providers located outside these areas, or if data is otherwise transferred internationally, we will ensure that appropriate safeguards are in place to protect your information in line with GDPR requirements, such as standard contractual clauses or equivalent mechanisms.

Data Retention

We keep your personal data only for as long as necessary to fulfil the purposes for which it was collected and to meet any legal, accounting, or reporting requirements.

Customer service records, including contact details, booking information, and service history, are generally retained for a period that allows us to manage our relationship with you, respond to queries, and demonstrate the performance of our services. This period may be extended where necessary in connection with legal claims or disputes.

Financial and transaction records, such as invoices and payment records, are kept for periods required by tax and accounting regulations.

Once data is no longer required, we will securely delete or anonymise it so that it can no longer be linked to an identifiable individual.

Your Data Protection Rights

As a data subject under GDPR, you have a number of rights in relation to your personal data. These rights apply to all Gardeners Abbey Wood customers and prospective customers in the Abbey Wood area, subject to certain legal limitations.

Right of access. You have the right to request confirmation of whether we process your personal data and to obtain a copy of that data, together with certain information about how it is used.

Right to rectification. You have the right to request that inaccurate or incomplete personal data is corrected or updated.

Right to erasure. In some circumstances you have the right to request that we delete your personal data, for example where it is no longer needed for the purpose for which it was collected or where you withdraw consent and there is no other legal basis for processing.

Right to restriction of processing. You can ask us to restrict the processing of your personal data in certain situations, for example while we verify its accuracy or consider an objection you have raised.

Right to object. You have the right to object to our processing of your personal data where we rely on legitimate interests as our lawful basis, including for any direct marketing activities. We will assess such objections and stop processing unless we have compelling legitimate grounds that override your interests, rights, and freedoms or where processing is necessary for legal claims.

Right to data portability. Where processing is based on consent or contract and carried out by automated means, you may have the right to receive your personal data in a structured, commonly used, machine readable format and to request that it be transmitted to another controller where technically feasible.

Right to withdraw consent. Where we rely on your consent to process personal data, you may withdraw that consent at any time. This will not affect the lawfulness of processing based on consent before its withdrawal.

To exercise any of your rights, please contact us using your usual contact channels with Gardeners Abbey Wood. We may need to verify your identity before responding to your request to protect your privacy and security.

Security of Your Personal Data

We take appropriate technical and organisational measures to protect your personal data against unauthorised access, disclosure, alteration, or loss. These measures include limiting access to personal data to those who need it for legitimate business purposes, using secure systems for storing information, and providing guidance to staff and contractors on data protection responsibilities.

Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in the law, our services, or our data processing practices. The updated version will apply from the date it is made available. We encourage you to review this Privacy Policy periodically to stay informed about how we handle your personal data.