Privacy Policy - Harrow Removals
This Privacy Policy explains how Harrow Removals collects, uses, stores, shares, and protects personal data. It applies to all Harrow Removals customers in the area, including prospective customers, current customers, and individuals who enquire about our removal services. We are committed to handling personal data in a lawful, fair, and transparent manner in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
1. Who We Are
Harrow Removals provides removal and related moving services for residential and commercial customers. In the course of delivering these services, we may act as a data controller for personal information that you provide to us, and in some cases as a data processor where we handle data on behalf of another party. This policy explains the circumstances in which we collect and use personal data and the rights available to you as a data subject.
2. Personal Data We Collect
We collect only the data that is necessary for us to respond to enquiries, provide quotations, arrange removals, and manage customer relationships. The categories of data we may collect include:
- Identity information such as your name and title.
- Contact details including address, email address, and telephone number.
- Service information such as property details, access arrangements, moving dates, inventory information, and special handling requirements.
- Payment and billing information where needed to process invoices and payments.
- Communications that you send to us by phone, email, form submission, or other channels.
- Technical data such as IP address, browser type, device information, and usage data if you interact with our digital systems.
- Verification and dispute information if needed to confirm identity, resolve complaints, or handle insurance or legal claims.
We do not intentionally collect special category data unless you provide it voluntarily and it is necessary for a specific service request. If such information is shared, we will handle it with additional care and only where there is a lawful basis to do so.
3. How We Use Your Data
We use personal data to operate our business and provide services effectively. Typical uses include:
- Responding to enquiries and providing quotes.
- Planning, scheduling, and carrying out removals.
- Managing customer accounts, bookings, and service updates.
- Processing payments and maintaining financial records.
- Handling complaints, claims, and customer support requests.
- Meeting legal, accounting, tax, and insurance obligations.
- Improving our services, internal operations, and customer experience.
- Protecting our staff, customers, property, and business interests.
We will only use your information for the purposes described in this policy or for compatible purposes that you would reasonably expect.
4. Lawful Basis for Processing
Under UK GDPR, we must have a lawful basis for each processing activity. Harrow Removals may rely on one or more of the following lawful bases:
Contract
We process data where it is necessary to enter into or perform a contract with you. This includes providing quotes, arranging services, completing removals, and managing post-service matters.
Legal Obligation
We may process data where we must comply with a legal requirement, such as tax law, accounting obligations, regulatory requirements, or court orders.
Legitimate Interests
We may process data where it is necessary for our legitimate business interests, provided that those interests are not overridden by your rights and freedoms. Examples include managing our operations, preventing fraud, protecting assets, improving service quality, and maintaining records.
Consent
In limited cases, we may rely on your consent, for example where you choose to receive optional marketing communications. Where consent is used, you may withdraw it at any time.
Vital Interests
In exceptional situations, we may process personal data where it is necessary to protect someone’s life or physical safety.
5. Data Sharing and Processors
We may share personal data with trusted third parties where necessary to provide our services, comply with legal obligations, or protect our rights. When we use external service providers to process personal data on our behalf, they act as processors and are only permitted to use the data under our instructions.
Examples of processors or service providers may include:
- Payment processors used to handle card or electronic payments.
- IT and cloud service providers used to store and secure business records.
- Customer communication tools used to manage bookings and service updates.
- Accounting providers used for invoicing, bookkeeping, and tax compliance.
- Insurance or claims handlers where a claim or dispute must be assessed.
- Subcontractors or specialist partners engaged to assist with delivery of services where appropriate.
We require processors to implement appropriate security measures and to process personal data only for agreed purposes. We may also disclose information to public authorities, courts, regulators, or law enforcement where required by law.
6. International Transfers
Where personal data is transferred outside the UK, we will ensure appropriate safeguards are in place to protect it. These safeguards may include adequacy regulations, standard contractual clauses, or equivalent legal mechanisms. We will take reasonable steps to ensure that your personal data remains protected to the required standard.
7. Data Retention
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting, and reporting requirements. Retention periods vary depending on the type of information and the reason for processing.
As a general approach:
- Enquiry records may be kept for a limited period if no service is booked.
- Customer and booking records may be retained for the duration of the service relationship and for a reasonable period afterward.
- Financial and tax records are kept for the period required by law.
- Claims, disputes, and complaint records may be retained for longer where necessary to establish, exercise, or defend legal claims.
When data is no longer required, it will be securely deleted, anonymised, or archived in accordance with our retention practices.
8. Data Security
We take the security of personal data seriously and apply appropriate technical and organisational measures to protect it from unauthorised access, loss, alteration, or disclosure. These measures may include access controls, secure storage, staff training, and restricted data sharing. While no system is completely secure, we work to reduce risk and maintain strong safeguards.
9. Your Rights
Under data protection law, you have several rights in relation to your personal data. Subject to certain conditions and exceptions, these include:
- The right to be informed about how your data is used.
- The right of access to request a copy of the personal data we hold about you.
- The right to rectification to correct inaccurate or incomplete information.
- The right to erasure in certain circumstances, sometimes called the right to be forgotten.
- The right to restrict processing in certain situations.
- The right to data portability for data you provided to us where processing is based on consent or contract and carried out by automated means.
- The right to object to processing based on legitimate interests or direct marketing.
- Rights relating to automated decision-making where applicable.
If you make a request, we may need to verify your identity before responding. We aim to respond within the time limits required by law.
10. Marketing Preferences
If we send optional marketing communications, we will do so only where permitted by law. You may opt out of marketing at any time. Where you have previously given consent, you may withdraw it without affecting the lawfulness of processing carried out before withdrawal.
11. Children’s Data
Our services are intended for adults. We do not knowingly collect personal data from children unless it is incidental to providing a service requested by an adult customer and necessary for that service. If we become aware that we have collected data from a child without appropriate justification, we will take steps to delete it where required.
12. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in the law, our services, or our data handling practices. Any updated version will replace the previous version from the date it takes effect. We encourage customers to review this policy periodically so they remain informed about how their data is handled.
13. Summary of Key Principles
In summary, Harrow Removals only processes personal data where it has a valid lawful basis, uses data for clear and legitimate purposes, retains it only as long as necessary, and shares it only with trusted processors or where required by law. We aim to be transparent, secure, and accountable in every stage of handling personal data. Your rights are important to us, and we will respect them in line with applicable data protection law.
This Privacy Policy applies to all Harrow Removals customers in area.