Privacy Policy - Tree Surgeons Regentspark
This Privacy Policy explains how Tree Surgeons Regentspark collects, uses, stores, shares, and protects personal data when providing services to customers in the Regentspark area. It applies to all Tree Surgeons Regentspark customers in the area, including prospective customers, existing customers, and individuals who communicate with us about tree surgery, maintenance, inspections, removals, pruning, emergency work, and related services. We are committed to handling personal data in a lawful, fair, and transparent manner in accordance with the UK GDPR and the Data Protection Act 2018.
1. Who this policy applies to
This policy applies to all Tree Surgeons Regentspark customers in area and to anyone whose personal data we process in connection with our services. This includes property owners, tenants, business clients, site representatives, suppliers, contractors, and individuals who may be named in service arrangements, access instructions, or safety records. By using our services or interacting with us, you acknowledge that your personal data may be processed as described in this policy.
2. What personal data we collect
We only collect personal data that is relevant to delivering our services, meeting legal obligations, and managing customer relationships. The types of data we may collect include:
- Identity data: name, title, and any identification details needed for service administration.
- Contact data: address, email address, telephone number, and preferred communication method.
- Property and site data: location details, access notes, photographs, tree condition reports, and service history.
- Contract and billing data: service requests, quotations, invoices, payment records, and transaction references.
- Technical data: limited device or usage information if we receive enquiries through digital systems, where necessary for security or troubleshooting.
- Safety and incident data: records relating to hazards, site risks, accidents, or insurance-related matters.
- Communication data: correspondence, notes from calls or messages, and feedback relating to services.
We do not intentionally collect special category data unless it is strictly necessary and lawful, for example where it is included in health and safety information needed to protect individuals on-site.
3. How we use your personal data
We use personal data for specific and legitimate purposes connected to our work as tree surgeons. These purposes include:
- responding to enquiries and preparing quotations;
- booking and delivering services;
- assessing site conditions and carrying out risk management;
- maintaining customer records and job histories;
- issuing invoices and managing payments;
- handling complaints, feedback, and aftercare;
- meeting insurance, legal, tax, and regulatory obligations;
- protecting staff, customers, members of the public, and property;
- improving our service quality and internal processes.
We will only use personal data in ways that are compatible with the reason it was collected, unless we have a lawful basis to use it for another purpose.
4. Lawful basis for processing
Under data protection law, we must have a lawful basis for each type of processing. Tree Surgeons Regentspark may rely on the following bases:
Contract
We process data where it is necessary to enter into or perform a contract with you. This includes providing quotations, arranging services, completing work, issuing invoices, and managing customer accounts.
Legal obligation
We process data where required to comply with legal obligations, such as tax recordkeeping, health and safety requirements, or other statutory duties.
Legitimate interests
We may process data where it is necessary for our legitimate business interests and where those interests are not overridden by your rights and freedoms. This may include service administration, internal recordkeeping, fraud prevention, quality assurance, and resolving disputes.
Consent
In limited cases, we may ask for consent, for example for certain marketing communications or where consent is otherwise the most appropriate lawful basis. Where we rely on consent, you may withdraw it at any time.
Vital interests
In rare situations, we may process personal data to protect someone’s vital interests, such as during a serious emergency or urgent safety issue.
5. Sharing your data and processors
We may share personal data with trusted third parties only when necessary and only to the extent required for business operations, legal compliance, or service delivery. These third parties may act as processors or, in some cases, independent controllers.
Examples of processors may include:
- IT and cloud storage providers;
- payment processors and accounting systems;
- customer relationship and scheduling tools;
- email and communication service providers;
- professional advisers, including legal, insurance, or financial advisers where they process data on our behalf;
- subcontractors assisting with specific operational tasks under our instructions.
Where a processor is used, we ensure appropriate written contracts are in place requiring them to protect personal data, act only on our instructions, and implement suitable security measures. We do not sell personal data. We do not share more data than is necessary for the relevant purpose.
We may also disclose data if required by law, court order, regulatory request, or to prevent or detect crime, fraud, or misuse of our services.
6. Data retention
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including any legal, accounting, tax, or insurance requirements. Retention periods may vary depending on the nature of the record.
In general:
- customer enquiry records may be kept for a limited period if no service is booked;
- job records, invoices, and payment information may be kept for several years to meet accounting and tax obligations;
- safety records, incident reports, and insurance-related records may be kept for longer where required;
- communications may be retained for as long as needed to manage the customer relationship or resolve disputes.
When data is no longer required, we will securely delete, anonymise, or archive it in line with our retention practices. Where appropriate, we may retain limited data to establish, exercise, or defend legal claims.
7. Data security
We take appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration, or disclosure. These measures may include access controls, secure storage, staff confidentiality obligations, and regular review of data handling practices. Although no system is completely secure, we work to keep personal data protected and to reduce the risk of incidents.
8. Your rights
Under data protection law, you have a number of rights in relation to your personal data. These rights may apply depending on the legal basis for processing and the circumstances of your request.
- Right of access: you may request a copy of the personal data we hold about you.
- Right to rectification: you may ask us to correct inaccurate or incomplete data.
- Right to erasure: you may request deletion of your data in certain circumstances.
- Right to restriction: you may ask us to limit how we use your data in certain situations.
- Right to object: you may object to processing based on legitimate interests or direct marketing.
- Right to data portability: you may request transfer of certain data in a structured, commonly used format.
- Right to withdraw consent: where processing is based on consent, you may withdraw it at any time.
Please note that some rights are not absolute and may be subject to legal or contractual limitations. We may need to retain certain data for compliance, safety, or recordkeeping purposes even after a request is made.
9. International transfers
Where personal data is transferred outside the UK, we will ensure appropriate safeguards are in place to protect it. These safeguards may include adequacy regulations, standard contractual clauses, or other lawful transfer mechanisms recognised under applicable data protection law.
10. Children’s data
Our services are generally directed to adults and business or property contacts. We do not knowingly collect personal data from children unless it is incidental and necessary for service delivery or site safety. If we become aware that we have collected data from a child without a lawful basis, we will take reasonable steps to delete it.
11. Changes to this policy
We may update this Privacy Policy from time to time to reflect changes in our services, legal obligations, or data handling practices. Any updated version will apply from the date it is published or otherwise communicated. We encourage customers in the Regentspark area to review this policy periodically so they remain informed about how personal data is handled.
12. Our commitment
Tree Surgeons Regentspark is committed to processing personal data responsibly, securely, and transparently. We aim to collect only the information we need, use it fairly, keep it no longer than necessary, and respect your rights at all times. This policy applies to all Tree Surgeons Regentspark customers in area and forms part of our commitment to lawful and trustworthy service delivery.