Privacy Policy - Tree Surgeons Wanstead
This Privacy Policy explains how Tree Surgeons Wanstead collects, uses, stores, shares, and protects personal data in connection with the services we provide. It applies to all Tree Surgeons Wanstead customers in the area, including individuals who request quotes, make bookings, receive tree surgery services, or otherwise interact with us in relation to our work.
We are committed to handling personal data in a lawful, fair, and transparent manner in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We only process personal data where we have a valid legal basis and we take appropriate steps to keep it secure.
1. Information We Collect
We may collect and process personal data that you provide directly to us, data created through our service relationship, and limited data from third parties where necessary for delivering our services.
Information you provide to us
- Identity details such as your name.
- Contact details such as address, email address, and telephone number.
- Service information such as property details, tree location, access notes, and descriptions of the work required.
- Billing and payment information such as invoice details, payment status, and records of transactions.
- Correspondence including messages, call notes, and any feedback or complaints you send to us.
Information we collect automatically or generate
- Job records including dates of visits, work completed, quotations provided, and service history.
- Technical data if you interact with our digital systems, such as basic device or browser information where applicable.
- Security records such as site access notes or health and safety observations relevant to the work.
We do not intentionally collect special category data unless it is necessary and lawful to do so. If such data is ever provided to us, for example in relation to access needs or safety considerations, we will only process it where a lawful basis exists and where additional safeguards apply.
2. How We Use Your Data
We use personal data for the following purposes:
- to provide quotations and assess requested services;
- to carry out tree surgery, maintenance, and related work;
- to manage bookings, scheduling, and site visits;
- to issue invoices, process payments, and maintain financial records;
- to communicate about services, changes, or follow-up matters;
- to handle complaints, disputes, and insurance-related matters;
- to maintain business records and service history;
- to comply with legal and regulatory obligations;
- to protect against fraud, misuse, or security incidents;
- to improve our services and operational efficiency.
We only process data that is relevant and necessary for these purposes. We do not sell your personal data.
3. Lawful Basis for Processing
Under data protection law, we must have a lawful basis before processing personal data. Depending on the circumstances, we rely on one or more of the following:
- Contract – processing is necessary to provide a quote, carry out services, manage bookings, or fulfil an agreement with you.
- Legal obligation – processing is necessary to comply with tax, accounting, health and safety, insurance, or other legal requirements.
- Legitimate interests – processing is necessary for our legitimate business interests, such as managing our operations, keeping records, preventing fraud, and improving service delivery, provided these interests do not override your rights and freedoms.
- Consent – in limited cases where consent is the appropriate basis, we will ask for it clearly and you may withdraw it at any time.
Where we process personal data based on legitimate interests, we consider whether the processing is necessary and whether there is a less intrusive way to achieve the same result. We also balance our interests against your privacy rights.
4. Sharing Your Information
We may share personal data with trusted third parties where necessary for business operations, legal compliance, or service delivery. These third parties act as processors or independent controllers depending on the nature of the relationship.
Examples of processors may include:
- accountants and bookkeeping providers;
- payment service providers;
- IT and cloud storage providers;
- customer administration and record-keeping systems;
- professional advisors such as insurers, legal advisers, or health and safety consultants.
Where a processor acts on our behalf, they are required to handle personal data only according to our instructions, to keep it secure, and to use it only for the contracted purpose. We do not allow processors to use your data for their own unrelated purposes.
We may also disclose personal data if required by law, by a court order, or to protect our legal rights, safety, property, or the rights of others.
5. Data Retention
We keep personal data only for as long as necessary for the purposes for which it was collected, including any legal, accounting, or reporting requirements.
- Quotation and enquiry records may be kept for a reasonable period to manage enquiries and future service requests.
- Customer and job records are retained for as long as needed to provide services, manage follow-up matters, and maintain service history.
- Financial and tax records are retained for the period required by law.
- Complaint or dispute records may be retained longer where necessary to resolve issues or defend legal claims.
When data is no longer needed, we will securely delete, anonymise, or archive it in a way that prevents unnecessary use. Retention periods may vary depending on the category of data and the purpose of processing.
6. Data Security
We use appropriate technical and organisational measures to protect personal data against unauthorised access, loss, alteration, or disclosure. These measures may include access controls, secure storage, limited staff access, and data handling procedures designed to reduce risk.
Although we take reasonable steps to protect your information, no system can be completely secure. If a data breach occurs, we will assess the risk and take any steps required under applicable law.
7. Your Rights
Depending on the circumstances and the legal basis for processing, you have a number of rights under data protection law. These rights may include:
- Right of access – you can request a copy of the personal data we hold about you.
- Right to rectification – you can ask us to correct inaccurate or incomplete data.
- Right to erasure – in some cases, you can ask us to delete your data.
- Right to restriction – you can ask us to limit how we use your data in certain situations.
- Right to object – you can object to processing based on legitimate interests.
- Right to data portability – where applicable, you may request certain data in a portable format.
- Right to withdraw consent – where processing is based on consent, you may withdraw it at any time.
Note: These rights are not absolute. In some cases, we may be entitled or required to continue processing data, for example to comply with legal obligations or establish, exercise, or defend legal claims.
If you wish to exercise any of your rights, we will respond in accordance with applicable law and within the required timeframes. We may need to verify your identity before responding to your request.
8. Children’s Data
Our services are generally intended for adults and business or household property owners. We do not knowingly collect personal data from children unless it is necessary for a specific service-related reason and is provided lawfully by an appropriate adult or guardian.
9. International Transfers
Where personal data is transferred outside the UK, we will ensure that appropriate safeguards are in place so that your information remains protected to a standard consistent with UK data protection law. This may include approved contractual protections or transfers to countries with recognised adequate protection.
10. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our services, legal obligations, or data handling practices. Any updated version will apply from the date it is published or otherwise communicated. We encourage customers to review this policy periodically to stay informed about how personal data is used.
11. Summary of Our Approach
Tree Surgeons Wanstead is committed to treating personal data with care, accountability, and respect. We collect only the information necessary to deliver our services, use it for clear and lawful purposes, retain it only as long as needed, and share it only with trusted processors or where required by law. We also recognise and support your rights under data protection law.
If you are a customer in the area, this policy applies to you whenever you interact with us in relation to quotations, tree surgery work, maintenance, billing, or aftercare. Our goal is to ensure that your personal information is handled in a transparent and responsible way at all times.