Privacy Policy - Tree Surgeons Canarywharf

This Privacy Policy explains how Tree Surgeons Canarywharf collects, uses, stores, shares, and protects personal data relating to customers, prospective customers, and website or service users in the Canary Wharf area. This policy applies to all Tree Surgeons Canarywharf customers in the area, including individuals who enquire about our tree surgery services, request quotations, receive arboricultural work, or otherwise engage with us in connection with our business activities.

1. Introduction

We are committed to processing personal data in a lawful, fair, and transparent manner in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We recognise the importance of protecting privacy and handling personal information responsibly. This policy explains what data we collect, the reasons we collect it, the lawful basis we rely on, how long we keep it, who we share it with, and the rights individuals have over their data.

By engaging with Tree Surgeons Canarywharf, you acknowledge that we may need to process personal data to provide quotes, carry out tree surgery services, manage customer relationships, and comply with legal obligations.

2. Data We Collect

We collect only the personal data that is necessary and relevant to deliver our services and manage our business. Depending on the nature of your interaction with us, this may include:

  • Identity details such as your name, title, and, where relevant, business name.
  • Contact details including telephone number, email address, and property address.
  • Service information such as the type of work requested, site access notes, appointment details, quotes, invoices, and job records.
  • Payment information where needed to process transactions, issue invoices, or confirm payment status.
  • Communications including messages, calls, correspondence, and feedback.
  • Site and operational data such as photographs of trees, gardens, boundaries, and access routes, where these are necessary for assessment or service delivery.
  • Technical information if you interact with our digital systems, which may include basic device or usage data collected for security and performance purposes.

We do not intentionally collect special category data unless it is necessary, lawful, and relevant to a specific matter. If such information is provided to us, we will handle it with appropriate care and only where permitted by law.

3. How We Use Personal Data

We use personal data for the following purposes:

  • To respond to enquiries and provide quotations.
  • To assess work requirements and arrange site visits.
  • To deliver tree surgery services safely and effectively.
  • To manage customer accounts, records, and invoices.
  • To communicate about appointments, work progress, or follow-up matters.
  • To maintain internal records, quality control, and service improvement.
  • To comply with legal, regulatory, insurance, and tax obligations.
  • To investigate complaints, disputes, or claims.
  • To protect our business, staff, customers, and property from fraud, misuse, or unlawful activity.

We aim to use personal data in a way that is limited, proportionate, and necessary for the purpose for which it was collected.

4. Lawful Basis for Processing

Under data protection law, we must have a lawful basis for processing personal data. Depending on the circumstance, Tree Surgeons Canarywharf may rely on one or more of the following lawful bases:

4.1 Contract

We process personal data when it is necessary to enter into or perform a contract with you. This includes preparing quotes, booking services, carrying out agreed work, and managing payments.

4.2 Legal Obligation

We process data when required to comply with legal duties, such as accounting, tax, insurance, health and safety, and record-keeping requirements.

4.3 Legitimate Interests

We may process personal data where it is necessary for our legitimate interests, provided those interests are not overridden by your rights and freedoms. Examples include managing our business operations, improving services, maintaining records, and defending legal claims.

4.4 Consent

In limited situations, we may ask for your consent, for example where we need permission to use certain information for a specific purpose. Where we rely on consent, you may withdraw it at any time.

5. Data Sharing and Processors

We do not sell personal data. However, we may share information with trusted third parties where necessary to deliver our services, administer our business, or meet legal requirements. These third parties may act as processors or, in some cases, independent controllers.

Examples of processors or service providers may include:

  • Accounting and bookkeeping providers who assist with invoicing, tax, and financial records.
  • IT and cloud service providers who host data, support communications, or maintain secure systems.
  • Payment service providers who process transactions and help prevent fraud.
  • Scheduling or administrative service providers who support appointment management and customer administration.
  • Professional advisers such as insurers, auditors, legal advisers, or consultants where necessary.
  • Public authorities or regulators where disclosure is required by law or necessary to protect rights and safety.

When we use processors, we require them to handle personal data securely, use it only for our instructions, and comply with applicable data protection requirements. We take reasonable steps to ensure that any third party receiving data applies appropriate technical and organisational safeguards.

6. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting, insurance, and operational requirements. Retention periods may vary depending on the type of record and the reason for keeping it.

As a general approach:

  • Quotation and customer enquiry records may be kept for a reasonable period to follow up on requests and manage business records.
  • Contract, invoice, and payment records are typically retained for statutory and accounting purposes.
  • Job records and service documentation may be retained to evidence work performed, address complaints, and manage warranties or disputes.
  • Health and safety or incident records may be retained for longer where required by law or insurance obligations.

When data is no longer needed, we will delete it securely or anonymise it so that it can no longer identify an individual.

7. Data Security

We use appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure, loss, or destruction. These measures may include access controls, secure storage, confidentiality obligations, regular review of records, and limited access to data on a need-to-know basis.

Although no system can be guaranteed to be completely secure, we take reasonable steps to reduce risks and respond appropriately to any suspected personal data breach.

8. Your Rights

Individuals whose personal data we process have certain rights under data protection law. Subject to legal limitations, these include:

  • The right of access – to request a copy of the personal data we hold about you.
  • The right to rectification – to ask us to correct inaccurate or incomplete data.
  • The right to erasure – to request deletion of your data in certain circumstances.
  • The right to restrict processing – to ask us to limit how we use your data in certain situations.
  • The right to data portability – to receive certain data in a structured, commonly used format where applicable.
  • The right to object – to object to processing based on legitimate interests or direct marketing.
  • Rights related to automated decision-making – to not be subject to decisions based solely on automated processing where such rights apply.

If we rely on consent, you have the right to withdraw consent at any time, without affecting the lawfulness of processing carried out before withdrawal.

You also have the right to make a complaint to the relevant supervisory authority if you believe your data rights have been infringed.

9. International Transfers

Where personal data is transferred outside the UK, we will ensure that appropriate safeguards are in place to protect the information and that any transfer complies with applicable data protection law. These safeguards may include adequacy regulations or approved contractual protections.

10. Children’s Data

Our services are generally directed to adults and business or property owners. We do not knowingly collect personal data from children unless it is necessary in connection with a lawful service arrangement and appropriate safeguards are in place.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in law, our services, or the way we process personal data. Any updated version will apply from the date it is made available. We encourage customers to review this policy periodically to stay informed about how we protect personal information.

12. Summary

Tree Surgeons Canarywharf processes personal data only where needed to provide services, manage customer relationships, and meet legal duties. We rely on lawful bases such as contract, legal obligation, legitimate interests, and consent. We keep data only as long as necessary, share it only with trusted processors or where required by law, and respect the rights of individuals under data protection legislation. Our aim is to handle all personal data securely, transparently, and responsibly for every customer in the Canary Wharf area.

Tree Surgeons Canarywharf

GDPR-compliant privacy policy for Tree Surgeons Canarywharf covering data collection, lawful bases, retention, processors, rights, and area-wide applicability.

Call Now!
Get a Quote

Get In Touch With Us.

Please fill out the form below to send us an email and we will get back to you as soon as possible.